Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230991 10 危険 トレンドマイクロ - Windows 用の Trend Micro ServerProtect におけるバッファオーバーフローの脆弱性 - CVE-2007-2528 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
230992 9.3 危険 smartcode - SmartCode VNC Manager の VNC Viewer ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-2526 2012-12-20 18:19 2007-05-8 Show GitHub Exploit DB Packet Storm
230993 10 危険 トレンドマイクロ - Trend Micro ServerProtect におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2508 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
230994 7.8 危険 treble designs - Treble Designs 1024 CMS の includes/download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2507 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
230995 7.8 危険 Progress Software Corporation - Progress Software Progress の OpenEdge におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2506 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
230996 7.8 危険 リアルネットワークス - RealNetworks RealPlayer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2497 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
230997 7.5 危険 postnuke software foundation - PostNuke 用の v4bJournal モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2492 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
230998 7.2 危険 VMware - EMC VMware Workstation などの PIIX4 電源管理サブシステムにおける任意のメモリ領域に書き込まれる脆弱性 - CVE-2007-2491 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
230999 7.5 危険 ruben boelinger - WordPress 用の myflash プラグインにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2485 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
231000 6.8 警告 ruben boelinger - WordPress 用の wp-Table プラグインにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2484 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293871 - atutor acontent SQL injection vulnerability in user/index_inline_editor_submit.php in ATutor AContent 1.2-1 allows remote authenticated users to execute arbitrary SQL commands via the field parameter. NOTE: this vu… CWE-89
SQL Injection 		CVE-2012-5453 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm
293872 - intelliants subrion_cms Multiple cross-site scripting (XSS) vulnerabilities in Subrion CMS 2.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) multi_title parameter to blocks/add/; (2) cost, (3) … CWE-79
Cross-site Scripting 		CVE-2012-5452 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm
293873 - atutor acontent Multiple cross-site scripting (XSS) vulnerabilities in file_manager/preview_top.php in ATutor AContent before 1.2-2 allow remote attackers to inject arbitrary web script or HTML via the (1) pathext, … CWE-79
Cross-site Scripting 		CVE-2012-5169 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm
293874 - atutor acontent ATutor AContent before 1.2-1 allows remote attackers to modify arbitrary user passwords or category names via a direct request to (1) user/index_inline_editor_submit.php or (2) course_category/index_… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5168 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm
293875 - atutor acontent Multiple SQL injection vulnerabilities in ATutor AContent before 1.2-1 allow remote attackers to execute arbitrary SQL commands via the (1) field parameter to course_category/index_inline_editor_subm… CWE-89
SQL Injection 		CVE-2012-5167 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm
293876 - sun sunos Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to inetd. NVD-CWE-noinfo
CVE-2012-5095 2024-11-21 10:44 2012-10-17 Show GitHub Exploit DB Packet Storm
293877 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote attackers to affect confidentiality via unknown vectors r… NVD-CWE-noinfo
CVE-2012-5094 2024-11-21 10:44 2012-10-17 Show GitHub Exploit DB Packet Storm
293878 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote attackers to affect integrity via unknown vectors related… NVD-CWE-noinfo
CVE-2012-5093 2024-11-21 10:44 2012-10-17 Show GitHub Exploit DB Packet Storm
293879 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote authenticated users to affect confidentiality and integri… NVD-CWE-noinfo
CVE-2012-5092 2024-11-21 10:44 2012-10-17 Show GitHub Exploit DB Packet Storm
293880 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile Product Supplier Collaboration for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote attackers to affect confidenti… NVD-CWE-noinfo
CVE-2012-5091 2024-11-21 10:44 2012-10-17 Show GitHub Exploit DB Packet Storm