Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231031	4.3	警告	VWar	-	VWar の calendar.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4224	2012-12-20 18:02	2006-08-18	Show	GitHub Exploit DB Packet Storm

231032	7.5	危険	Zen Cart	-	Zen Cart におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4218	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231033	7.5	危険	webinsta	-	WEBInsta CMS の modules/usersonline/users.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4217	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231034	5.1	警告	Zen Cart	-	Zen Cart の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4215	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231035	7.5	危険	Zen Cart	-	Zen Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4214	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231036	7.5	危険	webinsta	-	WEBInsta Mailing List Manager の install3.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4209	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231037	5	警告	skippy.net	-	WordPress 用の Skippy WP-DB-Backup プラグインにおけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4208	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231038	7.5	危険	webdynamite	-	WebDynamite ProjectButler における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4205	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231039	7.5	危険	phprojekt	-	PHProjekt における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4204	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

231040	7.5	危険	spidey blog	-	Spidey Blog Script の proje_goster.php における SQL インジェクションの脆弱性	-	CVE-2006-4202	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293301	-		opera	opera_browser	Opera before 11.65 does not ensure that keyboard sequences are associated with a visible window, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks…	NVD-CWE-noinfo	CVE-2012-3555	2024-11-21 10:41	2012-06-15	Show	GitHub Exploit DB Packet Storm

293302	5.4	MEDIUM Network	ibm	infosphere_guardium	IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a…	CWE-79 Cross-site Scripting	CVE-2012-3341	2024-11-21 10:40	2020-09-2	Show	GitHub Exploit DB Packet Storm

293303	4.3	MEDIUM Network	ibm	infosphere_guardium	IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to XML external entity injection, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vul…	CWE-776 XML Entity Expansion	CVE-2012-3340	2024-11-21 10:40	2020-09-2	Show	GitHub Exploit DB Packet Storm

293304	5.3	MEDIUM Network	ibm	infosphere_guardium	IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to bypass security restrictions, caused by improper restrictions on the create new user account functionality. An attacker cou…	CWE-20 Improper Input Validation	CVE-2012-3338	2024-11-21 10:40	2020-09-2	Show	GitHub Exploit DB Packet Storm

293305	5.3	MEDIUM Network	ibm	infosphere_guardium	IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" s…	CWE-22 Path Traversal	CVE-2012-3337	2024-11-21 10:40	2020-09-2	Show	GitHub Exploit DB Packet Storm

293306	8.8	HIGH Network	ibm	infosphere_guardium	IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to multiple scripts, which could allow the attac…	CWE-89 SQL Injection	CVE-2012-3336	2024-11-21 10:40	2020-09-2	Show	GitHub Exploit DB Packet Storm

293307	6.1	MEDIUM Network	longtailvideo	jw_player	Multiple cross-site scripting (XSS) vulnerabilities in LongTail Video JW Player through 5.10.2295 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) logo.link, or (3)…	CWE-79 Cross-site Scripting	CVE-2012-3351	2024-11-21 10:40	2020-02-21	Show	GitHub Exploit DB Packet Storm

293308	8.1	HIGH Network	gatewaygeomatics	mapserver	Gateway Geomatics MapServer for Windows before 3.0.6 contains a Local File Include Vulnerability which allows remote attackers to execute local PHP code and obtain sensitive information.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2012-2950	2024-11-21 10:40	2020-01-10	Show	GitHub Exploit DB Packet Storm

293309	8.8	HIGH Network	wisc	htcondor	The (1) my_popenv_impl and (2) my_spawnv functions in src/condor_utils/my_popen.cpp and the (3) systemCommand function in condor_vm-gahp/vmgahp_common.cpp in Condor 7.6.x before 7.6.10 and 7.8.x befo…	NVD-CWE-noinfo	CVE-2012-3490	2024-11-21 10:40	2020-01-10	Show	GitHub Exploit DB Packet Storm

293310	8.8	HIGH Network	fedoraproject	sssd	A flaw was found in SSSD version 1.9.0. The SSSD's access-provider logic causes the result of the HBAC rule processing to be ignored in the event that the access-provider is also handling the setup o…	CWE-287 Improper Authentication	CVE-2012-3462	2024-11-21 10:40	2019-12-27	Show	GitHub Exploit DB Packet Storm