Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231511	7.5	危険	Intelliants	-	Subrion CMS の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5212	2012-10-24 11:39	2012-10-22	Show	GitHub Exploit DB Packet Storm

231512	4.3	警告	Intelliants	-	Subrion CMS の poll モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5211	2012-10-24 11:38	2012-10-22	Show	GitHub Exploit DB Packet Storm

231513	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2011-4129	2012-10-24 11:37	2012-10-22	Show	GitHub Exploit DB Packet Storm

231514	4.3	警告	phpMyFAQ	-	phpMyFAQ におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4821	2012-10-24 11:34	2010-09-28	Show	GitHub Exploit DB Packet Storm

231515	4.3	警告	Claws Mail	-	Claws Mail の procmime.c の strchr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2012-4507	2012-10-24 11:29	2012-10-22	Show	GitHub Exploit DB Packet Storm

231516	4.6	警告	Sitaram Chamarty	-	gitolite におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-4506	2012-10-24 11:28	2012-10-10	Show	GitHub Exploit DB Packet Storm

231517	4.4	警告	Michael Rash.	-	fwknop の client/fwknop.c におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4436	2012-10-24 11:07	2012-09-4	Show	GitHub Exploit DB Packet Storm

231518	4	警告	Michael Rash.	-	fwknop におけるサービス運用妨害 (サーバクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-4435	2012-10-24 11:07	2012-09-4	Show	GitHub Exploit DB Packet Storm

231519	7.5	危険	OpenStack	-	OpenStack Object Storage (swift) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4406	2012-10-24 11:07	2012-09-13	Show	GitHub Exploit DB Packet Storm

231520	7.5	危険	jCore	-	jCore の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4232	2012-10-24 11:07	2012-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293201	-	chaos_tool_suite_project	ctools	Cross-site scripting (XSS) vulnerability in the Chaos tool suite (aka CTools) module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the post comments permission to inject ar…	CWE-79 Cross-site Scripting	CVE-2012-2082	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293202	-	moshe_weitzman	organic_groups	The Organic Groups (OG) module 6.x-2.x before 6.x-2.3 for Drupal does not properly restrict access, which allows remote attackers to obtain sensitive information such as private group titles via a re…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2081	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293203	-	node_limit_number_project	node_limitnumber	Cross-site request forgery (CSRF) vulnerability in the Node Limit Number module before 6.x-1.2 for Drupal allows remote attackers to hijack the authentication of users with the administer node limitn…	CWE-352 Origin Validation Error	CVE-2012-2080	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293204	-	rob_loach	sharethis	Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permi…	CWE-352 Origin Validation Error	CVE-2012-2077	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293205	-	rob_loach	sharethis	Cross-site scripting (XSS) vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions …	CWE-79 Cross-site Scripting	CVE-2012-2076	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293206	-	steindom	contact_save	Cross-site scripting (XSS) vulnerability in the Contact Save module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users with the access site-wide contact form permission to inject arb…	CWE-79 Cross-site Scripting	CVE-2012-2075	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293207	-	ubercart_views_project	uc_views	Unspecified vulnerability in certain default views in the Ubercart Views module 6.x before 6.x-3.2 for Drupal allows remote attackers to obtain sensitive information via unknown attack vectors.	NVD-CWE-noinfo	CVE-2012-2074	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293208	-	kristof_de_jaeger	bundle_copy	The Bundle copy module 7.x-1.x before 7.x-1.1 for Drupal does not check for the "use PHP for settings" permission while importing settings, which allows remote authenticated users with certain permis…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2073	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293209	-	patrick_przybilla	addtoany	Cross-site scripting (XSS) vulnerability in the Share Buttons (AddToAny) module 6.x-3.x before 6.x-3.4 for Drupal allows remote authenticated users with the administer addtoany permission to inject a…	CWE-79 Cross-site Scripting	CVE-2012-2072	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

293210	-	geoff_davies	contact_forms	Cross-site scripting (XSS) vulnerability in the Contact Forms module 6.x-1.x before 6.x-1.13 for Drupal when the core contact form is enabled, allows remote authenticated users with the administer si…	CWE-79 Cross-site Scripting	CVE-2012-2071	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm