Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231611	3.5	注意	Commerce Guys	-	Drupal 用 Drupal Commerce モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1639	2012-10-3 13:20	2012-01-25	Show	GitHub Exploit DB Packet Storm

231612	6	警告	Atheme.org	-	Atheme の libathemecore/account.c における異なるユーザにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1576	2012-10-3 13:09	2012-10-1	Show	GitHub Exploit DB Packet Storm

231613	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2011-3027	2012-10-2 17:27	2012-02-15	Show	GitHub Exploit DB Packet Storm

231614	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3021	2012-10-2 17:23	2012-02-15	Show	GitHub Exploit DB Packet Storm

231615	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3016	2012-10-2 17:19	2012-02-15	Show	GitHub Exploit DB Packet Storm

231616	6.8	警告	アップル Google	-	複数の製品で使用される Webkit における URL バーを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2845	2012-10-2 17:08	2011-10-25	Show	GitHub Exploit DB Packet Storm

231617	5	警告	Drupal	-	Drupal の image モジュールにおけるプライベートな画像スタイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1591	2012-10-2 16:26	2012-05-2	Show	GitHub Exploit DB Packet Storm

231618	4.9	警告	Cumin	-	Red Hat Enterprise MRG で使用される Cumin における Condor の属性を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3459	2012-10-2 16:26	2012-09-28	Show	GitHub Exploit DB Packet Storm

231619	4	警告	Cumin レッドハット	-	Red Hat Enterprise MRG で使用される Cumin におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2685	2012-10-2 16:26	2012-09-28	Show	GitHub Exploit DB Packet Storm

231620	4	警告	Drupal	-	Drupal における公開されたすべてのノードを読み取られる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2153	2012-10-2 16:26	2012-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292931	-		opera	opera_browser	Opera before 11.62 allows remote attackers to spoof the address field by triggering the launch of a dialog window associated with a different domain.	CWE-20 Improper Input Validation	CVE-2012-1927	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292932	-		opera	opera_browser	Opera before 11.62 allows remote attackers to bypass the Same Origin Policy via the (1) history.pushState and (2) history.replaceState functions in conjunction with cross-domain frames, leading to un…	CWE-200 Information Exposure	CVE-2012-1926	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292933	-		opera	opera_browser	Opera before 11.62 does not ensure that a dialog window is placed on top of content windows, which makes it easier for user-assisted remote attackers to trick users into downloading and executing arb…	NVD-CWE-Other	CVE-2012-1925	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292934	-		opera	opera_browser	Opera before 11.62 allows user-assisted remote attackers to trick users into downloading and executing arbitrary files via a small window for the download dialog.	CWE-94 Code Injection	CVE-2012-1924	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292935	-		atmail	atmail_open	@Mail WebMail Client in AtMail Open-Source 1.04 and earlier allows remote attackers to obtain configuration information via a direct request to install/info.php, which calls the phpinfo function.	CWE-200 Information Exposure	CVE-2012-1920	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292936	-		atmail	atmail_open	CRLF injection vulnerability in mime.php in @Mail WebMail Client in AtMail Open-Source before 1.05 allows remote attackers to conduct directory traversal attacks and read arbitrary files via a %0A se…	CWE-94 Code Injection	CVE-2012-1919	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292937	-		atmail	atmail_open	Multiple directory traversal vulnerabilities in (1) compose.php and (2) libs/Atmail/SendMsg.php in @Mail WebMail Client in AtMail Open-Source before 1.05 allow remote attackers to read arbitrary file…	CWE-22 Path Traversal	CVE-2012-1918	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292938	-		atmail	atmail_open	compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 does not properly handle ../ (dot dot slash) sequences in the unique parameter, which allows remote attackers to conduct director…	CWE-22 Path Traversal	CVE-2012-1917	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292939	-		atmail	atmail_open	@Mail WebMail Client in AtMail Open-Source before 1.05 allows remote attackers to execute arbitrary code via an e-mail attachment with an executable extension, leading to the creation of an executabl…	NVD-CWE-Other	CVE-2012-1916	2024-11-21 10:38	2012-03-28	Show	GitHub Exploit DB Packet Storm

292940	5.4	MEDIUM Network	atlassian	jira greenhopper	Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and GreenHopper before 5.9.8 allows an attacker to inject arbitrary script code.	CWE-79 Cross-site Scripting	CVE-2012-1500	2024-11-21 10:37	2020-02-14	Show	GitHub Exploit DB Packet Storm