Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231831	7.5	危険	TinyWebGallery	-	TinyWebGallery における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-5347	2012-10-12 15:18	2012-10-9	Show	GitHub Exploit DB Packet Storm

231832	4.3	警告	Bence Meszaros	-	WordPress 用 WP Live.php モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5346	2012-10-12 15:11	2012-10-9	Show	GitHub Exploit DB Packet Storm

231833	5	警告	Kepler Lam	-	IPtools の Remote command server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5345	2012-10-12 15:06	2012-10-9	Show	GitHub Exploit DB Packet Storm

231834	5	警告	Kepler Lam	-	IPtools の WebServer におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-5344	2012-10-12 15:03	2012-10-9	Show	GitHub Exploit DB Packet Storm

231835	4.3	警告	Limny	-	Limny の admin/login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5343	2012-10-12 15:01	2012-10-9	Show	GitHub Exploit DB Packet Storm

231836	7.5	危険	Michau Enterprises	-	SenseSites CommonSense CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-5342	2012-10-12 14:59	2012-10-9	Show	GitHub Exploit DB Packet Storm

231837	4.3	警告	otterware	-	Otterware StatIt におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5341	2012-10-12 14:58	2012-10-9	Show	GitHub Exploit DB Packet Storm

231838	4	警告	OpenStack	-	OpenStack Keystone におけるテナントのリソースにアクセスされる脆弱性	CWE-287 不適切な認証	CVE-2012-4457	2012-10-12 11:35	2012-09-28	Show	GitHub Exploit DB Packet Storm

231839	7.5	危険	OpenStack	-	OpenStack Keystone における任意のユーザのロールを読まれる脆弱性	CWE-287 不適切な認証	CVE-2012-4456	2012-10-12 11:31	2012-09-28	Show	GitHub Exploit DB Packet Storm

231840	6.8	警告	Limny	-	Limny の admin/preview.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-5210	2012-10-12 11:18	2012-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292961	-	itechscripts	travelon_express	Multiple cross-site scripting (XSS) vulnerabilities in Travelon Express 6.2.2 allow remote attackers to inject arbitrary web script or HTML via the holiday name field to (1) holiday_add.php or (2) ho…	CWE-79 Cross-site Scripting	CVE-2012-2938	2024-11-21 10:39	2012-05-28	Show	GitHub Exploit DB Packet Storm

292962	-	pligg	pligg_cms	Multiple SQL injection vulnerabilities in Pligg CMS before 1.2.2 allow remote attackers to execute arbitrary SQL commands via the (1) list parameter in a move action to admin/admin_index.php, (2) dis…	CWE-89 SQL Injection	CVE-2012-2937	2024-11-21 10:39	2012-05-28	Show	GitHub Exploit DB Packet Storm

292963	-	pligg	pligg_cms	Multiple cross-site scripting (XSS) vulnerabilities in Pligg CMS before 1.2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) user or (2) page parameter to (a) admin/admin_c…	CWE-79 Cross-site Scripting	CVE-2012-2936	2024-11-21 10:39	2012-05-28	Show	GitHub Exploit DB Packet Storm

292964	-	pligg	pligg_cms	Multiple cross-site scripting (XSS) vulnerabilities in Pligg CMS before 1.2.2 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary parameter in a move or (2) minimize ac…	CWE-79 Cross-site Scripting	CVE-2012-2436	2024-11-21 10:39	2012-05-28	Show	GitHub Exploit DB Packet Storm

292965	-	pligg	pligg_cms	Directory traversal vulnerability in the captcha module in Pligg CMS before 1.2.2 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the captcha para…	CWE-22 Path Traversal	CVE-2012-2435	2024-11-21 10:39	2012-05-28	Show	GitHub Exploit DB Packet Storm

292966	-	oscommerce	online_merchant	Cross-site scripting (XSS) vulnerability in osCommerce/OM/Core/Site/Shop/Application/Checkout/pages/main.php in OSCommerce Online Merchant 3.0.2 allows remote attackers to inject arbitrary web script…	CWE-79 Cross-site Scripting	CVE-2012-2935	2024-11-21 10:39	2012-05-28	Show	GitHub Exploit DB Packet Storm

292967	-	seagate	blackarmor_nas	d41d8cd98f00b204e9800998ecf8427e.php in the management web server on the Seagate BlackArmor device allows remote attackers to change the administrator password via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2568	2024-11-21 10:39	2012-05-26	Show	GitHub Exploit DB Packet Storm

292968	-	xarrow	xarrow	The server in xArrow before 3.4.1 performs an invalid read operation, which allows remote attackers to execute arbitrary code via unspecified vectors.	CWE-189 Numeric Errors	CVE-2012-2429	2024-11-21 10:39	2012-05-26	Show	GitHub Exploit DB Packet Storm

292969	-	xarrow	xarrow	Integer overflow in the server in xArrow before 3.4.1 allows remote attackers to execute arbitrary code via a crafted packet that triggers an out-of-bounds read operation.	CWE-189 Numeric Errors	CVE-2012-2428	2024-11-21 10:39	2012-05-26	Show	GitHub Exploit DB Packet Storm

292970	-	xarrow	xarrow	Heap-based buffer overflow in the server in xArrow before 3.4.1 allows remote attackers to execute arbitrary code via packets that trigger an invalid free operation.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-2427	2024-11-21 10:39	2012-05-26	Show	GitHub Exploit DB Packet Storm