Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231871	10	危険	オラクル	-	Enforcer Portal Pack Bundle を伴う Oracle PeopleSoft Enterprise Portal における脆弱性	-	CVE-2006-3723	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231872	10	危険	オラクル	-	Oracle PeopleSoft Enterprise Portal における脆弱性	-	CVE-2006-3722	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231873	10	危険	オラクル	-	Oracle Enterprise Manager 用の Oracle Management Service における脆弱性	-	CVE-2006-3721	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231874	5.5	警告	オラクル	-	Oracle Enterprise Manager 用の Enterprise Config Management における脆弱性	CWE-noinfo 情報不足	CVE-2006-3720	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231875	5.5	警告	オラクル	-	Oracle Enterprise Manager 用の CORE Repository における脆弱性	CWE-noinfo 情報不足	CVE-2006-3719	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231876	10	危険	オラクル	-	Oracle E-Business Suite などにおける脆弱性	-	CVE-2006-3718	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231877	10	危険	オラクル	-	Oracle E-Business Suite などにおける脆弱性	-	CVE-2006-3717	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231878	10	危険	オラクル	-	Oracle E-Business Suite などにおける脆弱性	-	CVE-2006-3716	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231879	10	危険	オラクル	-	Oracle Collaboration Suite の Calendar における脆弱性	-	CVE-2006-3715	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

231880	7.2	危険	lavasoft Agnitum Novell	-	Lavasoft Personal Firewall などの製品で使用される Agnitum Outpost Firewall における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-3697	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293661	-	kayako	kayako_fusion	Cross-site scripting (XSS) vulnerability in Tickets/Submit in Kayako Fusion before 4.40.985 allows remote attackers to inject arbitrary web script or HTML via certain vectors, possibly a crafted tick…	CWE-79 Cross-site Scripting	CVE-2012-4872	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293662	-	litespeedtech	litespeed_web_server	Cross-site scripting (XSS) vulnerability in service/graph_html.php in the administrator panel in LiteSpeed Web Server 4.1.11 allows remote attackers to inject arbitrary web script or HTML via the gti…	CWE-79 Cross-site Scripting	CVE-2012-4871	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293663	-	sangoma	freepbx	Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) context parameter to panel/index_amp.php or (2…	CWE-79 Cross-site Scripting	CVE-2012-4870	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293664	-	sangoma	freepbx	The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.	CWE-94 Code Injection	CVE-2012-4869	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293665	-	kunena	kunena	SQL injection vulnerability in news.php in the Kunena component 1.7.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2012-4868	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293666	-	vtiger	vtiger_crm	Directory traversal vulnerability in modules/com_vtiger_workflow/sortfieldsjson.php in vtiger CRM 5.1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the module_name parameter.	CWE-22 Path Traversal	CVE-2012-4867	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293667	-	xtremerat	xtremerat	Untrusted search path vulnerability in Xtreme RAT 3.5 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder a…	NVD-CWE-Other	CVE-2012-4866	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293668	-	oreans	themida	Buffer overflow in Oreans Themida 2.1.8.0 allows remote attackers to execute arbitrary code via a crafted .TMD file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4865	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293669	-	oreans	winlicense	Oreans WinLicense 2.1.8.0 allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted xml file.	CWE-94 Code Injection	CVE-2012-4864	2024-11-21 10:43	2012-09-7	Show	GitHub Exploit DB Packet Storm

293670	-	foxitsoftware	foxit_reader	Untrusted search path vulnerability in facebook_plugin.fpi in the Facebook plug-in in Foxit Reader 5.3.1.0606 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current w…	NVD-CWE-Other	CVE-2012-4759	2024-11-21 10:43	2012-09-6	Show	GitHub Exploit DB Packet Storm