Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231891 5 警告 watersweb shops - shopkitplus における重要な情報を取得される脆弱性 - CVE-2007-1128 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231892 6.4 警告 watersweb shops - shopkitplus の enc/stylecss.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1127 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231893 5 警告 xt:Commerce - xtcommerce の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1126 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231894 4.3 警告 xeroxer - XeroXer Simple one-file gallery の gallery.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1125 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231895 5 警告 xeroxer - XeroXer Simple one-file gallery の gallery.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1124 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231896 7.5 危険 ZPanel Project - ZPanel における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1123 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231897 6.4 警告 zephyrsoft toolbox - Mathis Dirksen-Thedens ZephyrSoft Toolbox ABC における SQL インジェクションの脆弱性 - CVE-2007-1122 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231898 6.4 警告 zephyrsoft toolbox - Mathis Dirksen-Thedens ZephyrSoft Toolbox ABC における SQL インジェクションの脆弱性 - CVE-2007-1121 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231899 9.3 危険 steema software - TeeChart Pro ActiveX コントロールにおける .tee ファイルをダウンロードされる脆弱性 - CVE-2007-1120 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
231900 4.3 警告 phpwebgallery - Phpwebgallery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-1109 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294221 - linux linux_kernel The online_pages function in mm/memory_hotplug.c in the Linux kernel before 3.6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecifie… NVD-CWE-Other
CVE-2012-5517 2024-11-21 10:44 2012-12-21 Show GitHub Exploit DB Packet Storm
294222 - phpmyadmin phpmyadmin The Portable phpMyAdmin plugin before 1.3.1 for WordPress allows remote attackers to bypass authentication and obtain phpMyAdmin console access via a direct request to wp-content/plugins/portable-php… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5469 2024-11-21 10:44 2012-12-20 Show GitHub Exploit DB Packet Storm
294223 - welcart welcart_plugin Cross-site request forgery (CSRF) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that complete a p… CWE-352
 Origin Validation Error 		CVE-2012-5178 2024-11-21 10:44 2012-12-19 Show GitHub Exploit DB Packet Storm
294224 - welcart welcart_plugin Cross-site scripting (XSS) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-5177 2024-11-21 10:44 2012-12-19 Show GitHub Exploit DB Packet Storm
294225 - redhat openshift Cross-site request forgery (CSRF) vulnerability in the management console (openshift-console/app/controllers/application_controller.rb) in OpenShift 0.0.5 allows remote attackers to hijack the authen… CWE-352
 Origin Validation Error 		CVE-2012-5622 2024-11-21 10:44 2012-12-18 Show GitHub Exploit DB Packet Storm
294226 - owncloud owncloud Incomplete blacklist vulnerability in lib/filesystem.php in ownCloud before 4.0.9 and 4.5.x before 4.5.2 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a spe… CWE-20
 Improper Input Validation  		CVE-2012-5610 2024-11-21 10:44 2012-12-18 Show GitHub Exploit DB Packet Storm
294227 - owncloud owncloud Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.5.2 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted mount.php file in a ZIP file. NVD-CWE-Other
CVE-2012-5609 2024-11-21 10:44 2012-12-18 Show GitHub Exploit DB Packet Storm
294228 - owncloud owncloud Cross-site scripting (XSS) vulnerability in apps/user_webdavauth/settings.php in ownCloud 4.5.x before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via arbitrary POST paramete… CWE-79
Cross-site Scripting 		CVE-2012-5608 2024-11-21 10:44 2012-12-18 Show GitHub Exploit DB Packet Storm
294229 - owncloud owncloud The "Lost Password" reset functionality in ownCloud before 4.0.9 and 4.5.0 does not properly check the security token, which allows remote attackers to change an accounts password via unspecified vec… CWE-255
Credentials Management 		CVE-2012-5607 2024-11-21 10:44 2012-12-18 Show GitHub Exploit DB Packet Storm
294230 - owncloud owncloud Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.9 and 4.5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) file name to apps/files_versions/js/ve… CWE-79
Cross-site Scripting 		CVE-2012-5606 2024-11-21 10:44 2012-12-18 Show GitHub Exploit DB Packet Storm