Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231991 1.9 注意 Invensys
シーメンス		 - Invensys Wonderware InTouch および Siemens ProcessSuite におけるパスワードを発見される脆弱性 CWE-310
暗号の問題 		CVE-2012-4693 2012-12-20 15:39 2012-12-11 Show GitHub Exploit DB Packet Storm
231992 3.3 注意 シーメンス - Siemens Automation License Manager におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4691 2012-12-20 15:32 2012-12-12 Show GitHub Exploit DB Packet Storm
231993 5 警告 VMware - VMware View におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5978 2012-12-20 15:27 2012-12-13 Show GitHub Exploit DB Packet Storm
231994 3.5 注意 IBM - IBM Lotus Foundations Start におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4848 2012-12-20 15:23 2012-12-12 Show GitHub Exploit DB Packet Storm
231995 4.3 警告 IBM - IBM Lotus Notes における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-4846 2012-12-20 15:21 2012-12-12 Show GitHub Exploit DB Packet Storm
231996 3.3 注意 IBM - Linux 上で稼働する IBM ASU および BoMC における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-3329 2012-12-20 15:11 2012-12-19 Show GitHub Exploit DB Packet Storm
231997 4.3 警告 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6007 2012-12-20 14:57 2012-12-13 Show GitHub Exploit DB Packet Storm
231998 6.8 警告 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5992 2012-12-20 14:52 2012-12-13 Show GitHub Exploit DB Packet Storm
231999 6.3 警告 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5991 2012-12-20 14:46 2012-12-13 Show GitHub Exploit DB Packet Storm
232000 9.3 危険 シスコシステムズ - Cisco Secure Desktop の WebLaunch 機能における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4655 2012-12-20 14:13 2012-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292081 - moxiecode
wordpress
fedoraproject 		plupload
wordpress
fedora 		Cross-site scripting (XSS) vulnerability in Plupload.as in Moxiecode plupload before 1.5.5, as used in WordPress before 3.5.1 and other products, allows remote attackers to inject arbitrary web scrip… CWE-79
Cross-site Scripting 		CVE-2013-0237 2024-11-21 10:47 2013-07-9 Show GitHub Exploit DB Packet Storm
292082 - wordpress wordpress Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.5.1 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) gallery shortcodes or (2) the con… CWE-79
Cross-site Scripting 		CVE-2013-0236 2024-11-21 10:47 2013-07-9 Show GitHub Exploit DB Packet Storm
292083 - wordpress wordpress The XMLRPC API in WordPress before 3.5.1 allows remote attackers to send HTTP requests to intranet servers, and conduct port-scanning attacks, by specifying a crafted source URL for a pingback, relat… NVD-CWE-Other
CVE-2013-0235 2024-11-21 10:47 2013-07-9 Show GitHub Exploit DB Packet Storm
292084 - ibm business_process_manager Multiple cross-site scripting (XSS) vulnerabilities in IBM Business Process Manager (BPM) 7.5.1.x, 8.0.0.x, and 8.0.1 before FP1 allow remote authenticated users to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2013-0581 2024-11-21 10:47 2013-07-6 Show GitHub Exploit DB Packet Storm
292085 - ibm sterling_b2b_integrator
sterling_file_gateway 		IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors… CWE-200
Information Exposure 		CVE-2013-0568 2024-11-21 10:47 2013-07-3 Show GitHub Exploit DB Packet Storm
292086 - ibm sterling_b2b_integrator
sterling_file_gateway 		IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors… CWE-200
Information Exposure 		CVE-2013-0567 2024-11-21 10:47 2013-07-3 Show GitHub Exploit DB Packet Storm
292087 - ibm sterling_b2b_integrator
sterling_file_gateway 		Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecif… CWE-89
SQL Injection 		CVE-2013-0560 2024-11-21 10:47 2013-07-3 Show GitHub Exploit DB Packet Storm
292088 - ibm sterling_b2b_integrator
sterling_file_gateway 		IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote attackers to obtain sensitive information about application implementation via unspecified vectors. CWE-200
Information Exposure 		CVE-2013-0558 2024-11-21 10:47 2013-07-3 Show GitHub Exploit DB Packet Storm
292089 - ibm sterling_b2b_integrator
sterling_file_gateway 		An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote attackers to hijac… CWE-255
Credentials Management 		CVE-2013-0539 2024-11-21 10:47 2013-07-3 Show GitHub Exploit DB Packet Storm
292090 - ibm sterling_b2b_integrator
sterling_file_gateway 		The console in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to read stack traces by triggering (1) an error or (2) an exception. CWE-200
Information Exposure 		CVE-2013-0481 2024-11-21 10:47 2013-07-3 Show GitHub Exploit DB Packet Storm