Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232141 4.6 警告 レッドハット - 複数の JBoss Enterprise 製品における任意のアプリケーションにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1167 2012-11-27 20:10 2012-06-19 Show GitHub Exploit DB Packet Storm
232142 7.5 危険 レッドハット - 複数の JBoss Enterprise 製品における JNDI ツリーにアイテムを追加される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4605 2012-11-27 20:07 2012-06-20 Show GitHub Exploit DB Packet Storm
232143 6.8 警告 レッドハット - 複数の JBoss Enterprise 製品における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-4085 2012-11-27 20:06 2011-11-16 Show GitHub Exploit DB Packet Storm
232144 6 警告 レッドハット - 複数の JBoss Enterprise 製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-2908 2012-11-27 20:05 2012-08-8 Show GitHub Exploit DB Packet Storm
232145 5 警告 レッドハット - JBoss Enterprise Portal Platform の JBossWS における平文データを取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-1096 2012-11-27 20:03 2012-10-8 Show GitHub Exploit DB Packet Storm
232146 4.3 警告 JRuby - JRuby の正規表現エンジンにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1330 2012-11-27 20:02 2010-04-26 Show GitHub Exploit DB Packet Storm
232147 7.5 危険 OpenVAS - OpenVAS Manager の manage_sql.c における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5520 2012-11-27 16:58 2012-11-12 Show GitHub Exploit DB Packet Storm
232148 5 警告 awcm - ar web content manager におけるサービス運用妨害 (ディスク消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2438 2012-11-27 16:58 2012-11-26 Show GitHub Exploit DB Packet Storm
232149 5 警告 awcm - ar web content manager の cookie_gen.php における任意のクッキーを生成される脆弱性 CWE-287
不適切な認証 		CVE-2012-2437 2012-11-27 16:57 2012-11-26 Show GitHub Exploit DB Packet Storm
232150 5 警告 trousers - TrouSerS の tcsd におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0698 2012-11-27 16:57 2012-01-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292491 - bcron_project bcron_exec bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6110 2024-11-21 10:45 2014-09-30 Show GitHub Exploit DB Packet Storm
292492 - apache apache_axis2\/c Apache Axis2/C does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attack… CWE-310
Cryptographic Issues 		CVE-2012-6107 2024-11-21 10:45 2014-09-30 Show GitHub Exploit DB Packet Storm
292493 - babygekko baby_gekko Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko before 1.2.2f allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/index.php or the (2) us… CWE-79
Cross-site Scripting 		CVE-2012-5700 2024-11-21 10:45 2014-09-23 Show GitHub Exploit DB Packet Storm
292494 - apache commons-httpclient http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltNa… CWE-20
 Improper Input Validation  		CVE-2012-6153 2024-11-21 10:45 2014-09-5 Show GitHub Exploit DB Packet Storm
292495 - zpanelcp zpanel SQL injection vulnerability in ZPanel 10.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the inEmailAddress parameter in an UpdateClient action in the manage_clients mod… CWE-89
SQL Injection 		CVE-2012-5685 2024-11-21 10:45 2014-08-14 Show GitHub Exploit DB Packet Storm
292496 - zpanelcp zpanel Cross-site scripting (XSS) vulnerability in ZPanel 10.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the inFullname parameter in an UpdateAccountSettings action in… CWE-79
Cross-site Scripting 		CVE-2012-5684 2024-11-21 10:45 2014-08-14 Show GitHub Exploit DB Packet Storm
292497 - zpanelcp zpanel Multiple cross-site request forgery (CSRF) vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) create new FTP user… CWE-352
 Origin Validation Error 		CVE-2012-5683 2024-11-21 10:45 2014-08-14 Show GitHub Exploit DB Packet Storm
292498 - ingy spoon Spoon::Cookie in the Spoon module 0.24 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly… CWE-94
Code Injection 		CVE-2012-6143 2024-11-21 10:45 2014-06-5 Show GitHub Exploit DB Packet Storm
292499 - jochen_wiedmann html\ Session::Cookie in the HTML::EP module 0.2011 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request, which is not p… CWE-94
Code Injection 		CVE-2012-6142 2024-11-21 10:45 2014-06-5 Show GitHub Exploit DB Packet Storm
292500 - stephen_adkins app\ The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to (1) App::Sessio… CWE-94
Code Injection 		CVE-2012-6141 2024-11-21 10:45 2014-06-5 Show GitHub Exploit DB Packet Storm