Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232521 5 警告 ownCloud - ownCloud の "ロスト・パスワード" リセット機能におけるアカウントのパスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-5607 2012-12-19 16:04 2012-10-24 Show GitHub Exploit DB Packet Storm
232522 4.3 警告 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5606 2012-12-19 15:58 2012-10-24 Show GitHub Exploit DB Packet Storm
232523 10 危険 サン・マイクロシステムズ
サイバートラスト株式会社
VMware
ヒューレット・パッカード
レッドハット		 - 複数の Oracle 製品の 2D コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3556 2012-12-19 15:48 2010-10-12 Show GitHub Exploit DB Packet Storm
232524 7.5 危険 The GIMP Team - GIMP の X Window Dump プラグインにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5576 2012-12-19 15:45 2012-11-7 Show GitHub Exploit DB Packet Storm
232525 6.4 警告 VMware
Apache Software Foundation		 - Apache Struts における任意のファイルを作成または上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0393 2012-12-19 15:43 2012-01-8 Show GitHub Exploit DB Packet Storm
232526 5 警告 Sensio Labs - Symfony CMS の lib/form/sfForm.class.php における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5574 2012-12-19 15:41 2012-11-25 Show GitHub Exploit DB Packet Storm
232527 4 警告 OpenStack - OpenStack Keystone における承認の制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-5563 2012-12-19 14:52 2012-11-28 Show GitHub Exploit DB Packet Storm
232528 7.5 危険 bogofilter - bogofilter の bogolexer コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5468 2012-12-19 14:46 2012-12-3 Show GitHub Exploit DB Packet Storm
232529 5.1 警告 The PHP Group - PHP の rand などの関数におけるセキュリティの問題を悪用される脆弱性 CWE-189
数値処理の問題 		CVE-2008-4107 2012-12-19 14:22 2008-09-11 Show GitHub Exploit DB Packet Storm
232530 6.8 警告 ownCloud - ownCloud の lib/migrate.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-4389 2012-12-19 14:21 2012-08-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292501 - ibm security_appscan
rational_policy_tester 		The Manual Explore browser plug-in in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to discover test Platfor… CWE-200
Information Exposure 		CVE-2013-0474 2024-11-21 10:47 2013-03-30 Show GitHub Exploit DB Packet Storm
292502 - ibm security_appscan
rational_policy_tester 		Multiple cross-site scripting (XSS) vulnerabilities in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allow remote attackers to injec… CWE-79
Cross-site Scripting 		CVE-2013-0473 2024-11-21 10:47 2013-03-30 Show GitHub Exploit DB Packet Storm
292503 - ibm tivoli_endpoint_manager
software_use_analysis 		Cross-site request forgery (CSRF) vulnerability in the Software Use Analysis (SUA) application before 1.3.3 in IBM Tivoli Endpoint Manager 8.2 allows remote attackers to hijack the authentication of … CWE-352
 Origin Validation Error 		CVE-2013-0452 2024-11-21 10:47 2013-03-30 Show GitHub Exploit DB Packet Storm
292504 - varnish_http_accelerator_integration_project varnish Multiple cross-site scripting (XSS) vulnerabilities in the Varnish module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.0-beta2 for Drupal allow remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2013-0325 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292505 - tomasbarej menu_reference Cross-site scripting (XSS) vulnerability in the Rendered links formatter in the Menu Reference module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the "Administer menus an… CWE-79
Cross-site Scripting 		CVE-2013-0324 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292506 - display_suite_project ds Cross-site scripting (XSS) vulnerability in the Display Suite module 7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via th… CWE-79
Cross-site Scripting 		CVE-2013-0323 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292507 - ubercart ubercart Cross-site scripting (XSS) vulnerability in Views in the Ubercart module 7.x-3.x before 7.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full name field. CWE-79
Cross-site Scripting 		CVE-2013-0322 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292508 - ubercart_views_project uc_views Cross-site scripting (XSS) vulnerability in Views in the Ubercart Views (uc_views) module 6.x before 6.x-3.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full nam… CWE-79
Cross-site Scripting 		CVE-2013-0321 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292509 - mattias_hutterer taxonomy_manager Cross-site request forgery (CSRF) vulnerability in the Taxonomy Manager (taxonomy_manager) module 6.x-2.x before 6.x-2.2 and 7.x-1.x before 7.x-1.0-rc1 for Drupal allows remote attackers to hijack th… CWE-352
 Origin Validation Error 		CVE-2013-0320 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292510 - yandex.metrics_project yandex_metrics Cross-site scripting (XSS) vulnerability in the Yandex.Metrics module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via v… CWE-79
Cross-site Scripting 		CVE-2013-0319 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm