Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
236261	6.8	警告	David Alkire	-	Drupal 用 Drag & Drop Gallery モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-4478	2012-12-4 16:27	2012-07-11	Show	GitHub Exploit DB Packet Storm

236262	5	警告	David Alkire	-	Drupal 用 Drag & Drop Gallery モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4477	2012-12-4 16:27	2012-07-11	Show	GitHub Exploit DB Packet Storm

236263	4.3	警告	David Alkire	-	Drupal 用 Drag & Drop Gallery モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4476	2012-12-4 16:26	2012-07-11	Show	GitHub Exploit DB Packet Storm

236264	5	警告	Chris Hertzog	-	Drupal 用 Security Questions モジュールにおける任意のユーザの質問および回答を編集される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4475	2012-12-4 16:26	2012-07-11	Show	GitHub Exploit DB Packet Storm

236265	4.3	警告	Dennis Blake	-	Drupal 用 Colorbox Node モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4474	2012-12-4 16:24	2012-07-11	Show	GitHub Exploit DB Packet Storm

236266	3.5	注意	Christian Johansson	-	Drupal 用 Restrict node page view モジュールにおける未公開のノードにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4473	2012-12-4 16:21	2012-07-11	Show	GitHub Exploit DB Packet Storm

236267	5.1	警告	David Alkire	-	Drupal 用 Drag & Drop Gallery モジュールにおける任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2012-4472	2012-12-4 16:20	2012-07-11	Show	GitHub Exploit DB Packet Storm

236268	5	警告	Dominique CLAUSE	-	Drupal 用 Search Autocomplete モジュールにおけるオートコンプリートを無効される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4471	2012-12-4 16:19	2012-07-11	Show	GitHub Exploit DB Packet Storm

236269	7.5	危険	Philip Ludlam	-	Drupal 用 Listhandler モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4470	2012-12-4 16:13	2012-07-11	Show	GitHub Exploit DB Packet Storm

236270	2.6	注意	Simon Rycroft	-	Drupal 用 Hashcash モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4469	2012-12-4 15:17	2012-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354061	-	oracle	applications e-business_suite	Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 through 11.5.8 allow a remote attacker to obtain sensitive information without…	NVD-CWE-Other	CVE-2003-0633	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354062	-	novell	ichain	Unknown vulnerability or vulnerabilities in Novell iChain 2.2 before Support Pack 1, with unknown impact, possibly related to unauthorized access to (1) NCPIP.NLM and (2) JSTCP.NLM.	NVD-CWE-Other	CVE-2003-0635	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354063	-	novell	ichain	Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via…	NVD-CWE-Other	CVE-2003-0638	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354064	-	novell	ichain	Unknown vulnerability in Novell iChain 2.2 before Support Pack 1 allows users to access restricted or secure pages without authentication.	NVD-CWE-Other	CVE-2003-0639	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354065	-	gamespy	arcade	Directory traversal vulnerability in GSAPAK.EXE for GameSpy Arcade, possibly versions before 1.3e, allows remote attackers to overwrite arbitrary files and execute arbitrary code via .. (dot dot) seq…	NVD-CWE-Other	CVE-2003-0650	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354066	-	xtokkaetama	xtokkaetama	Buffer overflow in xtokkaetama allows local users to gain privileges via a long -nickname command line argument, a different vulnerability than CVE-2003-0611.	NVD-CWE-Other	CVE-2003-0652	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354067	-	cdrtools	cdrtools	rscsi in cdrtools 2.01 and earlier allows local users to overwrite arbitrary files and gain root privileges by specifying the target file as a command line argument, which is modified while rscsi is …	NVD-CWE-Other	CVE-2003-0655	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354068	-	eroaster	eroaster	eroaster before 2.2.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file that is used as a lockfile.	NVD-CWE-Other	CVE-2003-0656	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354069	-	sun	iplanet_directory_server one_directory_server	Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.	NVD-CWE-Other	CVE-2003-0676	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm

354070	-	netris	netris	Buffer overflow in Netris 0.52 and earlier, and possibly other versions, allows remote malicious Netris servers to execute arbitrary code on netris clients via a long server response.	NVD-CWE-Other	CVE-2003-0685	2016-10-18 11:36	2003-08-27	Show	GitHub Exploit DB Packet Storm