Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240161 6.4 警告 Sami Kiminki - Drupal 用 Redirecting click bouncer モジュールにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2012-2062 2012-09-19 16:43 2012-03-14 Show GitHub Exploit DB Packet Storm
240162 6.8 警告 Nijskens Raf - Drupal 用 Admin tools モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2061 2012-09-19 16:41 2012-03-14 Show GitHub Exploit DB Packet Storm
240163 4.3 警告 Nijskens Raf - Drupal 用 Admin tools モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2060 2012-09-19 16:40 2012-03-14 Show GitHub Exploit DB Packet Storm
240164 4.3 警告 Steve Lockwood - Drupal 用 ticketyboo News Ticker モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2059 2012-09-19 16:40 2012-03-14 Show GitHub Exploit DB Packet Storm
240165 5 警告 Ubercart.org - Drupal 用 Ubercart Payflow モジュールにおける支払いをねつ造される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2058 2012-09-19 16:39 2012-03-14 Show GitHub Exploit DB Packet Storm
240166 6.8 警告 Ubercart.org - Drupal 用 Ubercart Bulk Stock Updater モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2057 2012-09-19 16:33 2012-03-14 Show GitHub Exploit DB Packet Storm
240167 6.8 警告 Nathan Phillip Brink - Drupal 用 Content Lock モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2056 2012-09-19 16:31 2012-03-14 Show GitHub Exploit DB Packet Storm
240168 4.3 警告 Nikola Posa - Webfolio CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1899 2012-09-19 16:29 2012-09-17 Show GitHub Exploit DB Packet Storm
240169 4.3 警告 Netwin Ltd - NetWin SurgeMail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2575 2012-09-19 16:25 2012-09-17 Show GitHub Exploit DB Packet Storm
240170 4.3 警告 Oxwall - Oxwall の ow_updates/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4928 2012-09-19 16:21 2012-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286051 - cisco unified_communications_manager The Real Time Monitoring Tool (RTMT) web application in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier does not properly enforce authentication requirements, which allows remot… CWE-287
Improper Authentication 		CVE-2014-0732 2024-11-21 11:02 2014-02-20 Show GitHub Exploit DB Packet Storm
286052 - emc
dell 		rsa_bsafe_ssl-j
bsafe_ssl-j 		The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a… CWE-310
Cryptographic Issues 		CVE-2014-0627 2024-11-21 11:02 2014-02-18 Show GitHub Exploit DB Packet Storm
286053 - emc
dell 		rsa_bsafe_ssl-j
bsafe_ssl-j 		The (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 make it easier for remote attackers to bypass intended cryptographic protection mechanisms by triggering a… CWE-310
Cryptographic Issues 		CVE-2014-0626 2024-11-21 11:02 2014-02-18 Show GitHub Exploit DB Packet Storm
286054 - emc
dell 		rsa_bsafe_ssl-j
bsafe_ssl-j 		The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to cause a denial of service (memory consumption) … CWE-399
 Resource Management Errors 		CVE-2014-0625 2024-11-21 11:02 2014-02-18 Show GitHub Exploit DB Packet Storm
286055 - phpmyfaq phpmyfaq Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2014-0814 2024-11-21 11:02 2014-02-15 Show GitHub Exploit DB Packet Storm
286056 - phpmyfaq phpmyfaq Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings. CWE-352
 Origin Validation Error 		CVE-2014-0813 2024-11-21 11:02 2014-02-15 Show GitHub Exploit DB Packet Storm
286057 - ibm connections_portlets Multiple cross-site scripting (XSS) vulnerabilities in IBM Connections Portlets 4.x before 4.5.1 FP1 for IBM WebSphere Portal 7.0.0.2 and 8.0.0.1 allow remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2014-0855 2024-11-21 11:02 2014-02-14 Show GitHub Exploit DB Packet Storm
286058 - cisco unified_communications_manager SQL injection vulnerability in the Enterprise Mobility Application (EMApp) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via a craf… CWE-89
SQL Injection 		CVE-2014-0729 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286059 - cisco unified_communications_manager SQL injection vulnerability in the Java database interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands via a crafted UR… CWE-89
SQL Injection 		CVE-2014-0728 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286060 - cisco unified_communications_manager SQL injection vulnerability in the CallManager Interactive Voice Response (CMIVR) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via… CWE-89
SQL Injection 		CVE-2014-0727 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm