Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240391	10	危険	ワゴジャパン株式会社	-	WAGO I/O System 758 model Industrial PC デバイスにおける管理者のアクセス権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-3013	2012-09-11 10:14	2012-09-5	Show	GitHub Exploit DB Packet Storm

240392	5	警告	Flatnux	-	FlatnuX CMS の controlcenter.php における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-4878	2012-09-11 10:13	2012-09-6	Show	GitHub Exploit DB Packet Storm

240393	6.8	警告	Flatnux	-	FlatnuX CMS の controlcenter.php におけるクロスサイトスクリプティングの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-4877	2012-09-11 10:13	2012-09-6	Show	GitHub Exploit DB Packet Storm

240394	10	危険	TRENDnet	-	TRENDnet SecurView Wireless Internet Camera におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4876	2012-09-11 10:12	2012-09-6	Show	GitHub Exploit DB Packet Storm

240395	10	危険	Another WordPress Classifieds Plugin	-	Another WordPress Classifieds Plugin における脆弱性	CWE-noinfo 情報不足	CVE-2012-4874	2012-09-11 10:12	2012-09-6	Show	GitHub Exploit DB Packet Storm

240396	4.3	警告	SIR	-	GNUBoard の file_download 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4873	2012-09-11 10:11	2012-03-9	Show	GitHub Exploit DB Packet Storm

240397	4.3	警告	Kayako	-	Kayako Fusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4872	2012-09-11 10:10	2012-09-6	Show	GitHub Exploit DB Packet Storm

240398	4.3	警告	LiteSpeed Technologies	-	LiteSpeed Web Server の管理者パネルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4871	2012-09-11 10:10	2012-09-6	Show	GitHub Exploit DB Packet Storm

240399	4.3	警告	Public Knowledge Project	-	Open Journal Systems におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1469	2012-09-11 10:09	2012-03-16	Show	GitHub Exploit DB Packet Storm

240400	6	警告	Public Knowledge Project	-	Open Journal Systems における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2012-1468	2012-09-11 10:08	2012-03-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285581	-	iwcn	stark_crm	Multiple cross-site scripting (XSS) vulnerabilities in Stark CRM 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, or (3) notes parameter to the…	CWE-79 Cross-site Scripting	CVE-2014-10009	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285582	-	iwcn	stark_crm	Multiple cross-site request forgery (CSRF) vulnerabilities in Stark CRM 1.0 allow remote attackers to hijack the authentication of administrators for requests that add (1) an administrator via a craf…	CWE-352 Origin Validation Error	CVE-2014-10008	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285583	-	maianscriptworld	maian_weblog	Multiple cross-site scripting (XSS) vulnerabilities in Maian Weblog 4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) email, or (3) subject parameter…	CWE-79 Cross-site Scripting	CVE-2014-10007	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285584	-	maianscriptworld	maian_uploader	Multiple cross-site request forgery (CSRF) vulnerabilities in Maian Uploader 4.0 allow remote attackers to hijack the authentication of unspecified users for requests that conduct cross-site scriptin…	CWE-352 Origin Validation Error	CVE-2014-10006	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285585	-	maianscriptworld	maian_uploader	Maian Uploader 4.0 allows remote attackers to obtain sensitive information via a request without the height parameter to load_flv.js.php, which reveals the installation path in an error message.	CWE-200 Information Exposure	CVE-2014-10005	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285586	-	maianscriptworld	maian_uploader	SQL injection vulnerability in admin/data_files/move.php in Maian Uploader 4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2014-10004	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285587	-	maian_script_world	maian_uploader	Multiple cross-site scripting (XSS) vulnerabilities in Maian Uploader 4.0 allow remote attackers to inject arbitrary web script or HTML via the width parameter to (1) uploader/admin/js/load_flv.js.ph…	CWE-79 Cross-site Scripting	CVE-2014-10003	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285588	-	jetbrains	teamcity	Unspecified vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to obtain sensitive information via unknown vectors.	NVD-CWE-noinfo	CVE-2014-10002	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285589	-	csphere	clansphere	Cross-site scripting (XSS) vulnerability in ClanSphere 2011.4 allows remote attackers to inject arbitrary web script or HTML via the where parameter in a list action to index.php.	CWE-79 Cross-site Scripting	CVE-2014-100010	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm

285590	-	phpjabbers	appointment_scheduler	Multiple cross-site request forgery (CSRF) vulnerabilities in PHPJabbers Appointment Scheduler 2.0 allow remote attackers to hijack the authentication of administrators for requests that (1) conduct …	CWE-352 Origin Validation Error	CVE-2014-10001	2024-11-21 11:03	2015-01-13	Show	GitHub Exploit DB Packet Storm