Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240541	7.5	危険	edgephp	-	Edge PHP CBQuick の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2699	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

240542	7.2	危険	FreeBSD	-	FreeBSD におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2693	2012-06-26 16:19	2010-07-13	Show	GitHub Exploit DB Packet Storm

240543	4.3	警告	2daybiz	-	2daybiz Custom T-Shirt Design Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2692	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

240544	7.5	危険	2daybiz	-	2daybiz Custom T-Shirt Design Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2691	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

240545	7.5	危険	customerparadigm	-	Customer Paradigm PageDirector CMS における管理権限を持つユーザを追加される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2685	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

240546	7.5	危険	customerparadigm	-	Customer Paradigm PageDirector CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2684	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

240547	7.5	危険	customerparadigm	-	Customer Paradigm PageDirector CMS の result.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2683	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

240548	4.3	警告	alanzard	-	TSOKA:CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2675	2012-06-26 16:19	2010-07-8	Show	GitHub Exploit DB Packet Storm

240549	7.5	危険	alanzard	-	TSOKA:CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2674	2012-06-26 16:19	2010-07-8	Show	GitHub Exploit DB Packet Storm

240550	7.5	危険	devana	-	Devana の profile_view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2673	2012-06-26 16:19	2010-07-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286261	-	staruml	staruml	Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote attackers to execute arbitrary code via a long argument.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5578	2024-11-21 10:57	2013-08-25	Show	GitHub Exploit DB Packet Storm

286262	-	bestpractical	rt	Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x before 4.0.13, when MakeClicky is configured, allows remote attackers to inject arbitrary web script or HTML via a URL in a ticket…	CWE-79 Cross-site Scripting	CVE-2013-5587	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

286263	-	axel_jung	js_css_optimizer	Cross-site scripting (XSS) vulnerability in the Javascript and CSS Optimizer extension before 1.1.14 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5570	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

286264	-	heiko_sudar	slideshare	SQL injection vulnerability in the Slideshare extension 0.1.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-5569	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

286265	-	stanislas_rolland	static_info_tables	Cross-site scripting (XSS) vulnerability in the Static Info Tables (static_info_tables) extension before 2.3.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified…	CWE-79 Cross-site Scripting	CVE-2013-5323	2024-11-21 10:57	2013-08-21	Show	GitHub Exploit DB Packet Storm

286266	-	jan_bednarik	cooluri	SQL injection vulnerability in the CoolURI extension before 1.0.30 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-5322	2024-11-21 10:57	2013-08-21	Show	GitHub Exploit DB Packet Storm

286267	-	alienvault	open_source_security_information_management	Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) sensor parameter in a…	CWE-89 SQL Injection	CVE-2013-5321	2024-11-21 10:57	2013-08-20	Show	GitHub Exploit DB Packet Storm

286268	-	sourcetreesolutions	mojoportal	Cross-site scripting (XSS) vulnerability in Forums/EditPost.aspx in mojoPortal before 2.3.9.8 allows remote attackers to inject arbitrary web script or HTML via the txtSubject parameter.	CWE-79 Cross-site Scripting	CVE-2013-5320	2024-11-21 10:57	2013-08-20	Show	GitHub Exploit DB Packet Storm

286269	-	atlassian	jira	Cross-site scripting (XSS) vulnerability in secure/admin/user/views/deleteuserconfirm.jsp in the Admin Panel in Atlassian JIRA before 6.0.5 allows remote attackers to inject arbitrary web script or H…	CWE-79 Cross-site Scripting	CVE-2013-5319	2024-11-21 10:57	2013-08-20	Show	GitHub Exploit DB Packet Storm

286270	-	benjamin_arnaudetr	ginkgocms	SQL injection vulnerability in Ginkgo CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the rang parameter to index.php.	CWE-89 SQL Injection	CVE-2013-5318	2024-11-21 10:57	2013-08-20	Show	GitHub Exploit DB Packet Storm