Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241121	7.5	危険	E. Wayne Madison	-	Joomla! 用 Alameda コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5112	2012-08-27 14:31	2011-11-9	Show	GitHub Exploit DB Packet Storm

241122	7.5	危険	kajianwebsite.org	-	Kajian Website CMS Balitbang における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5111	2012-08-27 14:31	2012-08-23	Show	GitHub Exploit DB Packet Storm

241123	7.5	危険	John Geo	-	Blogs Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5110	2012-08-27 14:30	2012-08-23	Show	GitHub Exploit DB Packet Storm

241124	7.5	危険	John Geo	-	Freelancer calendar における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5109	2012-08-27 14:29	2012-08-23	Show	GitHub Exploit DB Packet Storm

241125	4.3	警告	AdaptCMS	-	AdaptCMS の config.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5108	2012-08-27 14:29	2012-08-23	Show	GitHub Exploit DB Packet Storm

241126	4.3	警告	WordPress.org	-	WordPress 用 Alert Before Your Post プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5107	2012-08-27 14:28	2012-08-23	Show	GitHub Exploit DB Packet Storm

241127	4.3	警告	Fractalia	-	WordPress 用 Flexible Custom Post Type プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5106	2012-08-27 14:27	2012-08-23	Show	GitHub Exploit DB Packet Storm

241128	4.3	警告	Zoho Corporation	-	ZOHO ManageEngine ADSelfService の EmployeeSearch.cc におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5105	2012-08-27 14:27	2012-08-23	Show	GitHub Exploit DB Packet Storm

241129	4.3	警告	GetShopped.org	-	WordPress 用 WP e-Commerce プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5104	2012-08-27 14:26	2012-08-23	Show	GitHub Exploit DB Packet Storm

241130	7.5	危険	ALURIAN	-	Alurian Prismotube PHP Video Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5103	2012-08-27 14:26	2012-08-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268891	6.5	MEDIUM Network	cybozu	office	customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489.	CWE-20 Improper Input Validation	CVE-2016-1153	2024-11-21 11:45	2016-02-17	Show	GitHub Exploit DB Packet Storm

268892	5.4	MEDIUM Network	cybozu	office	Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to bypass intended access restrictions, and read or write to plan data, via unspecified vectors, a different vulnerability than CV…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1152	2024-11-21 11:45	2016-02-17	Show	GitHub Exploit DB Packet Storm

268893	8.8	HIGH Network	cybozu	office	Multiple cross-site request forgery (CSRF) vulnerabilities in Cybozu Office 9.9.0 through 10.3.0 allow remote attackers to hijack the authentication of arbitrary users.	CWE-352 Origin Validation Error	CVE-2016-1151	2024-11-21 11:45	2016-02-17	Show	GitHub Exploit DB Packet Storm

268894	6.1	MEDIUM Network	cybozu	office	Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C…	CWE-79 Cross-site Scripting	CVE-2016-1150	2024-11-21 11:45	2016-02-17	Show	GitHub Exploit DB Packet Storm

268895	6.1	MEDIUM Network	cybozu	office	Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C…	CWE-79 Cross-site Scripting	CVE-2016-1149	2024-11-21 11:45	2016-02-17	Show	GitHub Exploit DB Packet Storm

268896	7.5	HIGH Network	nec	expresscluster_x	Directory traversal vulnerability in WebManager in NEC EXPRESSCLUSTER X through 3.3 11.31 on Windows and through 3.3 3.3.1-1 on Linux and Solaris allows remote attackers to read arbitrary files via u…	CWE-22 Path Traversal	CVE-2016-1145	2024-11-21 11:45	2016-01-31	Show	GitHub Exploit DB Packet Storm

268897	5.4	MEDIUM Network	websquare	job-cube	Cross-site scripting (XSS) vulnerability in JOB-CUBE -JOB WEB SYSTEM before 1.2.2 and -JOB WEB SYSTEM High Income 1.0.6 and earlier allows remote authenticated users to inject arbitrary web script or…	CWE-79 Cross-site Scripting	CVE-2016-1144	2024-11-21 11:45	2016-01-31	Show	GitHub Exploit DB Packet Storm

268898	6.1	MEDIUM Network	vine_mv_project	vine_mv	Cross-site scripting (XSS) vulnerability in main.rb in Vine MV before 2015-11-08 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-1143	2024-11-21 11:45	2016-01-31	Show	GitHub Exploit DB Packet Storm

268899	4.7	MEDIUM Network	kddi	home_spot_cube_firmware	KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2016-1141	2024-11-21 11:45	2016-01-31	Show	GitHub Exploit DB Packet Storm

268900	6.1	MEDIUM Network	kddi	home_spot_cube_firmware	KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors.	CWE-254 7PK - Security Features	CVE-2016-1140	2024-11-21 11:45	2016-01-31	Show	GitHub Exploit DB Packet Storm