Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241201	3.5	注意	63reasons	-	Drupal 用 SuperCron モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1628	2012-09-21 14:59	2012-01-11	Show	GitHub Exploit DB Packet Storm

241202	6	警告	Karen Stevenson	-	Drupal 用 Date モジュールのイベントの変更フォームにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1626	2012-09-21 14:59	2012-01-11	Show	GitHub Exploit DB Packet Storm

241203	6	警告	WizOne Solutions	-	Drupal 用 Fill PDF モジュールの fillpdf.admin.inc における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-1625	2012-09-21 14:58	2012-01-4	Show	GitHub Exploit DB Packet Storm

241204	6.8	警告	Erik Webb	-	Drupal 用 Password Policy モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1633	2012-09-21 14:58	2012-01-11	Show	GitHub Exploit DB Packet Storm

241205	2.1	注意	Erik Webb	-	Drupal 用 Password Policy モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1632	2012-09-21 14:57	2012-01-11	Show	GitHub Exploit DB Packet Storm

241206	3.5	注意	Marco Villegas	-	Drupal 用 Vote Up/Down モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1627	2012-09-21 14:52	2012-01-11	Show	GitHub Exploit DB Packet Storm

241207	2.1	注意	Alquimia	-	Drupal 用 Managesite モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1640	2012-09-21 14:52	2012-01-25	Show	GitHub Exploit DB Packet Storm

241208	6	警告	Dominique CLAUSE	-	Drupal 用 Search Autocomplete モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1638	2012-09-21 14:51	2012-01-25	Show	GitHub Exploit DB Packet Storm

241209	3.5	注意	CollectiveColors	-	Drupal 用 Taxonomy Views Integrator モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1653	2012-09-21 14:35	2012-02-29	Show	GitHub Exploit DB Packet Storm

241210	2.1	注意	Wim Leers	-	Drupal 用 Hierarchical Select モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1652	2012-09-21 14:34	2012-02-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269361	7.5	HIGH Network	microsoft	edge internet_explorer	Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability tha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3289	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

269362	7.5	HIGH Network	microsoft	internet_explorer	Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-20…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3288	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

269363	7.5	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_10 windows_8.1 windows_7 windows_rt_8.1 windows_vista	Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows ma…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3237	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

269364	6.2	MEDIUM Local	ibm	tivoli_storage_flashcopy_manager_for_sql_server tivoli_storage_manager_for_databases_data_protection_for_microsoft_sql_server	IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka IBM Spectrum Protect for Databases) 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Mana…	CWE-200 Information Exposure	CVE-2016-3059	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

269365	5.4	MEDIUM Network	ibm	filenet_workplace	Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace 4.0.2 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file.	CWE-79 Cross-site Scripting	CVE-2016-3054	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

269366	6.5	MEDIUM Network	ibm	connections_portlets	Open redirect vulnerability in the Connections Portlets component 5.x before 5.0.2 for IBM WebSphere Portal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attac…	CWE-284 Improper Access Control	CVE-2016-2989	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

269367	3.7	LOW Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x before 8.0.0.13, 8.5.0.x before 8.5.5.10, 8.5.0.x and 16.0.0.x Liberty before Liberty Fix Pack 16.0.0.3, and 9.0.0.x before 9.0.0.1…	CWE-284 Improper Access Control	CVE-2016-2960	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

269368	5.4	MEDIUM Network	ibm	websphere_portal	Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.x through 7.0.0.2 CF30, 8.0.0.x through 8.0.0.1 CF21, and 8.5.0 before C…	CWE-79 Cross-site Scripting	CVE-2016-2925	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

269369	5.4	MEDIUM Network	ibm	rational_publishing_engine	Unrestricted file upload vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to execute arbitrary code by specif…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-2914	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

269370	5.4	MEDIUM Network	ibm	rational_publishing_engine	Cross-site scripting (XSS) vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to inject arbitrary web script or…	CWE-79 Cross-site Scripting	CVE-2016-2912	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm