Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241241	6.8	警告	Wikka Development Team	-	WikkaWiki の AdminUsers コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4452	2012-09-7 15:13	2011-11-13	Show	GitHub Exploit DB Packet Storm

241242	6.4	警告	Wikka Development Team	-	WikkaWiki の handlers/files.xml/files.xml.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4450	2012-09-7 15:12	2011-12-6	Show	GitHub Exploit DB Packet Storm

241243	6.8	警告	Wikka Development Team	-	WikkaWiki の actions/files/files.php における任意の PHP コードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4449	2012-09-7 15:09	2011-12-3	Show	GitHub Exploit DB Packet Storm

241244	7.5	危険	Wikka Development Team	-	WikkaWiki の actions/usersettings/usersettings.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4448	2012-09-7 14:56	2011-12-3	Show	GitHub Exploit DB Packet Storm

241245	5	警告	Apache Software Foundation	-	Apache Struts におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4387	2012-09-7 14:54	2012-08-3	Show	GitHub Exploit DB Packet Storm

241246	6.8	警告	Apache Software Foundation	-	Apache Struts のトークンチェックメカニズムにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-4386	2012-09-7 14:52	2012-08-3	Show	GitHub Exploit DB Packet Storm

241247	5	警告	Thomas Eibner	-	Apache HTTP Server 用 mod_rpaf モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-3526	2012-09-7 14:49	2012-09-5	Show	GitHub Exploit DB Packet Storm

241248	2.1	注意	Tigerfish	-	Drupal 用 Fancy Slide モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2068	2012-09-6 14:05	2012-03-14	Show	GitHub Exploit DB Packet Storm

241249	6.8	警告	CKEditor Team	-	Drupal 用 FCKeditor および CKEditor モジュールにおける任意の PHP コードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-2067	2012-09-6 14:03	2012-03-14	Show	GitHub Exploit DB Packet Storm

241250	4.3	警告	CKEditor Team	-	Drupal 用 FCKeditor および CKEditor モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2066	2012-09-6 14:02	2012-03-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285441	-	subnet	substation_server	The GPT library in the Telegyr 8979 Master Protocol application in SUBNET SubSTATION Server 2 before SSNET 2.12 HF18808 allows remote attackers to cause a denial of service (persistent service crash)…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-2357	2024-11-21 11:06	2014-08-12	Show	GitHub Exploit DB Packet Storm

285442	-	hp	nonstop_netbatch	Unspecified vulnerability in HP NonStop NetBatch G06.14 through G06.32.01, H06 through H06.28, and J06 through J06.17.01 allows remote authenticated users to gain privileges for NetBatch job executio…	NVD-CWE-noinfo	CVE-2014-2627	2024-11-21 11:06	2014-08-1	Show	GitHub Exploit DB Packet Storm

285443	-	innominate	mguard_firmware	Innominate mGuard before 7.6.4 and 8.x before 8.0.3 does not require authentication for snapshot downloads, which allows remote attackers to obtain sensitive information via a crafted HTTPS request.	CWE-200 Information Exposure	CVE-2014-2356	2024-11-21 11:06	2014-07-30	Show	GitHub Exploit DB Packet Storm

285444	-	hp	network_virtualization	Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute…	CWE-22 Path Traversal	CVE-2014-2626	2024-11-21 11:06	2014-07-27	Show	GitHub Exploit DB Packet Storm

285445	-	hp	network_virtualization	Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to read arbitrary files via crafted input,…	CWE-22 Path Traversal	CVE-2014-2625	2024-11-21 11:06	2014-07-27	Show	GitHub Exploit DB Packet Storm

285446	-	morpho	itemiser_3	Morpho Itemiser 3 8.17 has hardcoded administrative credentials, which makes it easier for remote attackers to obtain access via a login request.	NVD-CWE-Other	CVE-2014-2363	2024-11-21 11:06	2014-07-26	Show	GitHub Exploit DB Packet Storm

285447	-	honeywell	falcon_xlweb_linux_controller falcon_xlweb_xlwebexe	Honeywell FALCON XLWeb Linux controller devices 2.04.01 and earlier and FALCON XLWeb XLWebExe controller devices 2.02.11 and earlier allow remote attackers to bypass authentication and obtain adminis…	NVD-CWE-Other	CVE-2014-2717	2024-11-21 11:06	2014-07-24	Show	GitHub Exploit DB Packet Storm

285448	-	omron	ns_series_system_program_firmware ns10_hmi_terminal ns12_hmi_terminal ns15_hmi_terminal ns5_hmi_terminal ns8_hmi_terminal	Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2014-2370	2024-11-21 11:06	2014-07-24	Show	GitHub Exploit DB Packet Storm

285449	-	omron	ns_series_system_program_firmware ns10_hmi_terminal ns12_hmi_terminal ns15_hmi_terminal ns5_hmi_terminal ns8_hmi_terminal	Cross-site request forgery (CSRF) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to hijack the authen…	CWE-352 Origin Validation Error	CVE-2014-2369	2024-11-21 11:06	2014-07-24	Show	GitHub Exploit DB Packet Storm

285450	-	oleumtech	wio_dh2_wireless_gateway sensor_wireless_i\/o_module	OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules rely exclusively on a time value for entropy in key generation, which makes it easier for remote attackers to defeat cryptographic p…	NVD-CWE-Other	CVE-2014-2362	2024-11-21 11:06	2014-07-24	Show	GitHub Exploit DB Packet Storm