Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241981	6.8	警告	Ronan Dowling	-	Drupal 用 Node Hierarchy モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2728	2012-06-29 10:51	2012-06-13	Show	GitHub Exploit DB Packet Storm

241982	5.8	警告	JanRain	-	Drupal 用の Janrain Capture モジュールにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-2727	2012-06-29 10:51	2012-06-13	Show	GitHub Exploit DB Packet Storm

241983	2.1	注意	Alberto Trujillo Gonzalez	-	Drupal 用の Protest モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2726	2012-06-29 10:49	2012-06-6	Show	GitHub Exploit DB Packet Storm

241984	3.5	注意	Authoring HTML	-	Drupal 用の Authoring HTML モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2725	2012-06-29 10:49	2012-06-6	Show	GitHub Exploit DB Packet Storm

241985	2.6	注意	Nextide	-	Drupal 用の Maestro モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2723	2012-06-29 10:48	2012-06-6	Show	GitHub Exploit DB Packet Storm

241986	4.3	警告	Scott Reynen	-	Drupal 用の Node Embed モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2722	2012-06-29 10:47	2012-06-6	Show	GitHub Exploit DB Packet Storm

241987	6.8	警告	Moshe Weitzman	-	Drupal 用の Organic Groups モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2721	2012-06-29 10:46	2012-06-6	Show	GitHub Exploit DB Packet Storm

241988	5	警告	Adam Ross	-	Drupal 用の Token Authentication モジュールにおける設定以上の権限を持つリクエストを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2720	2012-06-29 10:43	2012-06-6	Show	GitHub Exploit DB Packet Storm

241989	5.1	警告	Nextide	-	Drupal 用の filedepot モジュールにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2719	2012-06-29 10:39	2012-05-30	Show	GitHub Exploit DB Packet Storm

241990	4.3	警告	Jason Moore	-	Drupal 用の Amadou テーマモジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2715	2012-06-29 10:37	2012-05-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268891	8.1	HIGH Network	pk-app-wonderbox_project	pk-app-wonderbox	pk-app-wonderbox is an integration with wonderbox pk-app-wonderbox downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution …	CWE-310 Cryptographic Issues	CVE-2016-10685	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268892	8.1	HIGH Network	healthcenter_project	healthcenter	healthcenter - IBM Monitoring and Diagnostic Tools health Center agent healthcenter downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remot…	CWE-310 Cryptographic Issues	CVE-2016-10684	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268893	8.1	HIGH Network	hujiang	arcanist	arcanist downloads resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker co…	CWE-310 Cryptographic Issues	CVE-2016-10683	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268894	8.1	HIGH Network	serc.js_project	serc.js	serc.js is a Selenium RC process wrapper serc.js downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping …	CWE-310 Cryptographic Issues	CVE-2016-10678	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268895	8.1	HIGH Network	google-closure-tools-latest_project	google-closure-tools-latest	google-closure-tools-latest is a Node.js module wrapper for downloading the latest version of the Google Closure tools google-closure-tools-latest downloads binary resources over HTTP, which leaves i…	CWE-310 Cryptographic Issues	CVE-2016-10677	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268896	8.1	HIGH Network	rs-brightcove_project	rs-brightcove	rs-brightcove is a wrapper around brightcove's web api rs-brightcove downloads source file resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code exe…	CWE-310 Cryptographic Issues	CVE-2016-10676	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268897	8.1	HIGH Network	libsbmlsim_project	libsbmlsim	libsbmlsim is a module that installs linux binaries for libsbmlsim libsbmlsim downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code…	CWE-310 Cryptographic Issues	CVE-2016-10675	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268898	8.1	HIGH Network	ipip	ipip-coffee	ipip-coffee queries geolocation information from IP ipip-coffee downloads geolocation resources over HTTP, which leaves it vulnerable to MITM attacks. This could impact the integrity and availability…	CWE-310 Cryptographic Issues	CVE-2016-10673	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268899	8.1	HIGH Network	cloudpub-redis_project	cloudpub-redis	cloudpub-redis is a module for CloudPub: Redis Backend cloudpub-redis downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code executi…	CWE-310 Cryptographic Issues	CVE-2016-10672	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

268900	8.1	HIGH Network	mystem-wrapper_project	mystem-wrapper	mystem-wrapper is a Yandex mystem app wrapper module. mystem-wrapper downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code executio…	CWE-310 Cryptographic Issues	CVE-2016-10671	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm