Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242341 5.8 警告 JanRain - Drupal 用の Janrain Capture モジュールにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2727 2012-06-29 10:51 2012-06-13 Show GitHub Exploit DB Packet Storm
242342 2.1 注意 Alberto Trujillo Gonzalez - Drupal 用の Protest モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2726 2012-06-29 10:49 2012-06-6 Show GitHub Exploit DB Packet Storm
242343 3.5 注意 Authoring HTML - Drupal 用の Authoring HTML モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2725 2012-06-29 10:49 2012-06-6 Show GitHub Exploit DB Packet Storm
242344 2.6 注意 Nextide - Drupal 用の Maestro モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2723 2012-06-29 10:48 2012-06-6 Show GitHub Exploit DB Packet Storm
242345 4.3 警告 Scott Reynen - Drupal 用の Node Embed モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2722 2012-06-29 10:47 2012-06-6 Show GitHub Exploit DB Packet Storm
242346 6.8 警告 Moshe Weitzman - Drupal 用の Organic Groups モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2721 2012-06-29 10:46 2012-06-6 Show GitHub Exploit DB Packet Storm
242347 5 警告 Adam Ross - Drupal 用の Token Authentication モジュールにおける設定以上の権限を持つリクエストを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2720 2012-06-29 10:43 2012-06-6 Show GitHub Exploit DB Packet Storm
242348 5.1 警告 Nextide - Drupal 用の filedepot モジュールにおける脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2719 2012-06-29 10:39 2012-05-30 Show GitHub Exploit DB Packet Storm
242349 4.3 警告 Jason Moore - Drupal 用の Amadou テーマモジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2715 2012-06-29 10:37 2012-05-30 Show GitHub Exploit DB Packet Storm
242350 6.8 警告 Isaac Sukin - Drupal 用の BrowserID モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2713 2012-06-29 10:35 2012-05-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269071 7.5 HIGH
Network 		cisco spark The REST interface in Cisco Spark 2015-07-04 allows remote attackers to bypass intended access restrictions and create arbitrary user accounts via unspecified web requests, aka Bug ID CSCuv72584. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1322 2024-11-21 11:46 2016-02-12 Show GitHub Exploit DB Packet Storm
269072 6.7 MEDIUM
Local 		cisco prime_collaboration The CLI in Cisco Prime Collaboration 9.0 and 11.0 allows local users to execute arbitrary OS commands as root by leveraging administrator privileges, aka Bug ID CSCux69286. CWE-264
CWE-78
Permissions, Privileges, and Access Controls
OS Command  		CVE-2016-1320 2024-11-21 11:46 2016-02-12 Show GitHub Exploit DB Packet Storm
269073 7.5 HIGH
Network 		cisco email_security_appliance_firmeware The proxy engine in Cisco Advanced Malware Protection (AMP), when used with Email Security Appliance (ESA) 9.5.0-201, 9.6.0-051, and 9.7.0-125, allows remote attackers to bypass intended content rest… CWE-284
Improper Access Control 		CVE-2016-1315 2024-11-21 11:46 2016-02-12 Show GitHub Exploit DB Packet Storm
269074 9.8 CRITICAL
Network 		cisco adaptive_security_appliance_software Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7),… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1287 2024-11-21 11:46 2016-02-12 Show GitHub Exploit DB Packet Storm
269075 5.3 MEDIUM
Network 		sun
samsung
zyxel
zzinc 		opensolaris
x14j_firmware
gs1900-10hp_firmware
keymouse_firmware 		Cisco Unified Communications Manager (aka CallManager) 9.1(2.10000.28), 10.5(2.10000.5), 10.5(2.12901.1), and 11.0(1.10000.10); Unified Communications Manager IM & Presence Service 10.5(2); Unified C… CWE-200
Information Exposure 		CVE-2016-1319 2024-11-21 11:46 2016-02-9 Show GitHub Exploit DB Packet Storm
269076 6.1 MEDIUM
Network 		cisco application_policy_infrastructure_controller_enterprise_module Cross-site scripting (XSS) vulnerability in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.1 allows remote attackers to inject arbitrary web script or HTML via craft… CWE-79
Cross-site Scripting 		CVE-2016-1318 2024-11-21 11:46 2016-02-9 Show GitHub Exploit DB Packet Storm
269077 4.3 MEDIUM
Network 		zyxel gs1900-10hp_firmware Cisco Unified Communications Manager 11.5(0.98000.480) allows remote authenticated users to obtain sensitive database table-name and entity-name information via a direct request to an unspecified URL… CWE-200
Information Exposure 		CVE-2016-1317 2024-11-21 11:46 2016-02-9 Show GitHub Exploit DB Packet Storm
269078 5.3 MEDIUM
Network 		cisco telepresence_video_communication_server_software Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, as used in conjunction with Jabber Guest, allows remote attackers to obtain sensitive call-statistics information via a direct r… CWE-200
Information Exposure 		CVE-2016-1316 2024-11-21 11:46 2016-02-9 Show GitHub Exploit DB Packet Storm
269079 6.1 MEDIUM
Network 		cisco webex_meetings_server Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx Meetings Server 2.5.1.5 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuy01… CWE-79
Cross-site Scripting 		CVE-2016-1309 2024-11-21 11:46 2016-02-7 Show GitHub Exploit DB Packet Storm
269080 6.5 MEDIUM
Network 		samsung x14j_firmware SQL injection vulnerability in Cisco Unified Communications Manager 10.5(2.13900.9) allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCux99227. CWE-89
SQL Injection 		CVE-2016-1308 2024-11-21 11:46 2016-02-7 Show GitHub Exploit DB Packet Storm