Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245061	4.3	警告	Scott Reynen	-	Drupal 用の Node Embed モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2722	2012-06-29 10:47	2012-06-6	Show	GitHub Exploit DB Packet Storm

245062	6.8	警告	Moshe Weitzman	-	Drupal 用の Organic Groups モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2721	2012-06-29 10:46	2012-06-6	Show	GitHub Exploit DB Packet Storm

245063	5	警告	Adam Ross	-	Drupal 用の Token Authentication モジュールにおける設定以上の権限を持つリクエストを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2720	2012-06-29 10:43	2012-06-6	Show	GitHub Exploit DB Packet Storm

245064	5.1	警告	Nextide	-	Drupal 用の filedepot モジュールにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2719	2012-06-29 10:39	2012-05-30	Show	GitHub Exploit DB Packet Storm

245065	4.3	警告	Jason Moore	-	Drupal 用の Amadou テーマモジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2715	2012-06-29 10:37	2012-05-30	Show	GitHub Exploit DB Packet Storm

245066	6.8	警告	Isaac Sukin	-	Drupal 用の BrowserID モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2713	2012-06-29 10:35	2012-05-23	Show	GitHub Exploit DB Packet Storm

245067	2.6	注意	Thomas Seidl	-	Drupal 用の Search API モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2712	2012-06-29 10:29	2012-05-23	Show	GitHub Exploit DB Packet Storm

245068	2.1	注意	Nancy Wichmann	-	Drupal 用 Taxonomy List モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2711	2012-06-29 10:25	2012-05-23	Show	GitHub Exploit DB Packet Storm

245069	2.6	注意	John Albin Wilkins	-	Drupal 用 Zen モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2710	2012-06-29 10:13	2012-05-16	Show	GitHub Exploit DB Packet Storm

245070	2.1	注意	Aegir project	-	Drupal 用 Hostmaster モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2708	2012-06-29 10:11	2012-05-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253431	7.8	HIGH Local	qcacld_2.0_project	qcacld_2.0	While parsing Netlink attributes in QCA_WLAN_VENDOR_ATTR_EXTSCAN_BSSID_HOTLIST_PARAMS_LOST_AP_SAMPLE_SIZE in qcacld 2.0 before 2017-05-16, a buffer overread could occur.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9694	2024-11-21 12:36	2018-03-31	Show	GitHub Exploit DB Packet Storm

253432	5.5	MEDIUM Local	google	android	The length of attribute value for STA_EXT_CAPABILITY in __wlan_hdd_change_station in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-06 being less than the actual lenth of StaPara…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9693	2024-11-21 12:36	2018-03-31	Show	GitHub Exploit DB Packet Storm

253433	7.8	HIGH Local	google	android	When an atomic commit is issued on a writeback panel with a NULL output_layer parameter in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-03, a NULL pointer dereference may poten…	CWE-476 NULL Pointer Dereference	CVE-2017-9692	2024-11-21 12:36	2018-03-31	Show	GitHub Exploit DB Packet Storm

253434	4.7	MEDIUM Local	google	android	There is a race condition in Android for MSM, Firefox OS for MSM, and QRD Android that allows to access to already free'd memory in the debug message output functionality contained within the mobicor…	CWE-362 Race Condition	CVE-2017-9691	2024-11-21 12:36	2018-03-31	Show	GitHub Exploit DB Packet Storm

253435	6.5	MEDIUM Network	google	android	In Android before 2017-08-05 on Qualcomm MSM, Firefox OS for MSM, QRD Android, and all Android releases from CAF using the Linux kernel, if kernel memory address is passed from userspace through iris…	CWE-200 Information Exposure	CVE-2017-9681	2024-11-21 12:36	2018-03-31	Show	GitHub Exploit DB Packet Storm

253436	6.1	MEDIUM Network	projectsend	projectsend	Cross-site scripting (XSS) vulnerability in ProjectSend (formerly cFTP) before commit 6c3710430be26feb5371cb0377e5355d6f9a27ca allows remote attackers to inject arbitrary web script or HTML via the D…	CWE-79 Cross-site Scripting	CVE-2017-9786	2024-11-21 12:36	2018-03-7	Show	GitHub Exploit DB Packet Storm

253437	6.1	MEDIUM Network	projectsend	projectsend	Cross-site scripting (XSS) vulnerability in ProjectSend (formerly cFTP) before commit 6c3710430be26feb5371cb0377e5355d6f9a27ca allows remote attackers to inject arbitrary web script or HTML via the D…	CWE-79 Cross-site Scripting	CVE-2017-9783	2024-11-21 12:36	2018-03-7	Show	GitHub Exploit DB Packet Storm

253438	7.5	HIGH Network	parallels	remote_application_server	In the web interface of Parallels Remote Application Server (RAS) 15.5 Build 16140, a vulnerability exists due to improper validation of the file path when requesting a resource under the "RASHTML5Ga…	CWE-22 Path Traversal	CVE-2017-9447	2024-11-21 12:36	2018-03-1	Show	GitHub Exploit DB Packet Storm

253439	9.8	CRITICAL Network	facetag_project	facetag	ws.php in the Facetag extension 0.0.3 for Piwigo allows SQL injection via the imageId parameter in a facetag.changeTag or facetag.listTags action.	CWE-89 SQL Injection	CVE-2017-9426	2024-11-21 12:36	2018-02-26	Show	GitHub Exploit DB Packet Storm

253440	6.1	MEDIUM Network	facetag_project	facetag	The Facetag extension 0.0.3 for Piwigo allows XSS via the name parameter to ws.php in a facetag.changeTag action.	CWE-79 Cross-site Scripting	CVE-2017-9425	2024-11-21 12:36	2018-02-26	Show	GitHub Exploit DB Packet Storm