Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
245911 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0458 2012-09-3 16:10 2012-03-13 Show GitHub Exploit DB Packet Storm
245912 6.8 警告 Autosave - Drupal 用 Autosave モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-2097 2012-09-3 16:02 2012-04-11 Show GitHub Exploit DB Packet Storm
245913 7.1 危険 WellinTech - WellinTech KingSCADA における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2012-1977 2012-09-3 15:57 2012-01-20 Show GitHub Exploit DB Packet Storm
245914 6 警告 IBM - IBM WebSphere Application Server における管理者のアクセス権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2012-3325 2012-09-3 14:21 2012-08-30 Show GitHub Exploit DB Packet Storm
245915 6.4 警告 EPractize Labs - EPractize Labs Subscription Manager における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認
CVE-2011-5136 2012-09-3 14:20 2012-08-30 Show GitHub Exploit DB Packet Storm
245916 6 警告 Docebo - DoceboLMS の iotask モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-5135 2012-09-3 14:18 2012-08-30 Show GitHub Exploit DB Packet Storm
245917 6 警告 Widget Factory Limited - Joomla! 用 JCE コンポーネントにおける任意の PHP コードを実行される脆弱性 CWE-Other
その他
CVE-2011-5134 2012-09-3 14:15 2012-08-30 Show GitHub Exploit DB Packet Storm
245918 10 危険 MyBB Group - MyBB における脆弱性 CWE-noinfo
情報不足
CVE-2011-5133 2012-09-3 14:14 2011-11-25 Show GitHub Exploit DB Packet Storm
245919 4.3 警告 MyBB Group - MyBB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5132 2012-09-3 14:13 2011-11-25 Show GitHub Exploit DB Packet Storm
245920 6.8 警告 MyBB Group - MyBB の global.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-5131 2012-09-3 13:53 2011-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352911 - sap sap_web_application_server frameset.htm in the BSP runtime in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to log users out and redirect them to arbitrary web sites via a close command in the sap-… NVD-CWE-Other
CVE-2005-3634 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352912 - sap sap_web_application_server Multiple cross-site scripting (XSS) vulnerabilities in SAP Web Application Server (WAS) 6.10 through 7.00 allow remote attackers to inject arbitrary web script or HTML via (1) the sap-syscmd in sap-s… NVD-CWE-Other
CVE-2005-3635 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352913 - sap sap_web_application_server Cross-site scripting (XSS) vulnerability in SAP Web Application Server (WAS) 6.10 allows remote attackers to inject arbitrary web script or HTML via Error Pages. NVD-CWE-Other
CVE-2005-3636 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352914 - floosietek ftgate Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute arbitrary code via long arguments to various IMAP commands, as demonst… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2005-3640 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352915 - phpadsnew
phppgads
phpadsnew
phppgads
phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the application installation path and other sensitive information via direct requests to (1) create.php, a… CWE-200
Information Exposure
CVE-2005-3645 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352916 - phpadsnew
phppgads
phpadsnew
phppgads
Upgrade to phpAdsNew version 2.0.7 : http://sourceforge.net/project/showfiles.php?group_id=11386 Upgrade to phpPgAds version 2.0.7 : http://sourceforge.net/project/showfiles.php?group_id=36679 … CWE-200
Information Exposure
CVE-2005-3645 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352917 - phpadsnew
phppgads
phpadsnew
phppgads
Multiple SQL injection vulnerabilities in lib-sessions.inc.php in phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allow remote attackers to execute arbitrary SQL commands via the sessionID… CWE-89
SQL Injection
CVE-2005-3646 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352918 - winability folder_guard Folder Guard allows local users to bypass protections by running from or installing to the temporary files directory. NVD-CWE-Other
CVE-2005-3647 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352919 - moodle moodle Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and … NVD-CWE-Other
CVE-2005-3648 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm
352920 - first4internet_xcp_drm first4internet_xcp_drm The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the First4Internet XCP DRM, has "safe for scripting" enabled, which allows remote attackers to execute arbitrary code by calling vuln… CWE-94
Code Injection
CVE-2005-3650 2017-07-11 10:33 2005-11-17 Show GitHub Exploit DB Packet Storm