Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250371 7.5 危険 BTITeam - BtiTracker の include/functions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5986 2012-06-26 15:54 2007-11-14 Show GitHub Exploit DB Packet Storm
250372 4.3 警告 bti-tracker - BtiTracker におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5985 2012-06-26 15:54 2007-11-14 Show GitHub Exploit DB Packet Storm
250373 4.3 警告 eggblog - eggblog の home/rss.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5980 2012-06-26 15:54 2007-11-14 Show GitHub Exploit DB Packet Storm
250374 4.3 警告 F5 Networks - F5 Firepass 4100 SSL VPN の download_plugin.php3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5979 2012-06-26 15:54 2007-11-14 Show GitHub Exploit DB Packet Storm
250375 7.5 危険 e-vendejo - E-Vendejo の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5951 2012-06-26 15:54 2007-11-13 Show GitHub Exploit DB Packet Storm
250376 4 警告 bandersnatch - Bandersnatch における重要な情報を取得される脆弱性 CWE-noinfo
情報不足
CVE-2007-5942 2012-06-26 15:54 2007-11-13 Show GitHub Exploit DB Packet Storm
250377 10 危険 アドビシステムズ - Adobe Shockwave の SWCtl.SWCtl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-5941 2012-06-26 15:54 2007-11-13 Show GitHub Exploit DB Packet Storm
250378 4.3 警告 fatwire - Fatwire CS CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5932 2012-06-26 15:54 2007-11-10 Show GitHub Exploit DB Packet Storm
250379 4.3 警告 Cerberus, LLC - Cerberus FTP Server の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5930 2012-06-26 15:54 2007-11-10 Show GitHub Exploit DB Packet Storm
250380 4.3 警告 CA Technologies - CA eTrust SiteMinder Agent の forms/smpwservices.fcc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5923 2012-06-26 15:54 2007-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305091 6.1 MEDIUM
Network
atmail atmail Cross-site scripting (XSS) vulnerability in the administrative interface in Atmail Webmail Server 6.4 allows remote attackers to inject arbitrary web script or HTML via the Date field of an email. CWE-79
Cross-site Scripting
CVE-2012-2593 2024-11-21 10:39 2020-02-6 Show GitHub Exploit DB Packet Storm
305092 7.2 HIGH
Network
tinywebgallery tinywebgallery PHP code injection in TinyWebGallery before 1.8.8 allows remote authenticated users with admin privileges to inject arbitrary code into the .htusers.php file. CWE-74
Injection
CVE-2012-2931 2024-11-21 10:39 2020-01-10 Show GitHub Exploit DB Packet Storm
305093 5.3 MEDIUM
Network
md-systems simplenews The Simplenews module 6.x-1.x before 6.x-1.4, 6.x-2.x before 6.x-2.0-alpha4, and 7.x-1.x before 7.x-1.0-rc1 for Drupal reveals the email addresses of new mailing list subscribers when confirmation is… CWE-200
Information Exposure
CVE-2012-2724 2024-11-21 10:39 2020-01-10 Show GitHub Exploit DB Packet Storm
305094 9.8 CRITICAL
Network
browserid_project browserid The BrowserID (Mozilla Persona) module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentication of arbitrary users via the audience identifier. CWE-287
Improper Authentication
CVE-2012-2714 2024-11-21 10:39 2020-01-10 Show GitHub Exploit DB Packet Storm
305095 4.4 MEDIUM
Local
gnome
debian
canonical
opensuse
networkmanager
debian_linux
ubuntu_linux
opensuse
In NetworkManager 0.9.2.0, when a new wireless network was created with WPA/WPA2 security in AdHoc mode, it created an open/insecure network. CWE-306
Missing Authentication for Critical Function
CVE-2012-2736 2024-11-21 10:39 2019-12-27 Show GitHub Exploit DB Packet Storm
305096 7.5 HIGH
Network
talend restlet An XML eXternal Entity (XXE) issue exists in Restlet 1.1.10 in an endpoint using XML transport, which lets a remote attacker obtain sensitive information. CWE-611
XXE
CVE-2012-2656 2024-11-21 10:39 2019-12-19 Show GitHub Exploit DB Packet Storm
305097 9.8 CRITICAL
Network
solarwinds backup_profiler
storage_profiler
storage_manager
SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote at… CWE-89
SQL Injection
CVE-2012-2576 2024-11-21 10:39 2017-12-21 Show GitHub Exploit DB Packet Storm
305098 7.5 HIGH
Network
ffmpeg ffmpeg Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. CWE-404
 Improper Resource Shutdown or Release
CVE-2012-2805 2024-11-21 10:39 2017-08-29 Show GitHub Exploit DB Packet Storm
305099 9.8 CRITICAL
Network
ffmpeg ffmpeg Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2780. NVD-CWE-noinfo
CVE-2012-2781 2024-11-21 10:39 2017-08-10 Show GitHub Exploit DB Packet Storm
305100 9.8 CRITICAL
Network
ffmpeg ffmpeg Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2781. NVD-CWE-noinfo
CVE-2012-2780 2024-11-21 10:39 2017-08-10 Show GitHub Exploit DB Packet Storm