Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251001	5	警告	mark pilgrim	-	Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2921	2012-05-23 18:50	2012-05-2	Show	GitHub Exploit DB Packet Storm

251002	4.3	警告	Weston Ruter	-	WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2920	2012-05-23 18:48	2012-05-21	Show	GitHub Exploit DB Packet Storm

251003	4.3	警告	Andrew Killen	-	WordPress 用 Share and Follow プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2917	2012-05-23 18:47	2012-05-21	Show	GitHub Exploit DB Packet Storm

251004	4.3	警告	dlo	-	WordPress 用 Sabre プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2916	2012-05-23 18:46	2012-05-21	Show	GitHub Exploit DB Packet Storm

251005	4.3	警告	Hind	-	WordPress 用 Leaflet プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2913	2012-05-23 18:41	2012-05-21	Show	GitHub Exploit DB Packet Storm

251006	4.3	警告	Kolja Schleich	-	WordPress 用 LeagueManager プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2912	2012-05-23 18:25	2012-05-21	Show	GitHub Exploit DB Packet Storm

251007	5	警告	Chevereto Software	-	Chevereto の Upload/engine.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-2919	2012-05-23 18:19	2012-05-21	Show	GitHub Exploit DB Packet Storm

251008	4.3	警告	Chevereto Software	-	Chevereto の Upload/engine.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2918	2012-05-23 18:18	2012-05-21	Show	GitHub Exploit DB Packet Storm

251009	7.5	危険	Johan Cwiklinski	-	Galette の includes/picture.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2338	2012-05-23 18:16	2012-05-21	Show	GitHub Exploit DB Packet Storm

251010	10	危険	DMSoft Technologies	-	SkinCrafter の InitLicenKeys 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2271	2012-05-23 18:15	2012-05-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247151	7.8	HIGH Local	adobe	framemaker	Adobe Framemaker versions 1.0.5.1 and below have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.	CWE-426 Untrusted Search Path	CVE-2018-15974	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247152	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2018-15973	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247153	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2018-15972	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247154	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2018-15971	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247155	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2018-15970	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247156	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2018-15969	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247157	9.8	CRITICAL Network	avaya	avaya_aura_system_platform	A vulnerability in the Web UI component of Avaya Aura System Platform could allow a remote, unauthenticated user to perform a targeted deserialization attack that could result in remote code executio…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15616	2024-11-21 12:51	2018-10-18	Show	GitHub Exploit DB Packet Storm

247158	9.8	CRITICAL Network	agentejo	cockpit	Agentejo Cockpit performs actions on files without appropriate validation and therefore allows an attacker to traverse the file system to unintended locations and/or access arbitrary files, aka /medi…	CWE-22 Path Traversal	CVE-2018-15540	2024-11-21 12:51	2018-10-16	Show	GitHub Exploit DB Packet Storm

247159	8.8	HIGH Network	agentejo	cockpit	Agentejo Cockpit lacks an anti-CSRF protection mechanism. Thus, an attacker is able to change API tokens, passwords, etc.	CWE-352 Origin Validation Error	CVE-2018-15539	2024-11-21 12:51	2018-10-16	Show	GitHub Exploit DB Packet Storm

247160	6.1	MEDIUM Network	agentejo	cockpit	Agentejo Cockpit has multiple Cross-Site Scripting vulnerabilities.	CWE-79 Cross-site Scripting	CVE-2018-15538	2024-11-21 12:51	2018-10-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed