Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251291 7.5 危険 XWiki - XWiki Enterprise における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4641 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251292 4.3 警告 XWiki - XWiki Watch におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4640 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251293 7.5 危険 intendance - MySource Matrix の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4639 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251294 6.8 警告 iptechinside - JQuarks4s コンポーネントの submitSurvey 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4638 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251295 4.3 警告 finalcut - WordPress の FeedList プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4637 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251296 7.5 危険 site2nite - Site2Nite Business e-Listings の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4636 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251297 7.5 危険 site2nite - Site2Nite VRBO Listings の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4635 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251298 7.5 危険 sumeffect - digiSHOP の cart.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4633 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251299 7.5 危険 PilotCart - ASPilot Pilot Cart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4632 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251300 4.3 警告 PilotCart - ASPilot Pilot Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4631 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
301331 - quantum
dell
ibm 		scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030
ts3310_tape_library_firmware
ts3310_tape_li… 		The Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware before A20-00 (590G.GS00100) and the IBM TS3310 tape li… CWE-255
Credentials Management 		CVE-2012-1844 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301332 - quantum
dell 		scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030 		Cross-site request forgery (CSRF) vulnerability in saveRestore.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library… CWE-352
 Origin Validation Error 		CVE-2012-1843 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301333 - quantum
dell 		scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030 		Cross-site scripting (XSS) vulnerability in checkQKMProg.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with … CWE-79
Cross-site Scripting 		CVE-2012-1842 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301334 - quantum
dell 		scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030 		Absolute path traversal vulnerability in logShow.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware… CWE-22
Path Traversal 		CVE-2012-1841 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301335 - ajaxplorer ajaxplorer AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 does not properly perform cookie authentication, which allows remote attackers to obtain login access by leveraging knowledge of a password hash. CWE-287
Improper Authentication 		CVE-2012-1840 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301336 - ajaxplorer ajaxplorer Multiple directory traversal vulnerabilities in the Get Template feature in plugins/gui.ajax/class.AJXP_ClientDriver.php in AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 allow remote attackers… CWE-22
Path Traversal 		CVE-2012-1839 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301337 - lg-nortel elo_gs24m_switch The web management interface on the LG-Nortel ELO GS24M switch allows remote attackers to bypass authentication, and consequently obtain cleartext credential and configuration information, via a dire… CWE-287
Improper Authentication 		CVE-2012-1838 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301338 - ibm tivoli_endpoint_manager The (1) webreports, (2) post/create-role, and (3) post/update-role programs in IBM Tivoli Endpoint Manager (TEM) before 8.2 do not include the HTTPOnly flag in a Set-Cookie header for a cookie, which… CWE-200
Information Exposure 		CVE-2012-1837 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301339 - inspircd inspircd Heap-based buffer overflow in dns.cpp in InspIRCd 2.0.5 might allow remote attackers to execute arbitrary code via a crafted DNS query that uses compression. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1836 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm
301340 - broadcom arcserve_backup CA ARCserve Backup r12.0 through SP2, r12.5 before SP2, r15 through SP1, and r16 before SP1 on Windows allows remote attackers to cause a denial of service (service shutdown) via a crafted network re… CWE-20
 Improper Input Validation  		CVE-2012-1662 2024-11-21 10:37 2012-03-22 Show GitHub Exploit DB Packet Storm