Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251421 5 警告 The PHP Group - PHP の PDORow 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0788 2012-02-15 16:02 2012-01-10 Show GitHub Exploit DB Packet Storm
251422 7.5 危険 Zoho Corporation - ManageEngine Applications Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1063 2012-02-15 15:55 2012-02-14 Show GitHub Exploit DB Packet Storm
251423 4.3 警告 Zoho Corporation - ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1062 2012-02-15 15:55 2012-02-14 Show GitHub Exploit DB Packet Storm
251424 7.5 危険 GForge Group - GForge Advanced Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1061 2012-02-15 15:54 2012-02-14 Show GitHub Exploit DB Packet Storm
251425 2.1 注意 Rik de Boer - Drupal 用 Revisioning モジュールの revisioning_theme.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1060 2012-02-15 15:51 2012-02-14 Show GitHub Exploit DB Packet Storm
251426 4.3 警告 osCommerce - OSCommerce Online Merchant の shirt モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1059 2012-02-15 15:51 2012-02-14 Show GitHub Exploit DB Packet Storm
251427 6 警告 Flyspray - Flyspray におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1058 2012-02-15 15:50 2012-02-14 Show GitHub Exploit DB Packet Storm
251428 6 警告 Sean Robertson - Drupal 用 Forward モジュールのクリックスルートラッキング機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1057 2012-02-15 15:49 2012-02-14 Show GitHub Exploit DB Packet Storm
251429 5 警告 Sean Robertson - Drupal 用 Forward モジュールにおけるノードタイトルを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1056 2012-02-15 15:48 2012-02-14 Show GitHub Exploit DB Packet Storm
251430 6.8 警告 Computerinsel GmbH - PhotoLine におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1055 2012-02-15 15:47 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257671 9.8 CRITICAL
Network 		ynetinteractive soa_school_management Ynet Interactive - http://demo.ynetinteractive.com/soa/ SOA School Management 3.0 is affected by: SQL Injection. The impact is: Code execution (remote). CWE-89
SQL Injection 		CVE-2017-12759 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257672 9.8 CRITICAL
Network 		joomlaextensions component_appointment https://www.joomlaextensions.co.in/ Joomla! Component Appointment 1.1 is affected by: SQL Injection. The impact is: Code execution (remote). The component is: com_appointment component. CWE-89
SQL Injection 		CVE-2017-12758 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257673 9.8 CRITICAL
Network 		ambittechnologies itech_b2b_script
itech_travel_script
itech_social_networking_script
itech_multi_vendor_script
itech_movie_script
itech_job_script
itech_image_sharing_script
itech_freelancer_scri… 		Certain Ambit Technologies Pvt. Ltd products are affected by: SQL Injection. This affects iTech B2B Script 4.42i and Tech Business Networking Script 8.26i and Tech Caregiver Script 2.71i and Tech Cla… CWE-89
SQL Injection 		CVE-2017-12757 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257674 8.3 HIGH
Network 		mpg123 mpg123 A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibl… CWE-125
Out-of-bounds Read 		CVE-2017-12839 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257675 6.5 MEDIUM
Network 		metinfo metinfo Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/index.php. The attack vector is: The administrator clicks on … CWE-352
 Origin Validation Error 		CVE-2017-12790 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257676 7.1 HIGH
Local 		qbittorrent qbittorrent The UI Lock feature in qBittorrent version 3.3.15 is vulnerable to Authentication Bypass, which allows Attack to gain unauthorized access to qBittorrent functions by tampering the affected flag value… CWE-287
Improper Authentication 		CVE-2017-12778 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257677 7.5 HIGH
Network 		imagemagick imagemagick In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function format8BIM, which allows attackers to cause a denial of service. CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-12806 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257678 7.5 HIGH
Network 		imagemagick imagemagick In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function ReadTIFFImage, which allows attackers to cause a denial of service. CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-12805 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257679 6.5 MEDIUM
Network 		entropymine imageworsener The iwgif_init_screen function in imagew-gif.c:510 in ImageWorsener 1.3.2 allows remote attackers to cause a denial of service (hmemory exhaustion) via a crafted file. CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-12804 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm
257680 6.1 MEDIUM
Network 		metinfo metinfo Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in Metinfo 5.3.18 allows remote attackers to inject arbitrary web script or HTML via the (1) class1 parameter or the (2) anyid p… CWE-79
Cross-site Scripting 		CVE-2017-12788 2024-11-21 12:10 2019-05-10 Show GitHub Exploit DB Packet Storm