Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251441 4.3 警告 eFront Learning - eFront Community++ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1048 2012-02-14 14:48 2012-02-12 Show GitHub Exploit DB Packet Storm
251442 7.5 危険 ソフォス - Cyberoam Central Console におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1047 2012-02-14 14:47 2012-02-12 Show GitHub Exploit DB Packet Storm
251443 4.3 警告 Symphony CMS - Symphony CMS における SQL インジェクションの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4341 2012-02-14 14:46 2012-02-12 Show GitHub Exploit DB Packet Storm
251444 3.5 注意 Symphony CMS - Symphony CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4340 2012-02-14 14:45 2012-02-12 Show GitHub Exploit DB Packet Storm
251445 4.3 警告 Deon George - phpLDAPadmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0834 2012-02-14 14:45 2012-02-11 Show GitHub Exploit DB Packet Storm
251446 7.5 危険 Mozilla Foundation - 複数の Mozilla 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0452 2012-02-14 14:42 2012-02-10 Show GitHub Exploit DB Packet Storm
251447 4.3 警告 IBM - IBM Cognos TM1 の TM1 Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1046 2012-02-14 14:18 2012-02-10 Show GitHub Exploit DB Packet Storm
251448 5 警告 Apache Software Foundation - Apache Portable Runtime ライブラリの apr_hash.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0840 2012-02-14 14:17 2012-02-10 Show GitHub Exploit DB Packet Storm
251449 5 警告 AdaCore - AdaCore Ada Web Services におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1035 2012-02-13 16:39 2012-01-27 Show GitHub Exploit DB Packet Storm
251450 6.5 警告 サイベース - Sybase M-Business Anywhere の Web 管理インターフェイスにおけるユーザーアカウントをリストアップされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5078 2012-02-13 16:15 2012-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273131 - cisco unity_connection Cross-site request forgery (CSRF) vulnerability in Cisco Unity Connection 11.5(0.98) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux24578. CWE-352
 Origin Validation Error 		CVE-2015-6408 2024-11-21 11:34 2015-12-13 Show GitHub Exploit DB Packet Storm
273132 - cisco videoscape_distribution_suite_service_manager Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and earlier does not always use RBAC for backend database access, which allows remote authenticated users to read or write to databa… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6417 2024-11-21 11:34 2015-12-12 Show GitHub Exploit DB Packet Storm
273133 - cisco prime_service_catalog Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not properly restrict access to web pages, which allows remote attackers to modify the configuration via a direct request, aka Bug ID C… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6395 2024-11-21 11:34 2015-12-12 Show GitHub Exploit DB Packet Storm
273134 - microsoft excel_viewer
office_compatibility_pack
excel 		Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulne… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-6177 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm
273135 - microsoft edge Microsoft Edge mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Microsoft Edge XSS… CWE-79
Cross-site Scripting 		CVE-2015-6176 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm
273136 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_10
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8 		The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6174 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm
273137 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_10
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8 		The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6173 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm
273138 - microsoft word
office
office_compatibility_pack 		Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2016, Word 2013 RT SP1, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted e… CWE-20
 Improper Input Validation  		CVE-2015-6172 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm
273139 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_10
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8 		The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6171 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm
273140 - microsoft edge Microsoft Edge allows remote attackers to gain privileges via a crafted web site, aka "Microsoft Browser Elevation of Privilege Vulnerability." CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6170 2024-11-21 11:34 2015-12-9 Show GitHub Exploit DB Packet Storm