Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251441	5	警告	11in1	-	11in1 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0996	2012-02-27 15:21	2012-02-24	Show	GitHub Exploit DB Packet Storm

251442	7.5	危険	CONTIMEX	-	CONTIMEX Impulsio CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1294	2012-02-27 15:20	2011-02-23	Show	GitHub Exploit DB Packet Storm

251443	4.3	警告	BoonEx	-	Boonex Dolphin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0873	2012-02-27 15:20	2011-02-23	Show	GitHub Exploit DB Packet Storm

251444	5	警告	John Koleszar	-	VP8 Codec SDK (libvpx) におけるサービス運用妨害 (アプリケーションクラッシュ)の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0823	2012-02-27 15:19	2012-02-23	Show	GitHub Exploit DB Packet Storm

251445	5	警告	SAP	-	SAP NetWeaver における MessagingSystem Performance Data についての重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1292	2012-02-27 13:49	2012-02-23	Show	GitHub Exploit DB Packet Storm

251446	5	警告	SAP	-	SAP NetWeaver における Adapter Monitor についての重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1291	2012-02-27 13:48	2012-02-23	Show	GitHub Exploit DB Packet Storm

251447	4.3	警告	SAP	-	SAP NetWeaver の b2b/auction/container.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1290	2012-02-27 13:47	2012-02-23	Show	GitHub Exploit DB Packet Storm

251448	4	警告	SAP	-	SAP NetWeaver におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1289	2012-02-27 13:46	2012-02-23	Show	GitHub Exploit DB Packet Storm

251449	10	危険	UTC Fire & Security	-	UTC Fire & Security Master Clock の管理者パスワードがハードコードされている問題	CWE-255 証明書・パスワード管理	CVE-2012-1288	2012-02-24 15:59	2012-02-21	Show	GitHub Exploit DB Packet Storm

251450	4.3	警告	IBM	-	IBM WebSphere Lombardi Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0707	2012-02-24 15:27	2011-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273231	-		netgate	pfsense	Cross-site scripting (XSS) vulnerability in pfSense before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the descr parameter in a "new" action to system_authservers.php.	CWE-79 Cross-site Scripting	CVE-2015-6508	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

273232	-		netgate	pfsense	Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) proxypass parameter to system_advanced_misc.php; …	CWE-79 Cross-site Scripting	CVE-2015-6509	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

273233	8.8	HIGH Network	vtiger	vtiger_crm	Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.3.0 and earlier allows remote a…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2015-6000	2024-11-21 11:34	2020-02-6	Show	GitHub Exploit DB Packet Storm

273234	9.8	CRITICAL Network	thomsonreuters	fatca	Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter.	CWE-22 Path Traversal	CVE-2015-5952	2024-11-21 11:34	2020-01-16	Show	GitHub Exploit DB Packet Storm

273235	9.9	CRITICAL Network	thomsonreuters	fatca	A file upload issue exists in the specid parameter in Thomson Reuters FATCH before 5.2, which allows malicious users to upload arbitrary PHP files to the web root and execute system commands.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2015-5951	2024-11-21 11:34	2020-01-7	Show	GitHub Exploit DB Packet Storm

273236	5.4	MEDIUM Network	edx	edx-platform	edx-platform before 2015-08-17 allows XSS in the Studio listing of courses.	CWE-79 Cross-site Scripting	CVE-2015-6253	2024-11-21 11:34	2019-07-30	Show	GitHub Exploit DB Packet Storm

273237	9.8	CRITICAL Network	tripwire	ip360	The RPC service in Tripwire (formerly nCircle) IP360 VnE Manager 7.2.2 before 7.2.6 allows remote attackers to bypass authentication and (1) enumerate users, (2) reset passwords, or (3) manipulate IP…	CWE-287 Improper Authentication	CVE-2015-6237	2024-11-21 11:34	2017-12-28	Show	GitHub Exploit DB Packet Storm

273238	5.9	MEDIUM Network	cisco	rv320_firmware rv325_firmware rvs4000_firmware wrv210_firmware wap4410n_firmware wrv200_firmware wrvs4400n_firmware wap200_firmware wvc2300_firmware pvc2300_firmware srw…	Multiple Cisco embedded devices use hardcoded X.509 certificates and SSH host keys embedded in the firmware, which allows remote attackers to defeat cryptographic protection mechanisms and conduct ma…	CWE-295 Improper Certificate Validation	CVE-2015-6358	2024-11-21 11:34	2017-10-13	Show	GitHub Exploit DB Packet Storm

273239	5.3	MEDIUM Network	simple-php-captcha_project	simple-php-captcha	simple-php-captcha before commit 9d65a945029c7be7bb6bc893759e74c5636be694 allows remote attackers to automatically generate the captcha response by running the same code on the client-side.	CWE-200 Information Exposure	CVE-2015-6250	2024-11-21 11:34	2017-09-7	Show	GitHub Exploit DB Packet Storm

273240	9.8	CRITICAL Network	froxlor	froxlor	Froxlor before 0.9.33.2 with the default configuration/setup might allow remote attackers to obtain the database password by reading /logs/sql-error.log.	CWE-200 Information Exposure	CVE-2015-5959	2024-11-21 11:34	2017-09-7	Show	GitHub Exploit DB Packet Storm