Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251461	6	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1235	2012-02-23 11:47	2012-02-21	Show	GitHub Exploit DB Packet Storm

251462	6.5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1234	2012-02-23 11:46	2012-02-21	Show	GitHub Exploit DB Packet Storm

251463	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0244	2012-02-23 11:41	2012-02-21	Show	GitHub Exploit DB Packet Storm

251464	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0243	2012-02-23 11:40	2012-02-21	Show	GitHub Exploit DB Packet Storm

251465	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2012-0242	2012-02-23 11:37	2012-02-21	Show	GitHub Exploit DB Packet Storm

251466	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0241	2012-02-23 11:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

251467	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の GbScriptAddUp.asp における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2012-0240	2012-02-23 11:33	2012-02-21	Show	GitHub Exploit DB Packet Storm

251468	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の uaddUpAdmin.asp における管理者パスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2012-0239	2012-02-23 11:32	2012-02-21	Show	GitHub Exploit DB Packet Storm

251469	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の opcImg.asp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0238	2012-02-23 11:29	2012-02-21	Show	GitHub Exploit DB Packet Storm

251470	6.4	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における日付と時刻の同期設定を変更される脆弱性	CWE-119 バッファエラー	CVE-2012-0237	2012-02-23 11:27	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296811	-	moshe_weitzman	organic_groups	The Organic Groups (OG) module 6.x-2.x before 6.x-2.3 for Drupal does not properly restrict access, which allows remote attackers to obtain sensitive information such as private group titles via a re…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2081	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296812	-	node_limit_number_project	node_limitnumber	Cross-site request forgery (CSRF) vulnerability in the Node Limit Number module before 6.x-1.2 for Drupal allows remote attackers to hijack the authentication of users with the administer node limitn…	CWE-352 Origin Validation Error	CVE-2012-2080	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296813	-	rob_loach	sharethis	Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permi…	CWE-352 Origin Validation Error	CVE-2012-2077	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296814	-	rob_loach	sharethis	Cross-site scripting (XSS) vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions …	CWE-79 Cross-site Scripting	CVE-2012-2076	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296815	-	steindom	contact_save	Cross-site scripting (XSS) vulnerability in the Contact Save module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users with the access site-wide contact form permission to inject arb…	CWE-79 Cross-site Scripting	CVE-2012-2075	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296816	-	ubercart_views_project	uc_views	Unspecified vulnerability in certain default views in the Ubercart Views module 6.x before 6.x-3.2 for Drupal allows remote attackers to obtain sensitive information via unknown attack vectors.	NVD-CWE-noinfo	CVE-2012-2074	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296817	-	kristof_de_jaeger	bundle_copy	The Bundle copy module 7.x-1.x before 7.x-1.1 for Drupal does not check for the "use PHP for settings" permission while importing settings, which allows remote authenticated users with certain permis…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2073	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296818	-	patrick_przybilla	addtoany	Cross-site scripting (XSS) vulnerability in the Share Buttons (AddToAny) module 6.x-3.x before 6.x-3.4 for Drupal allows remote authenticated users with the administer addtoany permission to inject a…	CWE-79 Cross-site Scripting	CVE-2012-2072	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296819	-	geoff_davies	contact_forms	Cross-site scripting (XSS) vulnerability in the Contact Forms module 6.x-1.x before 6.x-1.13 for Drupal when the core contact form is enabled, allows remote authenticated users with the administer si…	CWE-79 Cross-site Scripting	CVE-2012-2071	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296820	-	andrew_levine	multiblock	Cross-site scripting (XSS) vulnerability in the MultiBlock module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer blocks permission …	CWE-79 Cross-site Scripting	CVE-2012-2070	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm