Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251521 7.5 危険 Novell - Novell GroupWise のクライアントにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4189 2012-03-6 14:42 2012-02-23 Show GitHub Exploit DB Packet Storm
251522 9.3 危険 IBM - IBM Personal Communications の pcsws.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0201 2012-03-5 15:26 2011-02-20 Show GitHub Exploit DB Packet Storm
251523 7.5 危険 アップル - Apple Safari で使用される WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3443 2012-03-5 15:26 2012-03-2 Show GitHub Exploit DB Packet Storm
251524 4.3 警告 ES APP Group - ES ファイルエクスプローラーにおけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0322 2012-03-5 12:02 2012-03-5 Show GitHub Exploit DB Packet Storm
251525 4.3 警告 Ulysses - WordPress 用 Black-LetterHead テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3865 2012-03-5 11:09 2011-09-28 Show GitHub Exploit DB Packet Storm
251526 4.3 警告 Soma Design - WordPress 用 Erudite テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3864 2012-03-5 11:08 2011-09-28 Show GitHub Exploit DB Packet Storm
251527 4.3 警告 Postskriptum - WordPress 用 RedLine テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3863 2012-03-5 11:08 2011-09-28 Show GitHub Exploit DB Packet Storm
251528 4.3 警告 Adazing - WordPress 用 Morning Coffee テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3862 2012-03-5 11:08 2011-09-28 Show GitHub Exploit DB Packet Storm
251529 4.3 警告 WebMinimalist - WordPress 用 Web Minimalist 200901 テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3861 2012-03-5 11:07 2011-09-28 Show GitHub Exploit DB Packet Storm
251530 4.3 警告 One Designs - WordPress 用 Cover WP テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3860 2012-03-5 11:07 2011-09-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296381 - david_alkire drag_\&_drop_gallery SQL injection vulnerability in the Drag & Drop Gallery module 6.x for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2012-4479 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296382 - david_alkire drag_\&_drop_gallery Cross-site request forgery (CSRF) vulnerability in the Drag & Drop Gallery module 6.x for Drupal allows remote attackers to hijack the authentication of administrators. CWE-352
 Origin Validation Error 		CVE-2012-4478 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296383 - david_alkire drag_\&_drop_gallery Unspecified vulnerability in the Drag & Drop Gallery module 6.x for Drupal allows remote attackers to bypass access restrictions via unknown attack vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4477 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296384 - david_alkire drag_\&_drop_gallery Cross-site scripting (XSS) vulnerability in the Drag & Drop Gallery module 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-4476 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296385 - security_questions_project security_questions The Security Questions module for Drupal 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.1 does not properly restrict access, which allows remote attackers to edit an arbitrary user's questions and a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4475 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296386 - colorbox_node dennis_blake Multiple cross-site scripting (XSS) vulnerabilities in the Colorbox Node module 7.x-2.x before 7.x-2.2 for Drupal allow remote attackers to inject arbitrary web script or HTML via unspecified paramet… CWE-79
Cross-site Scripting 		CVE-2012-4474 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296387 - christian_johansson restrict_node_page_view The Restrict node page view module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "view any node page" or "view any node {type} page" permission to access unpublished no… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4473 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296388 - david_alkire drag_\&_drop_gallery Unrestricted file upload vulnerability in upload.php in the Drag & Drop Gallery module 6.x-1.5 and earlier for Drupal allows remote attackers to execute arbitrary PHP code by uploading a file with an… NVD-CWE-Other
CVE-2012-4472 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296389 - dominique_clause search_autocomplete The Search Autocomplete module 7.x-2.x before 7.x-2.4 for Drupal does not properly restrict access to the module admin page, which allows remote attackers to disable an autocompletion or change the p… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4471 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm
296390 - philip_ludlam listhandler The Listhandler module 6.x-1.x before 6.x-1.1 for Drupal does not properly check permissions when importing emails, which allows remote comment authors to bypass access restrictions and possibly have… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4470 2024-11-21 10:42 2012-12-1 Show GitHub Exploit DB Packet Storm