Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251541	7.5	危険	ヒューレット・パッカード	-	HP Managed Printing Administration におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4166	2011-12-28 15:49	2011-12-21	Show	GitHub Exploit DB Packet Storm

251542	10	危険	トレンドマイクロ	-	Trend Micro Control Manager におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5001	2011-12-28 15:37	2011-11-10	Show	GitHub Exploit DB Packet Storm

251543	9.3	危険	Mini-stream Software	-	Mini-Stream RM-MP3 Converter におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-5081	2011-12-28 15:32	2011-12-25	Show	GitHub Exploit DB Packet Storm

251544	10	危険	Mini-stream Software	-	Mini-Stream Ripper におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-5109	2011-12-28 15:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

251545	9.3	危険	Tencent	-	QQPlayer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5006	2011-12-28 14:30	2011-12-25	Show	GitHub Exploit DB Packet Storm

251546	7.5	危険	Mads Brunn Claudio Klingler	-	QuiXplorer におけるファイルをアップロードされる脆弱性	CWE-Other その他	CVE-2011-5005	2011-12-28 14:29	2011-12-25	Show	GitHub Exploit DB Packet Storm

251547	6	警告	Fabrik	-	Joomla! 用 Fabrik コンポーネントの models/importcsv.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-5004	2011-12-28 14:28	2011-09-23	Show	GitHub Exploit DB Packet Storm

251548	10	危険	Avid Technology	-	Avid Media Composer の Phonetic Indexer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5003	2011-12-28 14:27	2011-12-25	Show	GitHub Exploit DB Packet Storm

251549	10	危険	Final Draft	-	Final Draft におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5002	2011-12-28 14:24	2011-12-25	Show	GitHub Exploit DB Packet Storm

251550	10	危険	Attachmate	-	Reflection FTP クライアントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5012	2011-12-28 11:44	2011-12-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296071	-	ubercart_views_project	uc_views	Unspecified vulnerability in certain default views in the Ubercart Views module 6.x before 6.x-3.2 for Drupal allows remote attackers to obtain sensitive information via unknown attack vectors.	NVD-CWE-noinfo	CVE-2012-2074	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296072	-	kristof_de_jaeger	bundle_copy	The Bundle copy module 7.x-1.x before 7.x-1.1 for Drupal does not check for the "use PHP for settings" permission while importing settings, which allows remote authenticated users with certain permis…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2073	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296073	-	patrick_przybilla	addtoany	Cross-site scripting (XSS) vulnerability in the Share Buttons (AddToAny) module 6.x-3.x before 6.x-3.4 for Drupal allows remote authenticated users with the administer addtoany permission to inject a…	CWE-79 Cross-site Scripting	CVE-2012-2072	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296074	-	geoff_davies	contact_forms	Cross-site scripting (XSS) vulnerability in the Contact Forms module 6.x-1.x before 6.x-1.13 for Drupal when the core contact form is enabled, allows remote authenticated users with the administer si…	CWE-79 Cross-site Scripting	CVE-2012-2071	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296075	-	andrew_levine	multiblock	Cross-site scripting (XSS) vulnerability in the MultiBlock module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer blocks permission …	CWE-79 Cross-site Scripting	CVE-2012-2070	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296076	-	emil_stjerneman	linkit	The Linkit module 7.x-2.x before 7.x-2.3 for Drupal, when using an entity access module, does not check permissions when searching for entities, which allows remote attackers to obtain sensitive info…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2304	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296077	-	ubercart	ubercart	Multiple cross-site scripting (XSS) vulnerabilities in the Ubercart module 6.x-2.x before 6.x-2.8 and 7.x-3.x before 7.x-3.1 for Drupal allow remote authenticated users with the administer product cl…	CWE-79 Cross-site Scripting	CVE-2012-2300	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296078	-	ubercart	ubercart	The Ubercart module 6.x-2.x before 6.x-2.8 and 7.x-3.x before 7.x-3.1 for Drupal stores passwords for new customers in plaintext during checkout, which allows local users to obtain sensitive informat…	CWE-255 Credentials Management	CVE-2012-2299	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296079	-	drupal nancy_wichmann	realname	Multiple cross-site scripting (XSS) vulnerabilities in the RealName module 6.x-1.x before 6.x-1.5 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) "…	CWE-79 Cross-site Scripting	CVE-2012-2298	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

296080	-	piwigo	piwigo	Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Piwigo before 2.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) section parameter in the configuratio…	CWE-79 Cross-site Scripting	CVE-2012-2209	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm