Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251681 5 警告 シスコシステムズ - Cisco Unified Communications Manager の voice-sipstack コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-0376 2012-05-8 11:19 2012-05-3 Show GitHub Exploit DB Packet Storm
251682 4.3 警告 シスコシステムズ - Cisco IOS の拡張 ACL 機能におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0362 2012-05-8 11:18 2012-05-2 Show GitHub Exploit DB Packet Storm
251683 5 警告 シスコシステムズ - Cisco IP Communicator の SCCP プロトコルコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0361 2012-05-8 11:01 2012-05-2 Show GitHub Exploit DB Packet Storm
251684 5 警告 シスコシステムズ - Cisco IOS における任意の IP アドレスからの TELNET 接続を確立される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0339 2012-05-8 10:58 2012-05-2 Show GitHub Exploit DB Packet Storm
251685 5 警告 シスコシステムズ - Cisco IOS における任意の IP アドレスからの SSH 接続を確立される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0338 2012-05-8 10:56 2012-05-2 Show GitHub Exploit DB Packet Storm
251686 5 警告 シスコシステムズ - Cisco Adaptive Security Appliances 5500 シリーズデバイスにおける重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2012-0335 2012-05-8 10:54 2012-05-2 Show GitHub Exploit DB Packet Storm
251687 5 警告 シスコシステムズ - Cisco Small Business IP Phone の SPA 500 シリーズファームウェアにおける電話をかけられる脆弱性 CWE-287
不適切な認証 		CVE-2012-0333 2012-05-8 10:39 2012-05-2 Show GitHub Exploit DB Packet Storm
251688 3.5 注意 IBM - IBM Rational AppScan におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0737 2012-05-8 09:55 2012-05-3 Show GitHub Exploit DB Packet Storm
251689 9.3 危険 IBM - IBM Rational AppScan における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0736 2012-05-8 09:55 2012-05-3 Show GitHub Exploit DB Packet Storm
251690 7.6 危険 IBM - IBM Rational AppScan における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0735 2012-05-8 09:54 2012-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280831 - novius-os novius_os Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/. CWE-22
Path Traversal 		CVE-2015-5353 2024-11-21 11:32 2015-07-2 Show GitHub Exploit DB Packet Storm
280832 - themepunch slider_revolution Cross-site scripting (XSS) vulnerability in the Slider Revolution (revslider) plugin 4.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the client_action parameter… CWE-79
Cross-site Scripting 		CVE-2015-5151 2024-11-21 11:32 2015-06-30 Show GitHub Exploit DB Packet Storm
280833 - zohocorp manageengine_supportcenter_plus Multiple cross-site scripting (XSS) vulnerabilities in Zoho ManageEngine SupportCenter Plus 7.90 allow remote authenticated users to inject arbitrary web script or HTML via the (1) query parameter in… CWE-79
Cross-site Scripting 		CVE-2015-5150 2024-11-21 11:32 2015-06-30 Show GitHub Exploit DB Packet Storm
280834 - zohocorp manageengine_supportcenter_plus Directory traversal vulnerability in Zoho ManageEngine SupportCenter Plus 7.90 allows remote authenticated users to write to arbitrary files via a .. (dot dot) in the component parameter in the Reque… CWE-22
Path Traversal 		CVE-2015-5149 2024-11-21 11:32 2015-06-30 Show GitHub Exploit DB Packet Storm
280835 - livelycart livelycart SQL injection vulnerability in LivelyCart 1.2.0 allows remote attackers to execute arbitrary SQL commands via the search_query parameter to product/search. CWE-89
SQL Injection 		CVE-2015-5148 2024-11-21 11:32 2015-06-30 Show GitHub Exploit DB Packet Storm
280836 - limesurvey limesurvey SQL injection vulnerability in the insert function in application/controllers/admin/dataentry.php in LimeSurvey 2.06+ allows remote authenticated users to execute arbitrary SQL commands via the close… CWE-89
SQL Injection 		CVE-2015-5078 2024-11-21 11:32 2015-06-28 Show GitHub Exploit DB Packet Storm
280837 - sap mobile_platform XML external entity (XXE) vulnerability in SAP Mobile Platform 3 allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted XML request, aka SAP Security … NVD-CWE-Other
CVE-2015-5068 2024-11-21 11:32 2015-06-24 Show GitHub Exploit DB Packet Storm
280838 - sap netweaver The (1) Cross-System Tools and (2) Data Transfer Workbench in SAP NetWeaver have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors, aka SAP Security Notes … CWE-255
Credentials Management 		CVE-2015-5067 2024-11-21 11:32 2015-06-24 Show GitHub Exploit DB Packet Storm
280839 - metalgenix genixcms Multiple cross-site scripting (XSS) vulnerabilities in the MetalGenix GeniXCMS 0.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) content or (2) title field in an add act… CWE-79
Cross-site Scripting 		CVE-2015-5066 2024-11-21 11:32 2015-06-24 Show GitHub Exploit DB Packet Storm
280840 - intelligent-it paypal_currency_converter_basic_for_woocommerce Absolute path traversal vulnerability in proxy.php in the google currency lookup in the Paypal Currency Converter Basic For WooCommerce plugin before 1.4 for WordPress allows remote attackers to read… CWE-22
Path Traversal 		CVE-2015-5065 2024-11-21 11:32 2015-06-24 Show GitHub Exploit DB Packet Storm