Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251961 7.5 危険 LEPTON Project - LEPTON の account/preferences.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0998 2012-02-27 15:24 2012-02-24 Show GitHub Exploit DB Packet Storm
251962 6.8 警告 11in1 - 11in1 の admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-0997 2012-02-27 15:23 2012-02-24 Show GitHub Exploit DB Packet Storm
251963 5 警告 11in1 - 11in1 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0996 2012-02-27 15:21 2012-02-24 Show GitHub Exploit DB Packet Storm
251964 7.5 危険 CONTIMEX - CONTIMEX Impulsio CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1294 2012-02-27 15:20 2011-02-23 Show GitHub Exploit DB Packet Storm
251965 4.3 警告 BoonEx - Boonex Dolphin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0873 2012-02-27 15:20 2011-02-23 Show GitHub Exploit DB Packet Storm
251966 5 警告 John Koleszar - VP8 Codec SDK (libvpx) におけるサービス運用妨害 (アプリケーションクラッシュ)の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0823 2012-02-27 15:19 2012-02-23 Show GitHub Exploit DB Packet Storm
251967 5 警告 SAP - SAP NetWeaver における MessagingSystem Performance Data についての重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-1292 2012-02-27 13:49 2012-02-23 Show GitHub Exploit DB Packet Storm
251968 5 警告 SAP - SAP NetWeaver における Adapter Monitor についての重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-1291 2012-02-27 13:48 2012-02-23 Show GitHub Exploit DB Packet Storm
251969 4.3 警告 SAP - SAP NetWeaver の b2b/auction/container.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1290 2012-02-27 13:47 2012-02-23 Show GitHub Exploit DB Packet Storm
251970 4 警告 SAP - SAP NetWeaver におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1289 2012-02-27 13:46 2012-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246831 6.1 MEDIUM
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.19 devices. It provides functionality so that an administrator can change the name of the device. However, the same functionality allows an attacker to exec… CWE-79
Cross-site Scripting 		CVE-2018-10700 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246832 8.8 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides certfile upload functionality so that an administrator can upload a certificate file used for connecting to the wirel… CWE-78
OS Command  		CVE-2018-10699 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246833 9.8 CRITICAL
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. The device enables an unencrypted TELNET service by default. This allows an attacker who has been able to gain an MITM position to easily sniff … CWE-311
Missing Encryption of Sensitive Data 		CVE-2018-10698 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246834 8.8 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides ping functionality so that an administrator can execute ICMP calls to check if the network is working correctly. Howe… CWE-78
OS Command  		CVE-2018-10697 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246835 8.8 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. The device provides a web interface to allow an administrator to manage the device. However, this interface is not protected against CSRF attack… CWE-352
 Origin Validation Error 		CVE-2018-10696 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246836 8.8 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. It provides ping functionality so that an administrator can execute ICMP calls to check if the network is working correctly. However, the same f… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-10693 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246837 6.1 MEDIUM
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. The session cookie "Password508" does not have an HttpOnly flag. This allows an attacker who is able to execute a cross-site scripting attack to… CWE-79
Cross-site Scripting 		CVE-2018-10692 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246838 8.8 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. It provides alert functionality so that an administrator can send emails to his/her account when there are changes to the device's network. Howe… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-10695 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246839 8.1 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. The device provides a Wi-Fi connection that is open and does not use any encryption mechanism by default. An administrator who uses the open wir… CWE-311
Missing Encryption of Sensitive Data 		CVE-2018-10694 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm
246840 7.5 HIGH
Network 		moxa awk-3121_firmware An issue was discovered on Moxa AWK-3121 1.14 devices. It is intended that an administrator can download /systemlog.log (the system log). However, the same functionality allows an attacker to downloa… CWE-284
Improper Access Control 		CVE-2018-10691 2024-11-21 12:41 2019-06-8 Show GitHub Exploit DB Packet Storm