Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251981	6.5	警告	シックス・アパート株式会社	-	Movable Type における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-0319	2012-02-23 12:04	2012-02-23	Show	GitHub Exploit DB Packet Storm

251982	2.6	注意	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0318	2012-02-23 12:03	2012-02-23	Show	GitHub Exploit DB Packet Storm

251983	4	警告	シックス・アパート株式会社	-	Movable Type におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0317	2012-02-23 12:03	2012-02-23	Show	GitHub Exploit DB Packet Storm

251984	6	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1235	2012-02-23 11:47	2012-02-21	Show	GitHub Exploit DB Packet Storm

251985	6.5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1234	2012-02-23 11:46	2012-02-21	Show	GitHub Exploit DB Packet Storm

251986	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0244	2012-02-23 11:41	2012-02-21	Show	GitHub Exploit DB Packet Storm

251987	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0243	2012-02-23 11:40	2012-02-21	Show	GitHub Exploit DB Packet Storm

251988	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2012-0242	2012-02-23 11:37	2012-02-21	Show	GitHub Exploit DB Packet Storm

251989	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0241	2012-02-23 11:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

251990	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の GbScriptAddUp.asp における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2012-0240	2012-02-23 11:33	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
302281	-	bytesforall	atahualpa	Cross-site scripting (XSS) vulnerability in the Atahualpa theme before 3.6.8 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.	CWE-79 Cross-site Scripting	CVE-2011-3850	2024-11-21 10:31	2011-09-28	Show	GitHub Exploit DB Packet Storm

302282	-	netsaro	enterprise_messenger_server	The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL.	CWE-200 Information Exposure	CVE-2011-3694	2024-11-21 10:31	2011-09-28	Show	GitHub Exploit DB Packet Storm

302283	-	netsaro	enterprise_messenger_server	NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file.	CWE-310 Cryptographic Issues	CVE-2011-3693	2024-11-21 10:31	2011-09-28	Show	GitHub Exploit DB Packet Storm

302284	-	netsaro	enterprise_messenger_server	NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base6…	CWE-310 Cryptographic Issues	CVE-2011-3692	2024-11-21 10:31	2011-09-28	Show	GitHub Exploit DB Packet Storm

302285	-	foxitsoftware	foxit_reader	Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan horse dwmapi.dll, dwrite.dll, or msdrm.dll in the current working directory.	CWE-426 Untrusted Search Path	CVE-2011-3691	2024-11-21 10:31	2011-09-28	Show	GitHub Exploit DB Packet Storm

302286	-	plotsoft	pdfill_pdf_editor	Untrusted search path vulnerability in PlotSoft PDFill PDF Editor 8.0 allows local users to gain privileges via a Trojan horse mfc70enu.dll or mfc80loc.dll in the current working directory.	NVD-CWE-Other	CVE-2011-3690	2024-11-21 10:31	2011-09-28	Show	GitHub Exploit DB Packet Storm

302287	-	zikula	zikula	Zikula 1.2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/voodoodoll…	CWE-200 Information Exposure	CVE-2011-3826	2024-11-21 10:31	2011-09-24	Show	GitHub Exploit DB Packet Storm

302288	-	zend	framework server	Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as …	CWE-200 Information Exposure	CVE-2011-3825	2024-11-21 10:31	2011-09-24	Show	GitHub Exploit DB Packet Storm

302289	-	yourls	yourls	Your Own URL Shortener (YOURLS) 1.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrat…	CWE-200 Information Exposure	CVE-2011-3824	2024-11-21 10:31	2011-09-24	Show	GitHub Exploit DB Packet Storm

302290	-	yamamah	yamamah	Yamamah 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/default/ind…	CWE-200 Information Exposure	CVE-2011-3823	2024-11-21 10:31	2011-09-24	Show	GitHub Exploit DB Packet Storm