Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252001	10	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0759	2012-02-16 11:05	2012-02-14	Show	GitHub Exploit DB Packet Storm

252002	10	危険	アドビシステムズ	-	Adobe Shockwave Player におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0758	2012-02-16 11:02	2012-02-14	Show	GitHub Exploit DB Packet Storm

252003	10	危険	アドビシステムズ	-	Adobe Shockwave Player の Shockwave 3D Asset コンポーネントにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0757	2012-02-16 11:00	2012-02-14	Show	GitHub Exploit DB Packet Storm

252004	6.4	警告	富士通	-	Fujitsu Interstage Application Server の Interstage 管理コンソールにおける任意のファイル読込/削除の脆弱性	CWE-noinfo 情報不足	CVE-2008-2674	2012-02-15 18:12	2008-06-10	Show	GitHub Exploit DB Packet Storm

252005	-	-	日本電気 PNG Development Group フェンリル株式会社	-	libpng における sCAL チャンクの処理に脆弱性	-	-	2012-02-15 16:45	2011-07-8	Show	GitHub Exploit DB Packet Storm

252006	5.8	警告	Netcreators	-	TYPO3 用 Modern FAQ エクステンションにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2011-5079	2012-02-15 16:04	2012-02-14	Show	GitHub Exploit DB Packet Storm

252007	5	警告	The PHP Group	-	PHP のタイムゾーン機能におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0789	2012-02-15 16:03	2012-01-10	Show	GitHub Exploit DB Packet Storm

252008	5	警告	The PHP Group	-	PHP の PDORow 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0788	2012-02-15 16:02	2012-01-10	Show	GitHub Exploit DB Packet Storm

252009	7.5	危険	Zoho Corporation	-	ManageEngine Applications Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1063	2012-02-15 15:55	2012-02-14	Show	GitHub Exploit DB Packet Storm

252010	4.3	警告	Zoho Corporation	-	ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1062	2012-02-15 15:55	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253851	7.5	HIGH Network	puppet	puppetlabs-apache	Versions of the puppetlabs-apache module prior to 1.11.1 and 2.1.0 make it very easy to accidentally misconfigure TLS trust. If you specify the `ssl_ca` parameter but do not specify the `ssl_certs_di…	CWE-295 Improper Certificate Validation	CVE-2017-2299	2024-11-21 12:23	2017-09-16	Show	GitHub Exploit DB Packet Storm

253852	7.5	HIGH Network	kubik-rubik	easy_joomla_backup	Vulnerability in Easy Joomla Backup v3.2.4. The software creates a copy of the backup in the web root with an easily guessable filename.	CWE-200 Information Exposure	CVE-2017-2550	2024-11-21 12:23	2017-09-9	Show	GitHub Exploit DB Packet Storm

253853	4.3	MEDIUM Network	cybozu	garoon	Directory traversal vulnerability in Cybozu Garoon 4.2.4 to 4.2.5 allows an attacker to read arbitrary files via Garoon SOAP API "WorkflowHandleApplications".	CWE-22 Path Traversal	CVE-2017-2258	2024-11-21 12:23	2017-08-29	Show	GitHub Exploit DB Packet Storm

253854	6.1	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.5 allows an attacker to inject arbitrary web script or HTML via mail function.	CWE-79 Cross-site Scripting	CVE-2017-2257	2024-11-21 12:23	2017-08-29	Show	GitHub Exploit DB Packet Storm

253855	5.4	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.5 allows an attacker to inject arbitrary web script or HTML via "Rich text" function of the application "Memo".	CWE-79 Cross-site Scripting	CVE-2017-2256	2024-11-21 12:23	2017-08-29	Show	GitHub Exploit DB Packet Storm

253856	5.4	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 3.7.0 to 4.2.5 allows an attacker to inject arbitrary web script or HTML via "Rich text" function of the application "Space".	CWE-79 Cross-site Scripting	CVE-2017-2255	2024-11-21 12:23	2017-08-29	Show	GitHub Exploit DB Packet Storm

253857	4.9	MEDIUM Network	cybozu	garoon	Cybozu Garoon 3.5.0 to 4.2.5 allows an attacker to cause a denial of service in the application menu's edit function via specially crafted input	CWE-20 Improper Input Validation	CVE-2017-2254	2024-11-21 12:23	2017-08-29	Show	GitHub Exploit DB Packet Storm

253858	7.8	HIGH Local	ntt	flets_setsuzoku_tool	Untrusted search path vulnerability in Flets Setsuzoku Tool for Windows all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.	CWE-426 Untrusted Search Path	CVE-2017-2242	2024-11-21 12:23	2017-08-29	Show	GitHub Exploit DB Packet Storm

253859	7.8	HIGH Local	kddi	qua_station_firmware	Untrusted search path vulnerability in Installer of Qua station connection tool for Windows version 1.00.03 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.	CWE-426 Untrusted Search Path	CVE-2017-2289	2024-11-21 12:23	2017-08-18	Show	GitHub Exploit DB Packet Storm

253860	7.8	HIGH Local	enecho.meti	teikihoukokusho_sakuseishien_tool	Untrusted search path vulnerability in Teikihoukokusho Sakuseishien Tool v4.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.	CWE-426 Untrusted Search Path	CVE-2017-2228	2024-11-21 12:23	2017-08-18	Show	GitHub Exploit DB Packet Storm