Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252021	9.3	危険	RenRen	-	RenRen Talk における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2012-0915	2012-01-27 11:07	2012-01-24	Show	GitHub Exploit DB Packet Storm

252022	4.3	警告	Horde	-	Horde Groupware Webmail Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0909	2012-01-27 11:05	2012-01-24	Show	GitHub Exploit DB Packet Storm

252023	4.3	警告	SimpleSAMLphp	-	SimpleSAMLphp の logout.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0908	2012-01-27 11:04	2012-01-24	Show	GitHub Exploit DB Packet Storm

252024	4.3	警告	Horde	-	Horde IMP および Horde Groupware Webmail Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0791	2012-01-27 11:04	2012-01-24	Show	GitHub Exploit DB Packet Storm

252025	4.3	警告	OETIKER	-	Smokeping の smokeping_cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0790	2012-01-27 11:03	2012-01-24	Show	GitHub Exploit DB Packet Storm

252026	4.3	警告	MailEnable	-	MailEnable の ForgottenPassword.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0389	2012-01-27 11:01	2012-01-24	Show	GitHub Exploit DB Packet Storm

252027	7.5	危険	Batavi	-	Batavi の ajax.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0069	2012-01-27 10:55	2012-01-24	Show	GitHub Exploit DB Packet Storm

252028	10	危険	日立	-	日立の複数の COBOL2002 製品における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-0918	2012-01-26 16:54	2012-01-20	Show	GitHub Exploit DB Packet Storm

252029	4.3	警告	日立	-	Hitachi IT Operations Director におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0919	2012-01-26 16:53	2012-01-10	Show	GitHub Exploit DB Packet Storm

252030	4.3	警告	日立	-	Hitachi IT Operations Analyzer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0917	2012-01-26 16:49	2012-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246961	8.1	HIGH Network	cybozu	garoon	Directory traversal vulnerability in Cybozu Garoon 3.5.0 to 4.6.3 allows authenticated attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2018-0673	2024-11-21 12:38	2018-11-16	Show	GitHub Exploit DB Packet Storm

246962	5.9	MEDIUM Network	openssl canonical debian nodejs netapp oracle	openssl ubuntu_linux debian_linux node.js cn1610_firmware cloud_backup oncommand_unified_manager steelstore santricity_smi-s_provider snapcenter storage_automation_store…	The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in Ope…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-0734	2024-11-21 12:38	2018-10-30	Show	GitHub Exploit DB Packet Storm

246963	5.9	MEDIUM Network	openssl canonical debian nodejs netapp oracle	openssl ubuntu_linux debian_linux node.js cn1610_firmware cloud_backup oncommand_unified_manager steelstore santricity_smi-s_provider element_software snapdrive smi-s…	The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in O…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-0735	2024-11-21 12:38	2018-10-29	Show	GitHub Exploit DB Packet Storm

246964	7.5	HIGH Network	cisco	wireless_lan_controller_software	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker t…	CWE-20 Improper Input Validation	CVE-2018-0443	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

246965	7.5	HIGH Network	cisco	wireless_lan_controller_software	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker t…	NVD-CWE-noinfo	CVE-2018-0442	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

246966	7.4	HIGH Adjacent	cisco	access_points	A vulnerability in the 802.11r Fast Transition feature set of Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on …	CWE-400 Uncontrolled Resource Consumption	CVE-2018-0441	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

246967	6.5	MEDIUM Network	cisco	wireless_lan_controller_software	A vulnerability in the web-based interface of Cisco Wireless LAN Controller Software could allow an authenticated, remote attacker to view sensitive information. The issue is due to improper sanitiza…	CWE-22 Path Traversal	CVE-2018-0420	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

246968	7.8	HIGH Local	cisco	wireless_lan_controller_software wireless_lan_controller	A vulnerability in TACACS authentication with Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to perform certain operations within the GUI that are not norma…	NVD-CWE-noinfo	CVE-2018-0417	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

246969	6.8	MEDIUM Adjacent	cisco	aironet_access_points	A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of s…	CWE-667 Improper Locking	CVE-2018-0381	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

246970	8.6	HIGH Network	cisco	nx-os	A vulnerability in the Precision Time Protocol (PTP) feature of Cisco Nexus 5500, 5600, and 6000 Series Switches running Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause …	CWE-20 Improper Input Validation	CVE-2018-0378	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm