Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252271	4.3	警告	attenzione	-	WordPress 用 YouSayToo auto-publishing プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0901	2012-01-25 10:39	2012-01-20	Show	GitHub Exploit DB Packet Storm

252272	4.3	警告	Beehive Forum	-	Beehive Forum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0900	2012-01-25 10:35	2012-01-20	Show	GitHub Exploit DB Packet Storm

252273	4.3	警告	Annuaire PHP	-	Annuaire PHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0899	2012-01-25 10:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

252274	5	警告	camaleo	-	WordPress 用 myEASYbackup プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0898	2012-01-25 10:30	2012-01-20	Show	GitHub Exploit DB Packet Storm

252275	5	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0896	2012-01-25 10:23	2012-01-20	Show	GitHub Exploit DB Packet Storm

252276	4.3	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0895	2012-01-25 10:21	2012-01-20	Show	GitHub Exploit DB Packet Storm

252277	9.3	危険	IBM	-	IBM Lotus Symphony の vclmi.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0192	2012-01-24 16:45	2012-01-23	Show	GitHub Exploit DB Packet Storm

252278	7.5	危険	アドビシステムズ Linux	-	Linux 上で稼働する Adobe Reader における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-4374	2012-01-24 16:29	2011-09-13	Show	GitHub Exploit DB Packet Storm

252279	5	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0193	2012-01-24 16:21	2012-01-17	Show	GitHub Exploit DB Packet Storm

252280	10	危険	IBM	-	IBM Rational License Key Server その他の製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1389	2012-01-24 16:19	2012-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254241	-		-	-	A vulnerability was found in Zimbra zm-admin-ajax up to 8.8.1. It has been classified as problematic. This affects the function XFormItem.prototype.setError of the file WebRoot/js/ajax/dwt/xforms/XFo…	-	CVE-2017-20191	2024-11-21 12:22	2024-03-31	Show	GitHub Exploit DB Packet Storm

254242	-		-	-	Some Microsoft technologies as used in Windows 8 through 11 allow a temporary client-side performance degradation during processing of multiple Unicode combining characters, aka a "Zalgo text" attack…	-	CVE-2017-20190	2024-11-21 12:22	2024-03-27	Show	GitHub Exploit DB Packet Storm

254243	9.8	CRITICAL Network	clojure	clojure	In Clojure before 1.9.0, classes can be used to construct a serialized object that executes arbitrary code upon deserialization. This is relevant if a server deserializes untrusted objects.	CWE-502 Deserialization of Untrusted Data	CVE-2017-20189	2024-11-21 12:22	2024-01-22	Show	GitHub Exploit DB Packet Storm

254244	9.8	CRITICAL Network	floriangaerber	magnesium-php	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Magnesium-PHP up to 0.3.0. It has been classified as problematic. Affected is the function formatEmailString of the file src/Magnesium/Mes…	-	CVE-2017-20187	2024-11-21 12:22	2023-11-6	Show	GitHub Exploit DB Packet Storm

254245	7.5	HIGH Network	nikooo777	cksurf	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in nikooo777 ckSurf up to 1.19.2. It has been declared as problematic. This vulnerability affects the function SpecListMenuDead of the file c…	-	CVE-2017-20186	2024-11-21 12:22	2023-08-28	Show	GitHub Exploit DB Packet Storm

254246	6.1	MEDIUM Network	server_web_monitor_page_project	server_web_monitor_page	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Fuzzy SWMP. It has been rated as problematic. This issue affects some unknown processing of the file swmp.php of the component GET Paramet…	-	CVE-2017-20185	2024-11-21 12:22	2023-06-6	Show	GitHub Exploit DB Packet Storm

254247	6.1	MEDIUM Network	external_media_without_import_project	external_media_without_import	A vulnerability was found in External Media without Import Plugin up to 1.0.0 on WordPress. It has been declared as problematic. This vulnerability affects the function print_media_new_panel of the f…	CWE-79 Cross-site Scripting	CVE-2017-20183	2024-11-21 12:22	2023-05-5	Show	GitHub Exploit DB Packet Storm

254248	7.5	HIGH Network	gavazzionline	powersoft	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Carlo Gavazzi Powersoft up to version 2.1.1.1 allows an unauthenticated, remote attacker to download an…	-	CVE-2017-20184	2024-11-21 12:22	2023-05-4	Show	GitHub Exploit DB Packet Storm

254249	6.1	MEDIUM Network	mobilevikings	django_ajax_utilities	A vulnerability was found in Mobile Vikings Django AJAX Utilities up to 1.2.1 and classified as problematic. This issue affects the function Pagination of the file django_ajax/static/ajax-utilities/j…	CWE-79 Cross-site Scripting	CVE-2017-20182	2024-11-21 12:22	2023-03-10	Show	GitHub Exploit DB Packet Storm

254250	5.5	MEDIUM Local	vocable_trainer_project	vocable_trainer	A vulnerability classified as critical was found in hgzojer Vocable Trainer up to 1.3.0 on Android. This vulnerability affects unknown code of the file src/at/hgz/vocabletrainer/VocableTrainerProvide…	-	CVE-2017-20181	2024-11-21 12:22	2023-03-7	Show	GitHub Exploit DB Packet Storm