Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252651 7.2 危険 VMware - 複数の VMware 製品の VIX API におけるバッファオーバーフローの脆弱性 CWE-119
CWE-noinfo
CVE-2008-2100 2010-09-13 15:56 2008-06-4 Show GitHub Exploit DB Packet Storm
252652 7.8 危険 VMware - 複数の VMware 製品の DHCP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
CWE-noinfo
CVE-2008-1364 2010-09-13 15:56 2008-03-17 Show GitHub Exploit DB Packet Storm
252653 6.8 警告 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1363 2010-09-13 15:56 2008-03-17 Show GitHub Exploit DB Packet Storm
252654 7.2 危険 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1362 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
252655 6.8 警告 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1361 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
252656 7.1 危険 VMware - 複数の VMware 製品の Virtual Machine Communication Interface (VMCI) におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1340 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
252657 6.9 警告 VMware - 複数の VMware 製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0923 2010-09-13 15:54 2008-02-26 Show GitHub Exploit DB Packet Storm
252658 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2882 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
252659 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2881 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
252660 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2880 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291491 - joomla joomla\! Cross-site scripting (XSS) vulnerability in the ja_purity template for Joomla! 1.5.26 and earlier allows remote attackers to inject arbitrary web script or HTML via the Mod* cookie parameter to html/… CWE-79
Cross-site Scripting 		CVE-2012-2413 2024-11-21 10:39 2014-10-20 Show GitHub Exploit DB Packet Storm
291492 - mailenable mailenable Multiple cross-site scripting (XSS) vulnerabilities in MailEnable Enterprise 6.5 allow remote attackers to inject arbitrary web script or HTML via the (1) From, (2) To, or (3) Subject header or (4) b… CWE-79
Cross-site Scripting 		CVE-2012-2588 2024-11-21 10:39 2014-09-19 Show GitHub Exploit DB Packet Storm
291493 - mini_mail_dashboard_widget_project mini_mail_dashboard_widget Cross-site scripting (XSS) vulnerability in Mini Mail Dashboard Widget plugin 1.42 for WordPress allows remote attackers to inject arbitrary web script or HTML via the body of an email. CWE-79
Cross-site Scripting 		CVE-2012-2583 2024-11-21 10:39 2014-09-17 Show GitHub Exploit DB Packet Storm
291494 - redhat enterprise_mrg Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, allows attackers with certain database privileges to cause a denial of service (inaccessible page) via a non-ASCII character… CWE-20
 Improper Input Validation  		CVE-2012-2682 2024-11-21 10:39 2014-07-20 Show GitHub Exploit DB Packet Storm
291495 - emailarchitect emailarchitect_email_server Multiple cross-site scripting (XSS) vulnerabilities in EmailArchitect Email Server 10.0 and 10.0.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) From or (2) Date field i… CWE-79
Cross-site Scripting 		CVE-2012-2591 2024-11-21 10:39 2014-06-20 Show GitHub Exploit DB Packet Storm
291496 - postieplugin postie Cross-site scripting (XSS) vulnerability in the Postie plugin 1.4.3, and possibly before 1.5.15, for WordPress allows remote attackers to inject arbitrary web script or HTML via the From field of an … CWE-79
Cross-site Scripting 		CVE-2012-2580 2024-11-21 10:39 2014-06-20 Show GitHub Exploit DB Packet Storm
291497 - wp_simplemail_project wp_simplemail Multiple cross-site scripting (XSS) vulnerabilities in the WP SimpleMail plugin 1.0.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) To, (2) From, (3) Date, o… CWE-79
Cross-site Scripting 		CVE-2012-2579 2024-11-21 10:39 2014-06-20 Show GitHub Exploit DB Packet Storm
291498 - mindreantre threewp_email_reflector Cross-site scripting (XSS) vulnerability in the ThreeWP Email Reflector plugin before 1.16 for WordPress allows remote attackers to inject arbitrary web script or HTML via the Subject of an email. CWE-79
Cross-site Scripting 		CVE-2012-2572 2024-11-21 10:39 2014-06-19 Show GitHub Exploit DB Packet Storm
291499 - synametrics xeams Cross-site scripting (XSS) vulnerability in Synametrics Technologies Xeams 4.4 Build 5720 allows remote attackers to inject arbitrary web script or HTML via the body of an email. CWE-79
Cross-site Scripting 		CVE-2012-2569 2024-11-21 10:39 2014-06-19 Show GitHub Exploit DB Packet Storm
291500 - axigen axigen_mail_server Cross-site scripting (XSS) vulnerability in Axigen Mail Server 8.0.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email. CWE-79
Cross-site Scripting 		CVE-2012-2592 2024-11-21 10:39 2014-06-19 Show GitHub Exploit DB Packet Storm