Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253511 6.8 警告 Django Software Foundation - Django の CSRF 保護メカニズムにおける認証されずに偽造されたリクエストを誘発される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4140 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
253512 5 警告 Django Software Foundation - Django におけるキャッシュポイズニング攻撃を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4139 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
253513 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能における任意の GET リクエストを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4138 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
253514 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能におけるサービス運用妨害 (リソース消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4137 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
253515 5.8 警告 Django Software Foundation - Django の django.contrib.sessions におけるセッションを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4136 2011-10-25 16:52 2011-09-9 Show GitHub Exploit DB Packet Storm
253516 4.3 警告 シスコシステムズ - Cisco TelePresence Video Communication Servers の管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3294 2011-10-25 16:50 2011-10-12 Show GitHub Exploit DB Packet Storm
253517 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3162 2011-10-25 16:50 2011-10-18 Show GitHub Exploit DB Packet Storm
253518 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3161 2011-10-25 16:49 2011-10-18 Show GitHub Exploit DB Packet Storm
253519 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3160 2011-10-25 16:48 2011-10-18 Show GitHub Exploit DB Packet Storm
253520 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3159 2011-10-25 16:48 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259341 9.8 CRITICAL
Network 		moxa softcms_lab_view A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability has been identified… CWE-89
SQL Injection 		CVE-2017-12729 2024-11-21 12:10 2018-01-19 Show GitHub Exploit DB Packet Storm
259342 5.9 MEDIUM
Network 		gm shanghai_onstar A Man-in-the-Middle issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitiv… CWE-200
Information Exposure 		CVE-2017-12697 2024-11-21 12:10 2018-01-10 Show GitHub Exploit DB Packet Storm
259343 8.8 HIGH
Network 		gm shanghai_onstar An Improper Authentication issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert sec… CWE-287
Improper Authentication 		CVE-2017-12695 2024-11-21 12:10 2018-01-10 Show GitHub Exploit DB Packet Storm
259344 6.1 MEDIUM
Network 		stivasoft phpjabbers_file_sharing_script PHPJabbers File Sharing Script 1.0 has stored XSS in the comments section. CWE-79
Cross-site Scripting 		CVE-2017-12813 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
259345 6.1 MEDIUM
Network 		stivasoft phpjabbers_night_club_booking_software PHPJabbers Night Club Booking Software has stored XSS in the name parameter in the reservations tab. CWE-79
Cross-site Scripting 		CVE-2017-12812 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
259346 6.1 MEDIUM
Network 		stivasoft phpjabbers_star_rating_script PHPJabbers Star Rating Script 4.0 has stored XSS via a rating item. CWE-79
Cross-site Scripting 		CVE-2017-12811 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
259347 6.1 MEDIUM
Network 		stivasoft phpjabbers_newsletter_script PHPJabbers PHP Newsletter Script 4.2 has stored XSS in lists in the admin panel. CWE-79
Cross-site Scripting 		CVE-2017-12810 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
259348 7.8 HIGH
Local 		tracker-software pdf-xchange_viewer The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file. CWE-20
 Improper Input Validation  		CVE-2017-13056 2024-11-21 12:10 2017-12-28 Show GitHub Exploit DB Packet Storm
259349 7.5 HIGH
Network 		siemens simatic_s7-200_firmware
simatic_s7-400pn_v6_firmware
simatic_s7-400h_v6_firmware
simatic_s7-400pn\/dp_v7_firmware
simatic_s7-410_v8_firmware
simatic_s7-300_firmware
simatic_s7-1200_… 		Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually. - CVE-2017-12741 2024-11-21 12:10 2017-12-26 Show GitHub Exploit DB Packet Storm
259350 5.9 MEDIUM
Network 		siemens logo\!_soft_comfort Siemens LOGO! Soft Comfort (All versions before V8.2) lacks integrity verification of software packages downloaded via an unprotected communication channel. This could allow a remote attacker to mani… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2017-12740 2024-11-21 12:10 2017-12-26 Show GitHub Exploit DB Packet Storm