Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255371	7.8	危険	サイバートラスト株式会社 Avahi レッドハット	-	Avahi の originates_from_local_legacy_unicast_socket 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0758	2010-08-10 18:49	2009-03-3	Show	GitHub Exploit DB Packet Storm

255372	6.8	警告	サン・マイクロシステムズ 68k.org	-	audiofile の msadpcm.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5824	2010-08-10 18:49	2009-01-2	Show	GitHub Exploit DB Packet Storm

255373	2.4	注意	オラクル	-	Oracle Sun Java System Application Server および Oracle GlassFish Enterprise Server の GUI における脆弱性	CWE-noinfo 情報不足	CVE-2010-2397	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

255374	3	注意	オラクル	-	Oracle Solaris Studio における脆弱性	CWE-noinfo 情報不足	CVE-2010-2374	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

255375	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise における脆弱性	CWE-noinfo 情報不足	CVE-2009-3762	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

255376	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise の OpenSSO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3764	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255377	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise の Access Manager / OpenSSO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3763	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255378	5	警告	オラクル	-	Oracle Sun Convergence における脆弱性	CWE-noinfo 情報不足	CVE-2010-0914	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255379	5.8	警告	オラクル	-	Oracle Sun Java System Web Proxy Server の管理サーバにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2385	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255380	2.1	注意	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise Campus Solutions コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2403	2010-08-6 18:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292811	-	shawn_bradley	php_ticket_system	SQL injection vulnerability in PHP Ticket System Beta 1 allows remote attackers to execute arbitrary SQL commands via the q parameter to index.php.	CWE-89 SQL Injection	CVE-2012-6516	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292812	-	rockwellautomation	guardlogix_controllers compactlogix_controllers 1794-aentr_flex_i\/o_ethernet\/ip_adapter flexlogix_1788-enbt_adapter micrologix guardlogix 1768-enbt 1756-enbt compactlogix	Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/…	CWE-399 Resource Management Errors	CVE-2012-6435	2024-11-21 10:46	2013-01-25	Show	GitHub Exploit DB Packet Storm

292813	-	efrontlearning	efront	eFront 3.6.10, 3.6.11 build 15059, and earlier allows remote attackers to obtain sensitive information via invalid courses_ID parameter in the lesson_info module to index.php, which reveals the insta…	CWE-200 Information Exposure	CVE-2012-6515	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292814	-	netshinesoftware	com_netinvoice	Cross-site scripting (XSS) vulnerability in the nBill (com_nbill) component 2.3.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the message parameter in an income act…	CWE-79 Cross-site Scripting	CVE-2012-6514	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292815	-	gpeasy	gpeasy_cms	Cross-site scripting (XSS) vulnerability in index.php/Admin_Preferences in gpEasy CMS 2.3.3 allows remote attackers to inject arbitrary web script or HTML via the jsoncallback parameter.	CWE-79 Cross-site Scripting	CVE-2012-6513	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292816	-	organizer_project	organizer	The Organizer plugin 1.2.1 for WordPress allows remote attackers to obtain the installation path via unspecified vectors to (1) plugin_hook.php, (2) page/index.php, (3) page/dir.php (4) page/options.…	CWE-200 Information Exposure	CVE-2012-6512	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292817	-	organizer_project	organizer	Multiple cross-site scripting (XSS) vulnerabilities in organizer/page/users.php in the Organizer plugin 1.2.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) d…	CWE-79 Cross-site Scripting	CVE-2012-6511	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292818	-	netartmedia	car_portal	Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) PWRS or (2) Description field when posting…	CWE-79 Cross-site Scripting	CVE-2012-6510	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292819	-	netartmedia	car_portal	Unrestricted file upload vulnerability in NetArt Media Car Portal 3.0 allows remote attackers to execute arbitrary PHP code by uploading a file a double extension, as demonstrated by .php%00.jpg.	NVD-CWE-Other	CVE-2012-6509	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm

292820	-	netartmedia	car_portal	Multiple cross-site request forgery (CSRF) vulnerabilities in NetArt Media Car Portal 3.0 allow remote attackers to hijack the authentication of administrators for requests that (1) change arbitrary …	CWE-352 Origin Validation Error	CVE-2012-6508	2024-11-21 10:46	2013-01-24	Show	GitHub Exploit DB Packet Storm