Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256901 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256902 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
256903 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
256904 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295691 - alienvault open_source_security_information_management Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url… CWE-79
Cross-site Scripting 		CVE-2012-3835 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295692 - alienvault open_source_security_information_management SQL injection vulnerability in forensics/base_qry_main.php in AlienVault Open Source Security Information Management (OSSIM) 3.1 allows remote authenticated users to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2012-3834 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295693 - opensolution quick.cms Cross-site scripting (XSS) vulnerability in the default index page in admin/ in Quick.CMS 4.0 allows remote attackers to inject arbitrary web script or HTML via the p parameter. CWE-79
Cross-site Scripting 		CVE-2012-3833 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295694 - milesj decoda Cross-site scripting (XSS) vulnerability in decoda/Decoda.php in Decoda before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to (1) b or (2) div tags. CWE-79
Cross-site Scripting 		CVE-2012-3832 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295695 - milesj decoda Cross-site scripting (XSS) vulnerability in decoda/templates/video.php in Decoda before 3.3.1 allows remote attackers to inject arbitrary web script or HTML via multiple URLs in an img tag. CWE-79
Cross-site Scripting 		CVE-2012-3831 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295696 - milesj decoda Cross-site scripting (XSS) vulnerability in decoda/templates/video.php in Decoda before 3.3.3 allows remote attackers to inject arbitrary web script or HTML via the video directive. CWE-79
Cross-site Scripting 		CVE-2012-3830 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295697 - joomla joomla\! Joomla! 2.5.3 allows remote attackers to obtain the installation path via the Host HTTP Header. CWE-200
Information Exposure 		CVE-2012-3829 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295698 - joomla joomla\! Cross-site scripting (XSS) vulnerability in Joomla! 2.5.3 allows remote attackers to inject arbitrary web script or HTML via the Host HTTP Header. CWE-79
Cross-site Scripting 		CVE-2012-3828 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295699 - avaya ip_office_customer_call_reporter Unrestricted file upload vulnerability in ImageUpload.ashx in the Wallboard application in Avaya IP Office Customer Call Reporter 7.0 before 7.0.5.8 Q1 2012 Maintenance Release and 8.0 before 8.0.9.1… NVD-CWE-Other
CVE-2012-3811 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
295700 - wireshark wireshark Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vul… CWE-189
Numeric Errors 		CVE-2012-3826 2024-11-21 10:41 2012-06-30 Show GitHub Exploit DB Packet Storm