Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257971 6.9 警告 アドビシステムズ - Adobe Reader における権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2011-1353 2011-10-18 16:23 2011-09-13 Show GitHub Exploit DB Packet Storm
257972 5.8 警告 Adam Kennedy - Perl モジュール Crypt::DSA における署名を偽装される脆弱性 CWE-310
暗号の問題
CVE-2011-3599 2011-10-14 15:50 2011-10-10 Show GitHub Exploit DB Packet Storm
257973 5 警告 株式会社ロックオン - EC-CUBE における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-3988 2011-10-14 14:01 2011-10-14 Show GitHub Exploit DB Packet Storm
257974 6.8 警告 小山浩之 - DBD::mysqlPP における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-3989 2011-10-14 12:02 2011-10-14 Show GitHub Exploit DB Packet Storm
257975 5 警告 Novell - Novell GroupWise の GroupWise Internet Agent (GWIA) におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2219 2011-10-14 10:39 2010-06-30 Show GitHub Exploit DB Packet Storm
257976 5 警告 Novell - Novell GroupWise の GroupWise Internet Agent (GWIA) におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2218 2011-10-14 10:34 2010-06-30 Show GitHub Exploit DB Packet Storm
257977 4.3 警告 phpPgAdmin - phpPgAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3598 2011-10-14 10:31 2011-10-8 Show GitHub Exploit DB Packet Storm
257978 10 危険 Novell - Novell GroupWise の GroupWise Internet Agent における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2663 2011-10-14 10:30 2011-08-19 Show GitHub Exploit DB Packet Storm
257979 10 危険 Novell - Novell GroupWise の GroupWise Internet Agent における整数符号エラーの脆弱性 CWE-189
数値処理の問題
CVE-2011-2662 2011-10-14 10:28 2011-08-19 Show GitHub Exploit DB Packet Storm
257980 4.3 警告 Novell - Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-2661 2011-10-14 10:27 2011-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 2, 2026, 4:03 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305461 - atlassian
gliffy
jira
gliffy
confluence_server
The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to re… CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-2928 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
305462 - tm_software tempo
tempo6.3.0
tempo6.3.2
The TM Software Tempo plugin before 6.4.3.1, 6.5.x before 6.5.0.2, and 7.x before 7.0.3 for Atlassian JIRA does not properly restrict the capabilities of third-party XML parsers, which allows remote … CWE-399
 Resource Management Errors
CVE-2012-2927 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
305463 - xelex mobiletrack The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted (1) FTP or (2) HTTP sessio… CWE-255
Credentials Management
CVE-2012-2567 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
305464 - xelex mobiletrack The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a (1) LOCATE, (2) TRACK, (3) UPDATECFG, (4) UPDATE… CWE-287
CWE-20
Improper Authentication
 Improper Input Validation 
CVE-2012-2562 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
305465 - simple_php_agenda simple_php_agenda SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action. CWE-89
SQL Injection
CVE-2012-2925 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
305466 9.1 CRITICAL
Network
atlassian fisheye
confluence
jira
crucible
crowd
confluence_server
bamboo
Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before 4.0.7, and 4.1 before 4.1.10; FishEye and Crucible before 2.5.8, 2.6 before 2.6.8, and 2.7 before 2.7.12; Bamboo before 3.3.4 and 3.4… NVD-CWE-noinfo
CVE-2012-2926 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
305467 - hypermethod elearning_server PHP remote file inclusion vulnerability in admin/setup.inc.php in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. CWE-94
Code Injection
CVE-2012-2924 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
305468 - hypermethod elearning_server SQL injection vulnerability in news.php4 in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary SQL commands via the nid parameter. CWE-89
SQL Injection
CVE-2012-2923 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
305469 - drupal drupal The request_path function in includes/bootstrap.inc in Drupal 7.14 and earlier allows remote attackers to obtain sensitive information via the q[] parameter to index.php, which reveals the installati… CWE-200
Information Exposure
CVE-2012-2922 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
305470 - mark_pilgrim feedparser Universal Feed Parser (aka feedparser or python-feedparser) before 5.1.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML ENTITY declaration in a non-ASCII … CWE-399
 Resource Management Errors
CVE-2012-2921 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm