Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258911 9.3 危険 VMware - 複数の VMware 製品の VMnc media コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2628 2010-03-24 12:22 2009-09-4 Show GitHub Exploit DB Packet Storm
258912 9.3 危険 VMware - 複数の VMware 製品の VMnc media コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0199 2010-03-24 12:22 2009-09-4 Show GitHub Exploit DB Packet Storm
258913 5 警告 VMware - VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2968 2010-03-24 12:22 2009-08-31 Show GitHub Exploit DB Packet Storm
258914 4 警告 VMware - 複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1805 2010-03-24 12:22 2009-05-28 Show GitHub Exploit DB Packet Storm
258915 6.8 警告 VMware - 複数の VMware 製品の仮想マシン表示機能における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1244 2010-03-24 12:21 2009-04-10 Show GitHub Exploit DB Packet Storm
258916 7.2 危険 VMware - 複数の VMware 製品の仮想マシン通信インターフェイスにおける権限昇格の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1147 2010-03-24 12:21 2009-04-3 Show GitHub Exploit DB Packet Storm
258917 4.9 警告 VMware - 複数の VMware 製品の ioctl におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1146 2010-03-23 14:11 2010-04-3 Show GitHub Exploit DB Packet Storm
258918 6.8 警告 VMware - 複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0910 2010-03-23 14:11 2010-04-3 Show GitHub Exploit DB Packet Storm
258919 9.3 危険 VMware - 複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0909 2010-03-23 14:10 2010-04-3 Show GitHub Exploit DB Packet Storm
258920 6.4 警告 VMware - VMware ACE の ACE 共有フォルダ実装における無効にされた共有フォルダを有効にされる脆弱性 CWE-noinfo
情報不足 		CVE-2009-0908 2010-03-23 14:10 2010-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
303541 - mg12 wp-recentcomments Cross-site scripting (XSS) vulnerability in the rc_ajax function in core.php in the WP-RecentComments plugin before 2.0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML … CWE-79
Cross-site Scripting 		CVE-2012-1068 2024-11-21 10:36 2012-02-15 Show GitHub Exploit DB Packet Storm
303542 - mg12 wp-recentcomments SQL injection vulnerability in the WP-RecentComments plugin 2.0.7 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter in an rc-content action to index.php. N… CWE-89
SQL Injection 		CVE-2012-1067 2024-11-21 10:36 2012-02-15 Show GitHub Exploit DB Packet Storm
303543 - smartycms smartycms Cross-site scripting (XSS) vulnerability in the template module in SmartyCMS 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the title bar. CWE-79
Cross-site Scripting 		CVE-2012-1066 2024-11-21 10:36 2012-02-15 Show GitHub Exploit DB Packet Storm
303544 - 2x applicationserver Insecure method vulnerability in TuxScripting.dll in the TuxSystem ActiveX control in 2X ApplicationServer 10.1 Build 1224 allows remote attackers to create or overwrite arbitrary files via the Expor… NVD-CWE-Other
CVE-2012-1065 2024-11-21 10:36 2012-02-15 Show GitHub Exploit DB Packet Storm
303545 - netsarang xmanager_enterprise
xlpd 		NetSarang Xlpd 4 Build 0100 and NetSarang Xmanager Enterprise 4 Build 0186 allow remote attackers to cause a denial of service (daemon crash) via a malformed LPD request. NVD-CWE-noinfo
CVE-2012-1009 2024-11-21 10:36 2012-02-15 Show GitHub Exploit DB Packet Storm
303546 - manageengine applications_manager Multiple SQL injection vulnerabilities in ManageEngine Applications Manager 9.x and 10.x allow remote attackers to execute arbitrary SQL commands via the (1) viewId parameter to fault/AlarmView.do or… CWE-89
SQL Injection 		CVE-2012-1063 2024-11-21 10:36 2012-02-14 Show GitHub Exploit DB Packet Storm
303547 - manageengine applications_manager Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Applications Manager 9.x and 10.x allow remote attackers to inject arbitrary web script or HTML via the (1) period parameter to sho… CWE-79
Cross-site Scripting 		CVE-2012-1062 2024-11-21 10:36 2012-02-14 Show GitHub Exploit DB Packet Storm
303548 - gforgegroup gforge SQL injection vulnerability in GForge Advanced Server 6.0.0 and other versions before 6.0.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2012-1061 2024-11-21 10:36 2012-02-14 Show GitHub Exploit DB Packet Storm
303549 - rik_de_boer revisioning Multiple cross-site scripting (XSS) vulnerabilities in revisioning_theme.inc in the Taxonomy module in the Revisioning module 6.x-3.13 and other versions before 6.x-3.14 for Drupal allow remote authe… CWE-79
Cross-site Scripting 		CVE-2012-1060 2024-11-21 10:36 2012-02-14 Show GitHub Exploit DB Packet Storm
303550 - oscommerce online_merchant Cross-site scripting (XSS) vulnerability in osCommerce/OM/Core/Site/Shop/Application/Cart/pages/main.php in OSCommerce Online Merchant 3.0.2 allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2012-1059 2024-11-21 10:36 2012-02-14 Show GitHub Exploit DB Packet Storm