Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225781	4.3	警告	MediaWiki	-	MediaWiki 用 RSS Reader 拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6453	2013-01-4 14:54	2012-12-31	Show	GitHub Exploit DB Packet Storm

225782	4.3	警告	Cerberus, LLC	-	Cerberus FTP Server の管理用 Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6339	2013-01-4 14:51	2012-12-11	Show	GitHub Exploit DB Packet Storm

225783	6.5	警告	Open Constructor	-	Open Constructor における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3873	2013-01-4 14:47	2012-12-28	Show	GitHub Exploit DB Packet Storm

225784	4.3	警告	Open Constructor	-	Open Constructor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3872	2013-01-4 14:46	2012-12-28	Show	GitHub Exploit DB Packet Storm

225785	3.5	注意	Open Constructor	-	Open Constructor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3871	2013-01-4 14:22	2012-12-28	Show	GitHub Exploit DB Packet Storm

225786	3.5	注意	Open Constructor	-	Open Constructor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3870	2013-01-4 14:22	2012-12-28	Show	GitHub Exploit DB Packet Storm

225787	3.3	注意	サムスン	-	複数の Samsung Galaxy デバイス上の Android 用 SamsungDive におけるデバイスの発見を妨害される脆弱性	CWE-200 情報漏えい	CVE-2012-6337	2013-01-4 14:07	2012-12-31	Show	GitHub Exploit DB Packet Storm

225788	3.3	注意	Lookout Mobile Security	-	Lookout の端末捜索機能における任意の位置データに偽装される脆弱性	CWE-noinfo 情報不足	CVE-2012-6336	2013-01-4 14:04	2012-12-31	Show	GitHub Exploit DB Packet Storm

225789	3.3	注意	AVG Technologies	-	Android 用 AVG AntiVirus の Anti-theft サービスにおける任意の位置データに偽装される脆弱性	CWE-noinfo 情報不足	CVE-2012-6335	2013-01-4 14:03	2012-12-31	Show	GitHub Exploit DB Packet Storm

225790	5.8	警告	IBM	-	IBM Security AppScan Enterprise および Rational Policy Tester における SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2012-0741	2013-01-4 12:09	2012-12-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347431	-	david_harris	pegasus_mail	Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini file, which allows local users to easily decrypt the passwords and read e-mail.	NVD-CWE-Other	CVE-1999-1366	2016-10-18 11:03	1999-05-15	Show	GitHub Exploit DB Packet Storm

347432	-	realnetworks	realserver	Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1369	2016-10-18 11:03	1999-04-14	Show	GitHub Exploit DB Packet Storm

347433	-	triactive	remote_management	Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges.	NVD-CWE-Other	CVE-1999-1372	2016-10-18 11:03	1999-02-19	Show	GitHub Exploit DB Packet Storm

347434	-	fore	powerhub_software	FORE PowerHub before 5.0.1 allows remote attackers to cause a denial of service (hang) via a TCP SYN scan with TCP/IP OS fingerprinting, e.g. via nmap.	NVD-CWE-Other	CVE-1999-1373	2016-10-18 11:03	2005-01-5	Show	GitHub Exploit DB Packet Storm

347435	-	arpanet	perlshop	perlshop.cgi shopping cart program stores sensitive customer information in directories and files that are under the web root, which allows remote attackers to obtain that information via an HTTP req…	NVD-CWE-Other	CVE-1999-1374	2016-10-18 11:03	2005-05-2	Show	GitHub Exploit DB Packet Storm

347436	-	microsoft	internet_information_server	FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.	NVD-CWE-Other	CVE-1999-1375	2016-10-18 11:03	1999-02-11	Show	GitHub Exploit DB Packet Storm

347437	-	microsoft	internet_information_server	Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1376	2016-10-18 11:03	1999-01-14	Show	GitHub Exploit DB Packet Storm

347438	-	dbmlparser.exe	dbmlparser.exe	dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-1999-1378	2016-10-18 11:03	1999-07-19	Show	GitHub Exploit DB Packet Storm

347439	-	dnstools_software	dnstools	DNS allows remote attackers to use DNS name servers as traffic amplifiers via a UDP DNS query with a spoofed source address, which produces more traffic to the victim than was sent by the attacker.	NVD-CWE-Other	CVE-1999-1379	2016-10-18 11:03	1999-12-31	Show	GitHub Exploit DB Packet Storm

347440	-	dbadmin	dbadmin	Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1381	2016-10-18 11:03	1998-10-8	Show	GitHub Exploit DB Packet Storm