Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227041 2.6 注意 Matthias Hutterer - Drupal 用 Email Field モジュールにおける電子メールを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5588 2012-12-28 16:02 2012-11-28 Show GitHub Exploit DB Packet Storm
227042 4.3 警告 Matthias Hutterer - Drupal 用 Email Field モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5587 2012-12-28 15:58 2012-11-28 Show GitHub Exploit DB Packet Storm
227043 2.1 注意 Marc Ingram - Drupal 用 Services モジュールにおける任意のユーザの電子メールにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5586 2012-12-28 15:57 2012-11-28 Show GitHub Exploit DB Packet Storm
227044 2.1 注意 Mixpanel Project - Drupal 用 Mixpanel モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5585 2012-12-28 15:50 2012-11-28 Show GitHub Exploit DB Packet Storm
227045 4.3 警告 Made to Order Software - Drupal 用 Table of Contents モジュールにおけるノードのヘッダを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5584 2012-12-28 15:49 2012-11-14 Show GitHub Exploit DB Packet Storm
227046 6.8 警告 Sensio Labs - Symfony における任意のサービスにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6432 2012-12-28 15:20 2012-12-20 Show GitHub Exploit DB Packet Storm
227047 6.4 警告 Sensio Labs - Symfony における URI の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6431 2012-12-28 15:18 2012-12-20 Show GitHub Exploit DB Packet Storm
227048 4.3 警告 Sebastian Heinlein
Canonical		 - Ubuntu の Aptdaemon における任意のパッケージレポジトリの GPG キーをインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-0962 2012-12-28 15:03 2012-12-17 Show GitHub Exploit DB Packet Storm
227049 2.1 注意 Debian - Ubuntu で使用される APT における重要なシェル情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-0961 2012-12-28 14:59 2012-12-12 Show GitHub Exploit DB Packet Storm
227050 4.3 警告 PS Project Management Team - Firefox 用 Unity integration 拡張機能における同一生成元ポリシーを回避される脆弱性 CWE-DesignError
CVE-2012-0958 2012-12-28 14:58 2012-10-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221571 4.7 MEDIUM
Network 		oracle e-business_suite Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12… NVD-CWE-noinfo
CVE-2019-2396 2024-11-21 13:40 2019-01-17 Show GitHub Exploit DB Packet Storm
221572 5.4 MEDIUM
Network 		oracle weblogic_server Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). The supported version that is affected is 10.3.6.0. Easily exploitable vulnerabil… NVD-CWE-noinfo
CVE-2019-2395 2024-11-21 13:40 2019-01-17 Show GitHub Exploit DB Packet Storm
221573 7.5 HIGH
Network 		sage sage_frp_1000 A path traversal vulnerability exists in Sage FRP 1000 before November 2019. This allows remote unauthenticated attackers to access files outside of the web tree via a crafted URL. CWE-22
Path Traversal 		CVE-2019-25053 2024-11-21 13:39 2023-01-28 Show GitHub Exploit DB Packet Storm
221574 5.3 MEDIUM
Network 		afkmods qsf-portal A vulnerability classified as critical was found in Arthmoor QSF-Portal. This vulnerability affects unknown code of the file index.php. The manipulation of the argument a leads to path traversal. The… CWE-22
Path Traversal 		CVE-2019-25099 2024-11-21 13:39 2023-01-6 Show GitHub Exploit DB Packet Storm
221575 7.5 HIGH
Network 		goa.design goa Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory. CWE-22
Path Traversal 		CVE-2019-25073 2024-11-21 13:39 2022-12-28 Show GitHub Exploit DB Packet Storm
221576 5.4 MEDIUM
Network 		oxidized_web_project oxidized_web A vulnerability was found in ytti Oxidized Web. It has been classified as problematic. Affected is an unknown function of the file lib/oxidized/web/views/conf_search.haml. The manipulation of the arg… - CVE-2019-25088 2024-11-21 13:39 2022-12-27 Show GitHub Exploit DB Packet Storm
221577 4.3 MEDIUM
Network 		ethex ethex_contracts A vulnerability was found in Ethex Contracts. It has been classified as critical. This affects an unknown part of the file EthexJackpot.sol of the component Monthly Jackpot Handler. The manipulation … - CVE-2019-25157 2024-11-21 13:39 2023-12-19 Show GitHub Exploit DB Packet Storm
221578 6.1 MEDIUM
Network 		dstar2018 agency A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument Q… - CVE-2019-25156 2024-11-21 13:39 2023-11-7 Show GitHub Exploit DB Packet Storm
221579 6.1 MEDIUM
Network 		cure53 dompurify DOMPurify before 1.0.11 allows reverse tabnabbing in demos/hooks-target-blank-demo.html because links lack a 'rel="noopener noreferrer"' attribute. CWE-601
Open Redirect 		CVE-2019-25155 2024-11-21 13:39 2023-11-7 Show GitHub Exploit DB Packet Storm
221580 10.0 CRITICAL
Network 		mozilla firefox A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70. NVD-CWE-noinfo
CVE-2019-25136 2024-11-21 13:39 2023-06-19 Show GitHub Exploit DB Packet Storm