Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228131 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Application Server Single Sign-On における脆弱性 CWE-noinfo
情報不足 		CVE-2012-1677 2013-01-21 11:05 2013-01-15 Show GitHub Exploit DB Packet Storm
228132 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Access Manager における OAM Webgate の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-5097 2013-01-21 11:05 2013-01-15 Show GitHub Exploit DB Packet Storm
228133 3.5 注意 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools における脆弱性 CWE-noinfo
情報不足 		CVE-2012-1678 2013-01-18 16:19 2013-01-15 Show GitHub Exploit DB Packet Storm
228134 2.1 注意 オラクル - Oracle Sun Solaris 11 の kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2012-3178 2013-01-18 16:16 2013-01-15 Show GitHub Exploit DB Packet Storm
228135 9 危険 オラクル - Oracle Database Server の Spatial における脆弱性 CWE-noinfo
情報不足 		CVE-2012-3220 2013-01-18 16:12 2013-01-15 Show GitHub Exploit DB Packet Storm
228136 4 警告 Olive Toast Software Ltd. - Documents Pro (旧 Files HD) におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5185 2013-01-18 12:02 2013-01-18 Show GitHub Exploit DB Packet Storm
228137 2.6 注意 Olive Toast Software Ltd. - Documents Pro (旧 Files HD) におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5184 2013-01-18 12:02 2013-01-18 Show GitHub Exploit DB Packet Storm
228138 4.3 警告 アドビシステムズ - Adobe ColdFusion における制限されたディレクトリにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0629 2013-01-17 18:11 2013-01-4 Show GitHub Exploit DB Packet Storm
228139 5 警告 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0631 2013-01-17 18:09 2013-01-4 Show GitHub Exploit DB Packet Storm
228140 10 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-1530 2013-01-17 17:14 2013-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
226291 4.8 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. A reflected XSS attack could be performed in the inline API documentation editor page of the API Publisher by sending an HTTP GET request with a har… CWE-79
Cross-site Scripting 		CVE-2019-20435 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226292 4.8 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. A potential Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Datasource creation page of the Management Console. CWE-79
Cross-site Scripting 		CVE-2019-20434 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226293 4.8 MEDIUM
Network 		wso2 api_manager
identity_server
enterprise_integrator 		An issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulner… CWE-79
Cross-site Scripting 		CVE-2019-20443 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226294 4.8 MEDIUM
Network 		wso2 api_manager
identity_server
enterprise_integrator 		An issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulner… CWE-79
Cross-site Scripting 		CVE-2019-20442 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226295 4.8 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. A potential Stored Cross-Site Scripting (XSS) vulnerability has been identified in the 'implement phase' of the API Publisher. CWE-79
Cross-site Scripting 		CVE-2019-20441 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226296 4.8 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. A potential Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the update API documentation feature of the API Publisher. CWE-79
Cross-site Scripting 		CVE-2019-20440 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226297 9.1 CRITICAL
Network 		gnu aspell libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the… CWE-125
Out-of-bounds Read 		CVE-2019-20433 2024-11-21 13:38 2020-01-28 Show GitHub Exploit DB Packet Storm
226298 7.5 HIGH
Network 		lustre lustre In the Lustre file system before 2.12.3, the mdt module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. mdt_file_secctx_unpack doe… CWE-787
 Out-of-bounds Write 		CVE-2019-20432 2024-11-21 13:38 2020-01-27 Show GitHub Exploit DB Packet Storm
226299 7.5 HIGH
Network 		lustre lustre In the Lustre file system before 2.12.3, the ptlrpc module has an osd_map_remote_to_local out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client.… CWE-787
 Out-of-bounds Write 		CVE-2019-20431 2024-11-21 13:38 2020-01-27 Show GitHub Exploit DB Packet Storm
226300 7.5 HIGH
Network 		lustre lustre In the Lustre file system before 2.12.3, the mdt module has an LBUG panic (via a large MDT Body eadatasize field) due to the lack of validation for specific fields of packets sent by a client. CWE-20
CWE-670
 Improper Input Validation 
 Always-Incorrect Control Flow Implementation 		CVE-2019-20430 2024-11-21 13:38 2020-01-27 Show GitHub Exploit DB Packet Storm