Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228341 2.6 注意 Angry Donuts - Drupal 用 Chaos tool suite モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5559 2012-12-5 17:44 2012-11-14 Show GitHub Exploit DB Packet Storm
228342 3.6 注意 User Read-Only project - Drupal 用 User Read-Only モジュールにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5557 2012-12-5 17:43 2012-11-14 Show GitHub Exploit DB Packet Storm
228343 6.8 警告 Klaus Purer - Drupal 用 RESTful Web Services モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5556 2012-12-5 17:40 2012-11-14 Show GitHub Exploit DB Packet Storm
228344 5 警告 Coleman Watts - Webform CiviCRM Integration モジュールのデフォルト設定における連絡先情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5554 2012-12-5 17:40 2012-11-7 Show GitHub Exploit DB Packet Storm
228345 2.1 注意 Daniel Honrade - Drupal 用 OM Maximenu モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5553 2012-12-5 17:39 2012-11-7 Show GitHub Exploit DB Packet Storm
228346 6.8 警告 Carlos Carvalhar - Drupal 用 Time Spent モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5549 2012-12-5 17:33 2012-10-24 Show GitHub Exploit DB Packet Storm
228347 4.3 警告 Carlos Carvalhar - Drupal 用 Time Spent モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5548 2012-12-5 17:28 2012-10-24 Show GitHub Exploit DB Packet Storm
228348 6.8 警告 Thomas Seidl - Drupal 用 Search API モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5547 2012-12-5 17:28 2012-10-17 Show GitHub Exploit DB Packet Storm
228349 2.1 注意 Rob Loach - Drupal 用 ShareThis モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5545 2012-12-5 17:26 2012-10-10 Show GitHub Exploit DB Packet Storm
228350 4 警告 ThinkShout - Drupal 用 Mandrill モジュールにおけるパスワードのリセットリンクを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5544 2012-12-5 16:57 2012-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198631 5.5 MEDIUM
Local 		juniper junos A vulnerability in a specific loopback filter action command, processed in a specific logical order of operation, in a running configuration of Juniper Networks Junos OS, allows an attacker with CLI … CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-10613 2024-11-21 12:06 2017-10-14 Show GitHub Exploit DB Packet Storm
198632 5.9 MEDIUM
Network 		juniper junos If extended statistics are enabled via 'set chassis extended-statistics', when executing any operation that fetches interface statistics, including but not limited to SNMP GET requests, the pfem proc… NVD-CWE-noinfo
CVE-2017-10611 2024-11-21 12:06 2017-10-14 Show GitHub Exploit DB Packet Storm
198633 5.9 MEDIUM
Network 		juniper junos On SRX Series devices, a crafted ICMP packet embedded within a NAT64 IPv6 to IPv4 tunnel may cause the flowd process to crash. Repeated crashes of the flowd process constitutes an extended denial of … CWE-20
 Improper Input Validation  		CVE-2017-10610 2024-11-21 12:06 2017-10-14 Show GitHub Exploit DB Packet Storm
198634 7.5 HIGH
Network 		juniper junos Any Juniper Networks SRX series device with one or more ALGs enabled may experience a flowd crash when traffic is processed by the Sun/MS-RPC ALGs. This vulnerability in the Sun/MS-RPC ALG services c… CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-10608 2024-11-21 12:06 2017-10-14 Show GitHub Exploit DB Packet Storm
198635 7.5 HIGH
Network 		juniper junos Juniper Networks Junos OS 16.1R1, and services releases based off of 16.1R1, are vulnerable to the receipt of a crafted BGP Protocol Data Unit (PDU) sent directly to the router, which can cause the R… NVD-CWE-noinfo
CVE-2017-10607 2024-11-21 12:06 2017-10-14 Show GitHub Exploit DB Packet Storm
198636 4.4 MEDIUM
Local 		juniper trusted_platform_module_firmware Version 4.40 of the TPM (Trusted Platform Module) firmware on Juniper Networks SRX300 Series has a weakness in generating cryptographic keys that may allow an attacker to decrypt sensitive informatio… NVD-CWE-noinfo
CVE-2017-10606 2024-11-21 12:06 2017-10-14 Show GitHub Exploit DB Packet Storm
198637 7.8 HIGH
Local 		hitachi-solutions confidential_file_decryption Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note thi… CWE-426
 Untrusted Search Path 		CVE-2017-10865 2024-11-21 12:06 2017-10-12 Show GitHub Exploit DB Packet Storm
198638 7.8 HIGH
Local 		hitachi-solutions confidential_file_viewer Untrusted search path vulnerability in Installer of HIBUN Confidential File Viewer prior to 11.20.0001 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2017-10864 2024-11-21 12:06 2017-10-12 Show GitHub Exploit DB Packet Storm
198639 7.8 HIGH
Local 		hitachi-solutions confidential_file_decryption Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note thi… CWE-426
 Untrusted Search Path 		CVE-2017-10863 2024-11-21 12:06 2017-10-12 Show GitHub Exploit DB Packet Storm
198640 5.3 MEDIUM
Network 		really jwt-scala jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token. CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2017-10862 2024-11-21 12:06 2017-10-12 Show GitHub Exploit DB Packet Storm