Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228341 2.6 注意 Angry Donuts - Drupal 用 Chaos tool suite モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5559 2012-12-5 17:44 2012-11-14 Show GitHub Exploit DB Packet Storm
228342 3.6 注意 User Read-Only project - Drupal 用 User Read-Only モジュールにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5557 2012-12-5 17:43 2012-11-14 Show GitHub Exploit DB Packet Storm
228343 6.8 警告 Klaus Purer - Drupal 用 RESTful Web Services モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5556 2012-12-5 17:40 2012-11-14 Show GitHub Exploit DB Packet Storm
228344 5 警告 Coleman Watts - Webform CiviCRM Integration モジュールのデフォルト設定における連絡先情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5554 2012-12-5 17:40 2012-11-7 Show GitHub Exploit DB Packet Storm
228345 2.1 注意 Daniel Honrade - Drupal 用 OM Maximenu モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5553 2012-12-5 17:39 2012-11-7 Show GitHub Exploit DB Packet Storm
228346 6.8 警告 Carlos Carvalhar - Drupal 用 Time Spent モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5549 2012-12-5 17:33 2012-10-24 Show GitHub Exploit DB Packet Storm
228347 4.3 警告 Carlos Carvalhar - Drupal 用 Time Spent モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5548 2012-12-5 17:28 2012-10-24 Show GitHub Exploit DB Packet Storm
228348 6.8 警告 Thomas Seidl - Drupal 用 Search API モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5547 2012-12-5 17:28 2012-10-17 Show GitHub Exploit DB Packet Storm
228349 2.1 注意 Rob Loach - Drupal 用 ShareThis モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5545 2012-12-5 17:26 2012-10-10 Show GitHub Exploit DB Packet Storm
228350 4 警告 ThinkShout - Drupal 用 Mandrill モジュールにおけるパスワードのリセットリンクを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5544 2012-12-5 16:57 2012-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212711 - cisco adaptive_security_appliance_software The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) software 9.0 before 9.0(4.37), 9.1 before 9.1(6.6), 9.2 before 9.2(4), 9.3 before 9.3(3.5), and 9.4 before 9.4(2) allows rem… CWE-399
 Resource Management Errors 		CVE-2015-6324 2024-11-21 11:34 2015-10-25 Show GitHub Exploit DB Packet Storm
212712 - apple mac_os_x The Sandbox subsystem in Apple OS X before 10.11.1 allows local users to gain privileges via vectors involving NVRAM parameters. CWE-264
CWE-20
Permissions, Privileges, and Access Controls
 Improper Input Validation  		CVE-2015-5945 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212713 - apple mac_os_x CoreText in Apple OS X before 10.11.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5944 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212714 - apple mac_os_x SecurityAgent in Apple OS X before 10.11.1 does not prevent synthetic clicks from reaching keychain windows, which allows attackers to bypass intended access restrictions via a crafted app. CWE-254
 7PK - Security Features 		CVE-2015-5943 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212715 - apple mac_os_x
watchos
iphone_os 		FontParser in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5942 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212716 - apple iphone_os
mac_os_x 		The Accelerate Framework component in Apple iOS before 9.1 and OS X before 10.11.1, when multi-threading is enabled, omits certain validation and locking steps, which allows remote attackers to execu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5940 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212717 - apple mac_os_x
watchos
iphone_os 		ImageIO in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted metadata … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5939 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212718 - apple mac_os_x ImageIO in Apple OS X before 10.11.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted metadata in an image. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5938 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212719 - apple watchos
iphone_os
mac_os_x 		ImageIO in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted metadata … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5937 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
212720 - apple mac_os_x
watchos
iphone_os 		ImageIO in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted metadata … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5936 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm