Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228671	4.3	警告	TYPO3 Association	-	TYPO3 のインストールツールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3531	2012-11-15 14:26	2012-08-15	Show	GitHub Exploit DB Packet Storm

228672	4.3	警告	TYPO3 Association	-	TYPO3 の t3lib_div::quoteJSvalue API 関数におけるクロスサイトスクリプティングの脆弱性	CWE-Other その他	CVE-2012-3530	2012-11-15 14:25	2012-08-15	Show	GitHub Exploit DB Packet Storm

228673	3.5	注意	TYPO3 Association	-	TYPO3 のバックエンドの configuration モジュールにおける暗号鍵を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-3529	2012-11-15 14:24	2012-08-15	Show	GitHub Exploit DB Packet Storm

228674	4	警告	TYPO3 Association	-	TYPO3 のバックエンドにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3528	2012-11-15 14:23	2012-08-15	Show	GitHub Exploit DB Packet Storm

228675	4.6	警告	TYPO3 Association	-	TYPO3 のバックエンドのヘルプシステムにおける任意のオブジェクトのシリアル化を解除される脆弱性	CWE-310 暗号の問題	CVE-2012-3527	2012-11-15 14:22	2012-08-15	Show	GitHub Exploit DB Packet Storm

228676	7.5	危険	Zabbix	-	Zabbix の frontends/php/popup_bitem.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3435	2012-11-15 12:09	2012-07-18	Show	GitHub Exploit DB Packet Storm

228677	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5287	2012-11-14 16:07	2012-11-2	Show	GitHub Exploit DB Packet Storm

228678	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5286	2012-11-14 16:07	2012-11-2	Show	GitHub Exploit DB Packet Storm

228679	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2012-5673	2012-11-14 16:07	2012-11-2	Show	GitHub Exploit DB Packet Storm

228680	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5285	2012-11-14 16:06	2012-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212571	-	matomo	matomo	The DisplayTopKeywords function in plugins/Referrers/Controller.php in Piwik before 2.15.0 allows remote attackers to conduct PHP object injection attacks, conduct Server-Side Request Forgery (SSRF) …	NVD-CWE-Other	CVE-2015-7816	2024-11-21 11:37	2015-11-17	Show	GitHub Exploit DB Packet Storm

212572	-	matomo	matomo	Directory traversal vulnerability in core/ViewDataTable/Factory.php in Piwik before 2.15.0 allows remote attackers to include and execute arbitrary local files via the viewDataTable parameter.	CWE-22 Path Traversal	CVE-2015-7815	2024-11-21 11:37	2015-11-17	Show	GitHub Exploit DB Packet Storm

212573	-	atutor	atutor	Multiple eval injection vulnerabilities in mods/_standard/gradebook/edit_marks.php in ATutor 2.2 and earlier allow remote authenticated users with the AT_PRIV_GRADEBOOK privilege to execute arbitrary…	NVD-CWE-Other	CVE-2015-7712	2024-11-21 11:37	2015-11-17	Show	GitHub Exploit DB Packet Storm

212574	-	linux	linux_kernel	The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows local users to cause a denial of service (OOPS) via crafted keyctl commands.	CWE-20 Improper Input Validation	CVE-2015-7872	2024-11-21 11:37	2015-11-16	Show	GitHub Exploit DB Packet Storm

212575	-	oracle wireshark	solaris wireshark	The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in Wireshark 1.12.x before 1.12.8 uses too many levels of pointer indirection, which allows remote attackers to cause …	CWE-20 Improper Input Validation	CVE-2015-7830	2024-11-21 11:37	2015-11-15	Show	GitHub Exploit DB Packet Storm

212576	-	pc-egg	pwebmanager	PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x, allows remote authenticated users to execute arbitrary OS commands by leveraging the editor role.	CWE-78 OS Command	CVE-2015-7774	2024-11-21 11:37	2015-11-14	Show	GitHub Exploit DB Packet Storm

212577	-	unitronics	visilogic_oplc_ide	Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to execute unspecified code via unknown vectors.	CWE-94 Code Injection	CVE-2015-7905	2024-11-21 11:37	2015-11-13	Show	GitHub Exploit DB Packet Storm

212578	-	lenovo ibm	switch_center system_networking_switch_center	Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privilege…	CWE-362 Race Condition	CVE-2015-7820	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm

212579	-	lenovo ibm	switch_center system_networking_switch_center	The DB service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a…	CWE-255 Credentials Management	CVE-2015-7819	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm

212580	-	ibm lenovo	system_networking_switch_center switch_center	The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-7818	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm