Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228931 4.3 警告 Trionic Labs - WordPress 用 Sentinel プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5225 2012-10-29 15:37 2012-10-25 Show GitHub Exploit DB Packet Storm
228932 7.5 危険 Trionic Labs - WordPress 用 Sentinel プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5224 2012-10-29 15:35 2012-10-25 Show GitHub Exploit DB Packet Storm
228933 4.3 警告 The Cacti Group - Cacti の logout.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5223 2012-10-29 15:25 2011-12-11 Show GitHub Exploit DB Packet Storm
228934 7.5 危険 Scripte24Shop - PHP Flirt-Projekt の rub2_w.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5222 2012-10-29 15:22 2012-10-25 Show GitHub Exploit DB Packet Storm
228935 4.3 警告 WebSVN - WebSVN の svnlook.php 内の getLog 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5221 2012-10-29 15:19 2010-04-20 Show GitHub Exploit DB Packet Storm
228936 4.3 警告 Cristopher Shi - PHP-SCMS の templates/default/Admin/Login.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5220 2012-10-29 15:18 2012-10-25 Show GitHub Exploit DB Packet Storm
228937 5 警告 Ian Back - mPDF の examples/show_code.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-5219 2012-10-29 15:18 2012-10-25 Show GitHub Exploit DB Packet Storm
228938 7.5 危険 DotA OpenStats - DotA OpenStats における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5218 2012-10-29 15:17 2012-10-25 Show GitHub Exploit DB Packet Storm
228939 5 警告 日立 - 日立の JP1/ServerConductor/DeploymentManager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-5217 2012-10-29 15:13 2011-12-15 Show GitHub Exploit DB Packet Storm
228940 7.5 危険 Rustici Software - WordPress 用 SCORM Cloud For WordPress プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5216 2012-10-29 15:05 2012-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212691 - google android mediaserver in Android before 5.1.1 LMY48X allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, aka internal bugs… CWE-200
Information Exposure 		CVE-2015-8074 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212692 - google android mediaserver in Android 4.4 and 5.1 before 5.1.1 LMY48X allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 14… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8073 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212693 - google android mediaserver in Android 4.4 through 5.x before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted m… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8072 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212694 - samsung smartviewer The rtsp_getdlsendtime method in the CNC_Ctrl control in Samsung SmartViewer allows remote attackers to execute arbitrary code via an index value. CWE-20
 Improper Input Validation  		CVE-2015-8040 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212695 - samsung smartviewer Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors to the (1) DVRSetupSave method in the STWAxConfig control or (2) SendCustomPacket method in the STWAxConf… NVD-CWE-Other
CVE-2015-8039 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212696 - fortinet fortimanager_firmware Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (… CWE-79
Cross-site Scripting 		CVE-2015-8038 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212697 - fortinet fortimanager_firmware Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (… CWE-79
Cross-site Scripting 		CVE-2015-8037 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212698 - arm
polarssl
debian
fedoraproject
opensuse 		mbed_tls
polarssl
debian_linux
fedora
opensuse 		Heap-based buffer overflow in ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8036 2024-11-21 11:37 2015-11-3 Show GitHub Exploit DB Packet Storm
212699 - sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer (VEV) allows remote attackers to execute arbitrary code via a crafted (1) U3D, (2) LWO, (3) JPEG2000, or (4) FBX file, aka "Out-Of-Bounds Indexing" vulnerabilities. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8030 2024-11-21 11:37 2015-10-31 Show GitHub Exploit DB Packet Storm
212700 - sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer (VEV) allows remote attackers to execute arbitrary code via a crafted Filmbox document, which triggers memory corruption. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8029 2024-11-21 11:37 2015-10-31 Show GitHub Exploit DB Packet Storm