Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228981	4.3	警告	Intelliants	-	Subrion CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4771	2012-10-24 16:36	2012-10-22	Show	GitHub Exploit DB Packet Storm

228982	3.6	注意	OpenFabrics Alliance	-	ibacm における ib_acm デーモンログまたは ibacm.port ファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4518	2012-10-24 16:35	2012-10-22	Show	GitHub Exploit DB Packet Storm

228983	5	警告	OpenFabrics Alliance	-	ibacm におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4517	2012-10-24 16:34	2012-10-22	Show	GitHub Exploit DB Packet Storm

228984	5.8	警告	OpenFabrics Alliance	-	librdmacm におけるアプリケーションのアドレス解決情報を設定される脆弱性	CWE-Other その他	CVE-2012-4516	2012-10-24 15:52	2012-10-22	Show	GitHub Exploit DB Packet Storm

228985	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2012-4511	2012-10-24 15:36	2012-10-22	Show	GitHub Exploit DB Packet Storm

228986	7.5	危険	Intelliants	-	Subrion CMS の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5212	2012-10-24 11:39	2012-10-22	Show	GitHub Exploit DB Packet Storm

228987	4.3	警告	Intelliants	-	Subrion CMS の poll モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5211	2012-10-24 11:38	2012-10-22	Show	GitHub Exploit DB Packet Storm

228988	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2011-4129	2012-10-24 11:37	2012-10-22	Show	GitHub Exploit DB Packet Storm

228989	4.3	警告	phpMyFAQ	-	phpMyFAQ におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4821	2012-10-24 11:34	2010-09-28	Show	GitHub Exploit DB Packet Storm

228990	4.3	警告	Claws Mail	-	Claws Mail の procmime.c の strchr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2012-4507	2012-10-24 11:29	2012-10-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198811	8.8	HIGH Network	cisco	unified_customer_voice_portal	A vulnerability in the Operations, Administration, Maintenance, and Provisioning (OAMP) credential reset functionality for Cisco Unified Customer Voice Portal (CVP) could allow an authenticated, remo…	CWE-20 Improper Input Validation	CVE-2017-12214	2024-11-21 12:09	2017-09-21	Show	GitHub Exploit DB Packet Storm

198812	9.8	CRITICAL Network	apache	struts	In Apache Struts 2.0.0 through 2.3.33 and 2.5 through 2.5.10.1, using an unintentional expression in a Freemarker tag instead of string literals can lead to a RCE attack.	CWE-20 Improper Input Validation	CVE-2017-12611	2024-11-21 12:09	2017-09-21	Show	GitHub Exploit DB Packet Storm

198813	7.5	HIGH Network	apache	tomcat	When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext usin…	CWE-200 Information Exposure	CVE-2017-12616	2024-11-21 12:09	2017-09-19	Show	GitHub Exploit DB Packet Storm

198814	8.1	HIGH Network	apache netapp redhat	tomcat oncommand_balance oncommand_shift 7-mode_transition_tool enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux_s…	When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to t…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-12615	2024-11-21 12:09	2017-09-19	Show	GitHub Exploit DB Packet Storm

198815	9.1	CRITICAL Network	cisco	meeting_server	A vulnerability in the Traversal Using Relay NAT (TURN) server included with Cisco Meeting Server (CMS) could allow an authenticated, remote attacker to gain unauthenticated or unauthorized access to…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2017-12249	2024-11-21 12:09	2017-09-14	Show	GitHub Exploit DB Packet Storm

198816	7.8	HIGH Local	apache	spark	In Apache Spark 1.6.0 until 2.1.1, the launcher API performs unsafe deserialization of data received by its socket. This makes applications launched programmatically using the launcher API potentiall…	CWE-502 Deserialization of Untrusted Data	CVE-2017-12612	2024-11-21 12:09	2017-09-14	Show	GitHub Exploit DB Packet Storm

198817	5.4	MEDIUM Network	cisco	emergency_responder	A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a blind SQL injection attack. The vulnerability is due to a failur…	CWE-89 SQL Injection	CVE-2017-12227	2024-11-21 12:09	2017-09-8	Show	GitHub Exploit DB Packet Storm

198818	6.5	MEDIUM Network	cisco	prime_lan_management_solution	A vulnerability in the web functionality of the Cisco Prime LAN Management Solution could allow an authenticated, remote attacker to hijack another user's administrative session, aka a Session Fixati…	CWE-384 Session Fixation	CVE-2017-12225	2024-11-21 12:09	2017-09-8	Show	GitHub Exploit DB Packet Storm

198819	6.5	MEDIUM Network	cisco	meeting_server	A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting Server could allow an authenticated, remote attacker to enter a meeting with a hyperlink URL, even t…	CWE-200 Information Exposure	CVE-2017-12224	2024-11-21 12:09	2017-09-8	Show	GitHub Exploit DB Packet Storm

198820	6.4	MEDIUM Physics	cisco	ir800_integrated_services_router_firmware	A vulnerability in the ROM Monitor (ROMMON) code of Cisco IR800 Integrated Services Router Software could allow an unauthenticated, local attacker to boot an unsigned Hypervisor on an affected device…	CWE-20 Improper Input Validation	CVE-2017-12223	2024-11-21 12:09	2017-09-8	Show	GitHub Exploit DB Packet Storm