Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229051 9 危険 オラクル - Oracle Database Server の Oracle Spatial における脆弱性 CWE-noinfo
情報不足 		CVE-2012-0552 2012-10-22 13:42 2012-04-17 Show GitHub Exploit DB Packet Storm
229052 4 警告 オラクル - Oracle Database Server の RDBMS Core における脆弱性 CWE-noinfo
情報不足 		CVE-2012-0534 2012-10-22 13:40 2012-04-17 Show GitHub Exploit DB Packet Storm
229053 10 危険 Condor Project - Condor におけるホストベースの認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-3416 2012-10-22 13:39 2012-08-14 Show GitHub Exploit DB Packet Storm
229054 4.3 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2012-0527 2012-10-22 13:38 2012-04-17 Show GitHub Exploit DB Packet Storm
229055 5.8 警告 Condor Project - Condor の condor_startd.V6/command.cpp における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3493 2012-10-22 13:38 2012-09-19 Show GitHub Exploit DB Packet Storm
229056 4.3 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2012-0526 2012-10-22 13:36 2012-04-17 Show GitHub Exploit DB Packet Storm
229057 4.9 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2012-0525 2012-10-22 13:35 2012-04-17 Show GitHub Exploit DB Packet Storm
229058 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC NetWorker Module for Microsoft Applications のクライアントにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2290 2012-10-22 13:31 2012-10-18 Show GitHub Exploit DB Packet Storm
229059 2.1 注意 DELL EMC (旧 EMC Corporation) - EMC NetWorker Module for Microsoft Applications における平文の管理者資格情報を読み取られる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-2284 2012-10-22 13:29 2012-10-18 Show GitHub Exploit DB Packet Storm
229060 6.8 警告 シマンテック - Symantec Ghost Solution Suite における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0306 2012-10-22 13:26 2012-10-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211841 6.1 MEDIUM
Network 		typo3 typo3 The Flvplayer component in TYPO3 6.2.x before 6.2.16 allows remote attackers to embed Flash videos from external domains via unspecified vectors, aka "Cross-Site Flashing." CWE-20
 Improper Input Validation  		CVE-2015-8760 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211842 5.4 MEDIUM
Network 		typo3 typo3 Cross-site scripting (XSS) vulnerability in the typoLink function in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allows remote authenticated editors to inject arbitrary web script or HTML via a li… CWE-79
Cross-site Scripting 		CVE-2015-8759 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211843 5.4 MEDIUM
Network 		typo3 typo3 Multiple cross-site scripting (XSS) vulnerabilities in unspecified frontend components in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allow remote authenticated editors to inject arbitrary web scr… CWE-79
Cross-site Scripting 		CVE-2015-8758 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211844 6.1 MEDIUM
Network 		typo3 typo3 Cross-site scripting (XSS) vulnerability in the Extension Manager in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vect… CWE-79
Cross-site Scripting 		CVE-2015-8757 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211845 5.4 MEDIUM
Network 		typo3 typo3 Cross-site scripting (XSS) vulnerability in the search result view in the Indexed Search (indexed_search) component in TYPO3 6.2.x before 6.2.16 allows remote authenticated editors to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2015-8756 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211846 5.4 MEDIUM
Network 		typo3 typo3 Multiple cross-site scripting (XSS) vulnerabilities in unspecified backend components in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allow remote authenticated editors to inject arbitrary web scri… CWE-79
Cross-site Scripting 		CVE-2015-8755 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211847 7.5 HIGH
Network 		acquia mollom The Mollom module 6.x-2.7 before 6.x-2.15 for Drupal allows remote attackers to bypass intended access restrictions and modify the mollom blacklist via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8754 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211848 9.1 CRITICAL
Network 		sap afaria SAP Afaria 7.0.6001.5 allows remote attackers to bypass authorization checks and wipe or lock mobile devices via a crafted request, related to "Insecure signature," aka SAP Security Note 2134905. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8753 2024-11-21 11:39 2016-01-9 Show GitHub Exploit DB Packet Storm
211849 5.5 MEDIUM
Local 		wireshark wireshark The dissect_CPMSetBindings function in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.1 does not validate the column size, which allows remote attackers to cause… CWE-20
 Improper Input Validation  		CVE-2015-8742 2024-11-21 11:39 2016-01-4 Show GitHub Exploit DB Packet Storm
211850 5.5 MEDIUM
Local 		wireshark wireshark The dissect_ppi function in epan/dissectors/packet-ppi.c in the PPI dissector in Wireshark 2.0.x before 2.0.1 does not initialize a packet-header data structure, which allows remote attackers to caus… CWE-20
 Improper Input Validation  		CVE-2015-8741 2024-11-21 11:39 2016-01-4 Show GitHub Exploit DB Packet Storm