Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230221	4.3	警告	ownCloud	-	ownCloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5606	2012-12-19 15:58	2012-10-24	Show	GitHub Exploit DB Packet Storm

230222	10	危険	サン・マイクロシステムズサイバートラスト株式会社 VMware ヒューレット・パッカードレッドハット	-	複数の Oracle 製品の 2D コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3556	2012-12-19 15:48	2010-10-12	Show	GitHub Exploit DB Packet Storm

230223	7.5	危険	The GIMP Team	-	GIMP の X Window Dump プラグインにおけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-5576	2012-12-19 15:45	2012-11-7	Show	GitHub Exploit DB Packet Storm

230224	6.4	警告	VMware Apache Software Foundation	-	Apache Struts における任意のファイルを作成または上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0393	2012-12-19 15:43	2012-01-8	Show	GitHub Exploit DB Packet Storm

230225	5	警告	Sensio Labs	-	Symfony CMS の lib/form/sfForm.class.php における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5574	2012-12-19 15:41	2012-11-25	Show	GitHub Exploit DB Packet Storm

230226	4	警告	OpenStack	-	OpenStack Keystone における承認の制限を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-5563	2012-12-19 14:52	2012-11-28	Show	GitHub Exploit DB Packet Storm

230227	7.5	危険	bogofilter	-	bogofilter の bogolexer コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5468	2012-12-19 14:46	2012-12-3	Show	GitHub Exploit DB Packet Storm

230228	5.1	警告	The PHP Group	-	PHP の rand などの関数におけるセキュリティの問題を悪用される脆弱性	CWE-189 数値処理の問題	CVE-2008-4107	2012-12-19 14:22	2008-09-11	Show	GitHub Exploit DB Packet Storm

230229	6.8	警告	ownCloud	-	ownCloud の lib/migrate.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2012-4389	2012-12-19 14:21	2012-08-15	Show	GitHub Exploit DB Packet Storm

230230	4	警告	ownCloud	-	ownCloud における登録されたユーザを列挙される脆弱性	CWE-200 情報漏えい	CVE-2012-4390	2012-12-19 14:20	2012-08-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212121	7.8	HIGH Local	cleanersoft	free_mp3_cd_ripper	Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wma file.	CWE-787 Out-of-bounds Write	CVE-2019-9767	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212122	7.8	HIGH Local	cleanersoft	free_mp3_cd_ripper	Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .mp3 file.	CWE-787 Out-of-bounds Write	CVE-2019-9766	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212123	6.1	MEDIUM Network	blog_mini_project	blog_mini	In Blog_mini 1.0, XSS exists via the author name of a comment reply in the app/main/views.py articleDetails() function, related to app/templates/_article_comments.html.	CWE-79 Cross-site Scripting	CVE-2019-9765	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212124	9.8	CRITICAL Network	phpshe	phpshe	A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the parameter id. The vulnerability does not need any authentication.	CWE-89 SQL Injection	CVE-2019-9762	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212125	7.5	HIGH Network	phpshe	phpshe	An XXE issue was discovered in PHPSHE 1.7, which can be used to read any file in the system or scan the internal network without authentication. This occurs because of the call to wechat_getxml in in…	CWE-611 XXE	CVE-2019-9761	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212126	9.8	CRITICAL Network	ftpgetter	ftpgetter	FTPGetter Standard v.5.97.0.177 allows remote code execution when a user initiates an FTP connection to an attacker-controlled machine that sends crafted responses. Long responses can also crash the …	CWE-787 Out-of-bounds Write	CVE-2019-9760	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212127	5.5	MEDIUM Local	tinycc	tinycc	An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 1 byte out of bounds write in the end_macro function in tccpp.c.	CWE-787 Out-of-bounds Write	CVE-2019-9754	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212128	5.4	MEDIUM Network	otrs opensuse	otrs leap backports_sle	An issue was discovered in Open Ticket Request System (OTRS) 5.x before 5.0.34, 6.x before 6.0.16, and 7.x before 7.0.4. An attacker who is logged into OTRS as an agent or a customer user may upload …	CWE-79 Cross-site Scripting	CVE-2019-9752	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212129	4.8	MEDIUM Network	otrs	otrs	An issue was discovered in Open Ticket Request System (OTRS) 6.x before 6.0.17 and 7.x before 7.0.5. An attacker who is logged into OTRS as an admin user may manipulate the URL to cause execution of …	CWE-79 Cross-site Scripting	CVE-2019-9751	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212130	9.1	CRITICAL Network	iotivity	iotivity	In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of Service attacks using source IP address spoofing and UDP-based traffic amplification. The reflected traffic …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-9750	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm