Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251481	4.3	警告	Electric Sheep Fencing	-	pfSense におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5047	2012-01-6 15:22	2012-01-3	Show	GitHub Exploit DB Packet Storm

251482	7.5	危険	Electric Sheep Fencing	-	pfSense における証明書を作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4197	2012-01-6 15:21	2011-12-20	Show	GitHub Exploit DB Packet Storm

251483	4.3	警告	Splunk	-	Splunk の Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4778	2012-01-5 16:29	2011-12-12	Show	GitHub Exploit DB Packet Storm

251484	9.3	危険	Splunk	-	Splunk における任意のファイルを読まれる脆弱性	CWE-287 不適切な認証	CVE-2011-4644	2012-01-5 16:28	2012-01-3	Show	GitHub Exploit DB Packet Storm

251485	4	警告	Splunk	-	Splunk におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4643	2012-01-5 16:27	2011-12-12	Show	GitHub Exploit DB Packet Storm

251486	4.6	警告	Splunk	-	Splunk の Splunk Web 内にある mappy.py における任意のコードを実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4642	2012-01-5 16:27	2011-12-12	Show	GitHub Exploit DB Packet Storm

251487	6.8	警告	Mozilla Foundation	-	Bugzilla の attachment.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-3669	2012-01-5 16:26	2011-11-20	Show	GitHub Exploit DB Packet Storm

251488	6.8	警告	Mozilla Foundation	-	Bugzilla の post_bug.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-3668	2012-01-5 16:26	2011-11-20	Show	GitHub Exploit DB Packet Storm

251489	6.8	警告	Mozilla Foundation	-	Bugzilla の User.offer_account_by_email の WebService メソッドにおける脆弱性	CWE-287 不適切な認証	CVE-2011-3667	2012-01-5 16:23	2011-12-17	Show	GitHub Exploit DB Packet Storm

251490	4.3	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3657	2012-01-5 16:21	2011-10-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223161	7.5	HIGH Network	hitachienergy	esoms	ABB eSOMS versions 4.0 to 6.0.3 accept connections using medium strength ciphers. If a connection is enabled using such a cipher, an attacker might be able to eavesdrop and/or intercept the connectio…	CWE-326 Inadequate Encryption Strength	CVE-2019-19097	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223162	6.1	MEDIUM Local	hitachienergy	esoms	The Redis data structure component used in ABB eSOMS versions 6.0 to 6.0.2 stores credentials in clear text. If an attacker has file system access, this can potentially compromise the credentials' co…	CWE-522 Insufficiently Protected Credentials	CVE-2019-19096	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223163	5.4	MEDIUM Network	hitachienergy	esoms	Lack of adequate input/output validation for ABB eSOMS versions 4.0 to 6.0.2 might allow an attacker to attack such as stored cross-site scripting by storing malicious content in the database.	CWE-79 Cross-site Scripting	CVE-2019-19095	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223164	7.6	HIGH Network	hitachienergy	esoms	Lack of input checks for SQL queries in ABB eSOMS versions 3.9 to 6.0.3 might allow an attacker SQL injection attacks against the backend database.	CWE-89 SQL Injection	CVE-2019-19094	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223165	6.5	MEDIUM Network	hitachienergy	esoms	eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords.	CWE-521 Weak Password Requirements	CVE-2019-19093	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223166	3.5	LOW Network	hitachienergy	esoms	ABB eSOMS versions 4.0 to 6.0.3 use ASP.NET Viewstate without Message Authentication Code (MAC). Alterations to Viewstate might thus not be noticed.	CWE-306 Missing Authentication for Critical Function	CVE-2019-19092	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223167	4.3	MEDIUM Network	hitachienergy	esoms	For ABB eSOMS versions 4.0 to 6.0.3, HTTPS responses contain comments with sensitive information about the application. An attacker might use this detail information to specifically craft the attack.	CWE-200 Information Exposure	CVE-2019-19091	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223168	3.5	LOW Network	hitachienergy	esoms	For ABB eSOMS versions 4.0 to 6.0.2, the Secure Flag is not set in the HTTP response header. Unencrypted connections might access the cookie information, thus making it susceptible to eavesdropping.	CWE-311 Missing Encryption of Sensitive Data	CVE-2019-19090	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223169	6.1	MEDIUM Network	hitachienergy	esoms	For ABB eSOMS versions 4.0 to 6.0.3, the X-Content-Type-Options Header is missing in the HTTP response, potentially causing the response body to be interpreted and displayed as different content type…	CWE-94 CWE-436 Code Injection Interpretation Conflict	CVE-2019-19089	2024-11-21 13:34	2020-04-3	Show	GitHub Exploit DB Packet Storm

223170	8.1	HIGH Network	tribalgroup	sits\	An authentication bypass vulnerability is present in the standalone SITS:Vision 9.7.0 component of Tribal SITS in its default configuration, related to unencrypted communications sent by the client e…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-19127	2024-11-21 13:34	2020-03-26	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed