Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251621	4.3	警告	LEPTON Project	-	LEPTON におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1000	2012-02-27 15:25	2012-02-24	Show	GitHub Exploit DB Packet Storm

251622	7.5	危険	LEPTON Project	-	LEPTON の modules/news/rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0999	2012-02-27 15:24	2012-02-24	Show	GitHub Exploit DB Packet Storm

251623	7.5	危険	LEPTON Project	-	LEPTON の account/preferences.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0998	2012-02-27 15:24	2012-02-24	Show	GitHub Exploit DB Packet Storm

251624	6.8	警告	11in1	-	11in1 の admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0997	2012-02-27 15:23	2012-02-24	Show	GitHub Exploit DB Packet Storm

251625	5	警告	11in1	-	11in1 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0996	2012-02-27 15:21	2012-02-24	Show	GitHub Exploit DB Packet Storm

251626	7.5	危険	CONTIMEX	-	CONTIMEX Impulsio CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1294	2012-02-27 15:20	2011-02-23	Show	GitHub Exploit DB Packet Storm

251627	4.3	警告	BoonEx	-	Boonex Dolphin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0873	2012-02-27 15:20	2011-02-23	Show	GitHub Exploit DB Packet Storm

251628	5	警告	John Koleszar	-	VP8 Codec SDK (libvpx) におけるサービス運用妨害 (アプリケーションクラッシュ)の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0823	2012-02-27 15:19	2012-02-23	Show	GitHub Exploit DB Packet Storm

251629	5	警告	SAP	-	SAP NetWeaver における MessagingSystem Performance Data についての重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1292	2012-02-27 13:49	2012-02-23	Show	GitHub Exploit DB Packet Storm

251630	5	警告	SAP	-	SAP NetWeaver における Adapter Monitor についての重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1291	2012-02-27 13:48	2012-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224381	5.5	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain in…	CWE-200 Information Exposure	CVE-2019-1143	2024-11-21 13:36	2019-08-15	Show	GitHub Exploit DB Packet Storm

224382	4.2	MEDIUM Network	microsoft	edge	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way…	CWE-787 Out-of-bounds Write	CVE-2019-1141	2024-11-21 13:36	2019-08-15	Show	GitHub Exploit DB Packet Storm

224383	8.8	HIGH Network	microsoft	edge	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way…	CWE-787 Out-of-bounds Write	CVE-2019-1140	2024-11-21 13:36	2019-08-15	Show	GitHub Exploit DB Packet Storm

224384	4.2	MEDIUM Network	microsoft	edge	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way…	CWE-787 Out-of-bounds Write	CVE-2019-1139	2024-11-21 13:36	2019-08-15	Show	GitHub Exploit DB Packet Storm

224385	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker…	CWE-787 Out-of-bounds Write	CVE-2019-1133	2024-11-21 13:36	2019-08-15	Show	GitHub Exploit DB Packet Storm

224386	4.2	MEDIUM Network	microsoft	edge	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way…	CWE-787 Out-of-bounds Write	CVE-2019-1131	2024-11-21 13:36	2019-08-15	Show	GitHub Exploit DB Packet Storm

224387	3.3	LOW Local	openssl	openssl	OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly referred to as OPENSSLD…	CWE-295 Improper Certificate Validation	CVE-2019-1552	2024-11-21 13:36	2019-07-31	Show	GitHub Exploit DB Packet Storm

224388	5.4	MEDIUM Network	microsoft	outlook	A spoofing vulnerability exists in the way Microsoft Outlook for Android software parses specifically crafted email messages, aka 'Outlook for Android Spoofing Vulnerability'.	CWE-79 Cross-site Scripting	CVE-2019-1105	2024-11-21 13:36	2019-07-29	Show	GitHub Exploit DB Packet Storm

224389	8.1	HIGH Network	paloaltonetworks	pan-os	Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauth…	CWE-134 Use of Externally-Controlled Format String	CVE-2019-1579	2024-11-21 13:36	2019-07-20	Show	GitHub Exploit DB Packet Storm

224390	4.1	MEDIUM Local	microsoft	powershell_core	A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Secur…	NVD-CWE-noinfo	CVE-2019-1167	2024-11-21 13:36	2019-07-20	Show	GitHub Exploit DB Packet Storm