Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251641	2.6	注意	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0318	2012-02-23 12:03	2012-02-23	Show	GitHub Exploit DB Packet Storm

251642	4	警告	シックス・アパート株式会社	-	Movable Type におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0317	2012-02-23 12:03	2012-02-23	Show	GitHub Exploit DB Packet Storm

251643	6	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1235	2012-02-23 11:47	2012-02-21	Show	GitHub Exploit DB Packet Storm

251644	6.5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1234	2012-02-23 11:46	2012-02-21	Show	GitHub Exploit DB Packet Storm

251645	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0244	2012-02-23 11:41	2012-02-21	Show	GitHub Exploit DB Packet Storm

251646	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0243	2012-02-23 11:40	2012-02-21	Show	GitHub Exploit DB Packet Storm

251647	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2012-0242	2012-02-23 11:37	2012-02-21	Show	GitHub Exploit DB Packet Storm

251648	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0241	2012-02-23 11:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

251649	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の GbScriptAddUp.asp における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2012-0240	2012-02-23 11:33	2012-02-21	Show	GitHub Exploit DB Packet Storm

251650	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の uaddUpAdmin.asp における管理者パスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2012-0239	2012-02-23 11:32	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224261	7.0	HIGH Local	redhat	openshift	An insecure modification vulnerability in the /etc/passwd file was found in the container openshift/jenkins. An attacker with access to the container could use this flaw to modify /etc/passwd and esc…	-	CVE-2019-19351	2024-11-21 13:34	2020-03-19	Show	GitHub Exploit DB Packet Storm

224262	4.4	MEDIUM Local	redhat	openshift	During installation of an OpenShift 4 cluster, the `openshift-install` command line tool creates an `auth` directory, with `kubeconfig` and `kubeadmin-password` files. Both files contain credentials …	-	CVE-2019-19335	2024-11-21 13:34	2020-03-19	Show	GitHub Exploit DB Packet Storm

224263	7.2	HIGH Network	sangoma	freepbx	In Sangoma FreePBX 13 through 15 and sysadmin (aka System Admin) 13.0.92 through 15.0.13.6 modules have a Remote Command Execution vulnerability that results in Privilege Escalation.	NVD-CWE-noinfo	CVE-2019-19538	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224264	5.4	MEDIUM Network	teampasswordmanager	team_password_manager	Post-authentication Stored XSS in Team Password Manager through 7.93.204 allows attackers to steal other users' credentials by creating a shared password with HTML code as the title.	CWE-79 Cross-site Scripting	CVE-2019-19461	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224265	9.8	CRITICAL Network	dolibarr	dolibarr	Dolibarr ERP/CRM 3.0 through 10.0.3 allows XSS via the qty parameter to product/fournisseurs.php (product price screen).	CWE-79 Cross-site Scripting	CVE-2019-19212	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224266	7.4	HIGH Network	opcfoundation	ua-.netstandard netstandard.opc.ua	In OPC Foundation OPC UA .NET Standard codebase 1.4.357.28, servers do not create sufficiently random numbers in OPCFoundation.NetStandard.Opc.Ua before 1.4.359.31, which allows man in the middle att…	CWE-330 Use of Insufficiently Random Values	CVE-2019-19135	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224267	6.1	MEDIUM Network	dolibarr	dolibarr	Dolibarr ERP/CRM before 10.0.3 has an Insufficient Filtering issue that can lead to user/card.php XSS.	CWE-79 Cross-site Scripting	CVE-2019-19211	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224268	5.4	MEDIUM Network	dolibarr	dolibarr	Dolibarr ERP/CRM before 10.0.3 allows XSS because uploaded HTML documents are served as text/html despite being renamed to .noexe files.	CWE-79 Cross-site Scripting	CVE-2019-19210	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224269	7.5	HIGH Network	dolibarr	dolibarr	Dolibarr ERP/CRM before 10.0.3 allows SQL Injection.	CWE-89 SQL Injection	CVE-2019-19209	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm

224270	9.8	CRITICAL Network	codiad	codiad	Codiad Web IDE through 2.8.4 allows PHP Code injection.	CWE-94 Code Injection	CVE-2019-19208	2024-11-21 13:34	2020-03-17	Show	GitHub Exploit DB Packet Storm