Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252141 4.3 警告 eFront Learning - eFront Community++ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1048 2012-02-14 14:48 2012-02-12 Show GitHub Exploit DB Packet Storm
252142 7.5 危険 ソフォス - Cyberoam Central Console におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1047 2012-02-14 14:47 2012-02-12 Show GitHub Exploit DB Packet Storm
252143 4.3 警告 Symphony CMS - Symphony CMS における SQL インジェクションの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4341 2012-02-14 14:46 2012-02-12 Show GitHub Exploit DB Packet Storm
252144 3.5 注意 Symphony CMS - Symphony CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4340 2012-02-14 14:45 2012-02-12 Show GitHub Exploit DB Packet Storm
252145 4.3 警告 Deon George - phpLDAPadmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0834 2012-02-14 14:45 2012-02-11 Show GitHub Exploit DB Packet Storm
252146 7.5 危険 Mozilla Foundation - 複数の Mozilla 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0452 2012-02-14 14:42 2012-02-10 Show GitHub Exploit DB Packet Storm
252147 4.3 警告 IBM - IBM Cognos TM1 の TM1 Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1046 2012-02-14 14:18 2012-02-10 Show GitHub Exploit DB Packet Storm
252148 5 警告 Apache Software Foundation - Apache Portable Runtime ライブラリの apr_hash.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0840 2012-02-14 14:17 2012-02-10 Show GitHub Exploit DB Packet Storm
252149 5 警告 AdaCore - AdaCore Ada Web Services におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1035 2012-02-13 16:39 2012-01-27 Show GitHub Exploit DB Packet Storm
252150 6.5 警告 サイベース - Sybase M-Business Anywhere の Web 管理インターフェイスにおけるユーザーアカウントをリストアップされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5078 2012-02-13 16:15 2012-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221491 5.3 MEDIUM
Network 		netapp oncommand_workflow_automation OnCommand Workflow Automation versions prior to 5.0 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-5503 2024-11-21 13:45 2019-09-11 Show GitHub Exploit DB Packet Storm
221492 7.2 HIGH
Network 		gitlab gitlab An authentication issue was discovered in GitLab that allowed a bypass of email verification. This was addressed in GitLab 12.1.2 and 12.0.4. CWE-287
Improper Authentication 		CVE-2019-5473 2024-11-21 13:45 2019-09-10 Show GitHub Exploit DB Packet Storm
221493 5.3 MEDIUM
Network 		senecajs seneca Seneca < 3.9.0 contains a vulnerability that could lead to exposing environment variables to unauthorized users. CWE-209
Information Exposure Through an Error Message 		CVE-2019-5483 2024-11-21 13:45 2019-09-10 Show GitHub Exploit DB Packet Storm
221494 5.3 MEDIUM
Network 		statichttpserver_project statichttpserver A path traversal vulnerability in <= v0.9.7 of statichttpserver npm module allows attackers to list files in arbitrary folders. CWE-22
Path Traversal 		CVE-2019-5480 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
221495 7.5 HIGH
Network 		larvit larvitbase An unintended require vulnerability in <v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code (JavaScript file). CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2019-5479 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
221496 5.5 MEDIUM
Local 		xilinx zynq_ultrascale\+_mpsoc_firmware
zynq_ultrascale\+_rfsoc_firmware 		A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an adversary being able to modify the control fields of the boot image leading to an incorrect secure bo… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-5478 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
221497 8.8 HIGH
Network 		sonatype nexus_repository_manager The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability. CWE-78
OS Command  		CVE-2019-5475 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
221498 7.5 HIGH
Network 		onkyo tx-nr686_firmware Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. (dot dot) and %2f to the default URI. CWE-22
Path Traversal 		CVE-2019-6113 2024-11-21 13:45 2019-08-30 Show GitHub Exploit DB Packet Storm
221499 7.5 HIGH
Network 		freebsd
netapp 		freebsd
clustered_data_ontap 		In FreeBSD 12.0-STABLE before r351264, 12.0-RELEASE before 12.0-RELEASE-p10, 11.3-STABLE before r351265, 11.3-RELEASE before 11.3-RELEASE-p3, and 11.2-RELEASE before 11.2-RELEASE-p14, the kernel driv… CWE-362
Race Condition 		CVE-2019-5612 2024-11-21 13:45 2019-08-30 Show GitHub Exploit DB Packet Storm
221500 7.5 HIGH
Network 		freebsd
netapp 		freebsd
clustered_data_ontap 		In FreeBSD 12.0-STABLE before r350828, 12.0-RELEASE before 12.0-RELEASE-p10, 11.3-STABLE before r350829, 11.3-RELEASE before 11.3-RELEASE-p3, and 11.2-RELEASE before 11.2-RELEASE-p14, a missing check… CWE-20
 Improper Input Validation  		CVE-2019-5611 2024-11-21 13:45 2019-08-30 Show GitHub Exploit DB Packet Storm