Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252411 5 警告 The PHP Group - PHP の PDORow 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0788 2012-02-15 16:02 2012-01-10 Show GitHub Exploit DB Packet Storm
252412 7.5 危険 Zoho Corporation - ManageEngine Applications Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1063 2012-02-15 15:55 2012-02-14 Show GitHub Exploit DB Packet Storm
252413 4.3 警告 Zoho Corporation - ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1062 2012-02-15 15:55 2012-02-14 Show GitHub Exploit DB Packet Storm
252414 7.5 危険 GForge Group - GForge Advanced Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1061 2012-02-15 15:54 2012-02-14 Show GitHub Exploit DB Packet Storm
252415 2.1 注意 Rik de Boer - Drupal 用 Revisioning モジュールの revisioning_theme.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1060 2012-02-15 15:51 2012-02-14 Show GitHub Exploit DB Packet Storm
252416 4.3 警告 osCommerce - OSCommerce Online Merchant の shirt モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1059 2012-02-15 15:51 2012-02-14 Show GitHub Exploit DB Packet Storm
252417 6 警告 Flyspray - Flyspray におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1058 2012-02-15 15:50 2012-02-14 Show GitHub Exploit DB Packet Storm
252418 6 警告 Sean Robertson - Drupal 用 Forward モジュールのクリックスルートラッキング機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1057 2012-02-15 15:49 2012-02-14 Show GitHub Exploit DB Packet Storm
252419 5 警告 Sean Robertson - Drupal 用 Forward モジュールにおけるノードタイトルを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1056 2012-02-15 15:48 2012-02-14 Show GitHub Exploit DB Packet Storm
252420 6.8 警告 Computerinsel GmbH - PhotoLine におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1055 2012-02-15 15:47 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221201 6.1 MEDIUM
Network 		cross_reference_project cross_reference An issue was discovered in the Cross Reference Add-on 36 for Google Docs. Stored XSS in the preview boxes in the configuration panel may allow a malicious user to use both label text and references t… CWE-79
Cross-site Scripting 		CVE-2019-7250 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221202 9.8 CRITICAL
Network 		keybase keybase In Keybase before 2.12.6 on macOS, the move RPC to the Helper was susceptible to time-to-check-time-to-use bugs and would also allow one user of the system (who didn't have root access) to tamper wit… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2019-7249 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221203 7.8 HIGH
Local 		encodable filechucker An issue was discovered in FileChucker 4.99e-free-e02. filechucker.cgi has a filter bypass that allows a malicious user to upload any type of file by using % characters within the extension, e.g., fi… NVD-CWE-noinfo
CVE-2019-7216 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221204 7.5 HIGH
Network 		idreamsoft icms An issue was discovered in idreamsoft iCMS 7.0.13 on Windows. editor/editor.admincp.php allows admincp.php?app=files&do=browse ..\ Directory Traversal. CWE-22
Path Traversal 		CVE-2019-7237 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221205 7.5 HIGH
Network 		idreamsoft icms An issue was discovered in idreamsoft iCMS 7.0.13. editor/editor.admincp.php allows admincp.php?app=editor&do=fileManager dir=../ Directory Traversal. CWE-22
Path Traversal 		CVE-2019-7236 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221206 7.5 HIGH
Network 		idreamsoft icms An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows directory traversal via _app=/../ to designate an arbitrary directory because of an apps.admincp.php error. This… CWE-22
Path Traversal 		CVE-2019-7235 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221207 9.1 CRITICAL
Network 		idreamsoft icms An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows directory traversal via _app=/../ to begin the process of creating a ZIP archive file with the complete contents… CWE-22
Path Traversal 		CVE-2019-7234 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221208 8.8 HIGH
Network 		libdoc_project libdoc In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer dereference. CWE-476
 NULL Pointer Dereference 		CVE-2019-7233 2024-11-21 13:47 2019-01-31 Show GitHub Exploit DB Packet Storm
221209 4.8 MEDIUM
Network 		croogo croogo A stored-self XSS exists in Croogo through v3.0.5, allowing an attacker to execute HTML or JavaScript code in a vulnerable Title field to /admin/file-manager/attachments/edit/4. CWE-79
Cross-site Scripting 		CVE-2019-7173 2024-11-21 13:47 2019-01-30 Show GitHub Exploit DB Packet Storm
221210 6.1 MEDIUM
Network 		atutor atutor A stored-self XSS exists in ATutor through v2.2.4, allowing an attacker to execute HTML or JavaScript code in a vulnerable Real Name field to /mods/_core/users/admins/my_edit.php. CWE-79
Cross-site Scripting 		CVE-2019-7172 2024-11-21 13:47 2019-01-30 Show GitHub Exploit DB Packet Storm