Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252561 4.3 警告 Juergen Furrer - TYPO3 用 Additional TCA Forms エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5080 2012-02-17 14:27 2012-02-14 Show GitHub Exploit DB Packet Storm
252562 5 警告 NetSarang - NetSarang の Xlpd および Xmanager Enterprise におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-1009 2012-02-17 11:54 2012-02-14 Show GitHub Exploit DB Packet Storm
252563 4.3 警告 Instant Php - lknSupport の module/kb/search_word におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1069 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
252564 4.3 警告 mg12 - WordPress 用 WP-RecentComments プラグインの rc_ajax 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1068 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
252565 7.5 危険 mg12 - WordPress 用 WP-RecentComments プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1067 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
252566 4.3 警告 SmartyCMS - SmartyCMS の template モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1066 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
252567 4.3 警告 2X Software - 2X ApplicationServer の TuxScripting.dll における任意のファイルを作成される脆弱性 CWE-Other
その他 		CVE-2012-1065 2012-02-17 11:00 2012-02-14 Show GitHub Exploit DB Packet Storm
252568 9.3 危険 マイクロソフト
AB Team		 - Microsoft Windows XP で利用される Indeo コーデックにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3138 2012-02-16 16:14 2010-08-27 Show GitHub Exploit DB Packet Storm
252569 4.4 警告 マイクロソフト - Microsoft Windows Server 2008 の colorcpl.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-5082 2012-02-16 16:04 2012-01-17 Show GitHub Exploit DB Packet Storm
252570 9.3 危険 アップル
マイクロソフト		 - Microsoft Windows 7 Professional 64-bit におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5046 2012-02-16 11:40 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221091 5.4 MEDIUM
Network 		magento magento A reflected cross-site scripting (XSS) vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can inject arbitrary JavaScript code via emai… CWE-79
Cross-site Scripting 		CVE-2019-8092 2024-11-21 13:49 2019-11-6 Show GitHub Exploit DB Packet Storm
221092 7.2 HIGH
Network 		magento magento A remote code execution vulnerability exists in Magento 1 prior to 1.9.4.3 and 1.14.4.3. An authenticated admin user with privileges to access product attributes can leverage layout updates to trigge… NVD-CWE-noinfo
CVE-2019-8091 2024-11-21 13:49 2019-11-6 Show GitHub Exploit DB Packet Storm
221093 6.5 MEDIUM
Network 		magento magento An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users can manipulate the design layout update… NVD-CWE-noinfo
CVE-2019-8090 2024-11-21 13:49 2019-11-6 Show GitHub Exploit DB Packet Storm
221094 6.5 MEDIUM
Network 		magento magento An insecure direct object reference (IDOR) vulnerability exists in Magento 2.3 prior to 2.3.1, 2.2 prior to 2.2.8, and 2.1 prior to 2.1.17 versions. An authenticated user may be able to view personal… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-8235 2024-11-21 13:49 2019-10-30 Show GitHub Exploit DB Packet Storm
221095 9.8 CRITICAL
Network 		tightvnc tightvnc TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. This attack appear to be exploitable via network connectivi… CWE-120
Classic Buffer Overflow 		CVE-2019-8287 2024-11-21 13:49 2019-10-30 Show GitHub Exploit DB Packet Storm
221096 6.5 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-352
 Origin Validation Error 		CVE-2019-8234 2024-11-21 13:49 2019-10-26 Show GitHub Exploit DB Packet Storm
221097 9.8 CRITICAL
Network 		adobe experience_manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-77
Command Injection 		CVE-2019-8088 2024-11-21 13:49 2019-10-26 Show GitHub Exploit DB Packet Storm
221098 7.5 HIGH
Network 		adobe experience_manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-611
XXE 		CVE-2019-8087 2024-11-21 13:49 2019-10-26 Show GitHub Exploit DB Packet Storm
221099 7.5 HIGH
Network 		adobe experience_manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-611
XXE 		CVE-2019-8086 2024-11-21 13:49 2019-10-26 Show GitHub Exploit DB Packet Storm
221100 6.1 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a reflected cross site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-79
Cross-site Scripting 		CVE-2019-8085 2024-11-21 13:49 2019-10-26 Show GitHub Exploit DB Packet Storm