Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254061	2.6	注意	HTC Corporation	-	HTC 製 Android 端末に Wi-Fi 認証情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2011-4872	2012-02-7 16:21	2012-02-2	Show	GitHub Exploit DB Packet Storm

254062	7.5	危険	Scriptsez.net	-	Scriptsez.net の Ez Album における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0983	2012-02-7 16:19	2012-02-2	Show	GitHub Exploit DB Packet Storm

254063	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Agent Zone の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0982	2012-02-7 16:18	2012-02-2	Show	GitHub Exploit DB Packet Storm

254064	5	警告	KYBERNETIKA	-	phpShowtime における任意のディレクトリおよびイメージファイルをリストアップされる脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0981	2012-02-7 16:17	2012-02-2	Show	GitHub Exploit DB Packet Storm

254065	7.5	危険	phux Development	-	phux Download Manager の download.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0980	2012-02-7 16:16	2012-02-2	Show	GitHub Exploit DB Packet Storm

254066	4.3	警告	TWiki	-	TWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0979	2012-02-7 16:14	2012-02-2	Show	GitHub Exploit DB Packet Storm

254067	6.8	警告	LuraTech	-	LuraWave JP2 Browser Plug-In におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0978	2012-02-7 16:13	2012-02-2	Show	GitHub Exploit DB Packet Storm

254068	9.3	危険	LuraTech	-	LuraWave JP2 ActiveX Control におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0977	2012-02-7 16:12	2012-02-2	Show	GitHub Exploit DB Packet Storm

254069	2.1	注意	SilverStripe	-	SilverStripe の admin/EditForm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0976	2012-02-7 16:10	2012-02-2	Show	GitHub Exploit DB Packet Storm

254070	4.3	警告	Clixint Technologies	-	Image Hosting Script DPI の misc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0975	2012-02-7 16:00	2012-02-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194751	4.9	MEDIUM Network	asus	z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware	The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privilege…	CWE-120 Classic Buffer Overflow	CVE-2021-28177	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194752	4.9	MEDIUM Network	asus	z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware	The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged…	CWE-120 Classic Buffer Overflow	CVE-2021-28176	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194753	4.9	MEDIUM Network	asus	z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware	The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privile…	CWE-120 Classic Buffer Overflow	CVE-2021-28175	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194754	4.9	MEDIUM Network	asus	asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmwa…	The specific function in ASUS BMC’s firmware Web management page (Remote video storage function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As o…	CWE-120 Classic Buffer Overflow	CVE-2021-28192	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194755	4.9	MEDIUM Network	asus	asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmwa…	The Firmware update function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged p…	CWE-120 Classic Buffer Overflow	CVE-2021-28191	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194756	4.9	MEDIUM Network	asus	asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmwa…	The specific function in ASUS BMC’s firmware Web management page (Generate new certificate function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. …	CWE-120 Classic Buffer Overflow	CVE-2021-28190	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194757	5.9	MEDIUM Network	cohesity	cohesity_dataplatform	A man-in-the-middle vulnerability in Cohesity DataPlatform support channel in version 6.3 up to 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. Missing server authentication in impacted versions c…	CWE-306 Missing Authentication for Critical Function	CVE-2021-28124	2024-11-21 14:59	2021-04-3	Show	GitHub Exploit DB Packet Storm

194758	9.8	CRITICAL Network	cohesity	cohesity_dataplatform	Undocumented Default Cryptographic Key Vulnerability in Cohesity DataPlatform version 6.3 prior 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. The ssh key can provide an attacker access to the li…	CWE-1188 Insecure Default Initialization of Resource	CVE-2021-28123	2024-11-21 14:59	2021-04-3	Show	GitHub Exploit DB Packet Storm

194759	6.7	MEDIUM Network	okta	access_gateway	A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers (with admin access to the Okta Access Gateway UI) to execute O…	CWE-78 OS Command	CVE-2021-28113	2024-11-21 14:59	2021-04-3	Show	GitHub Exploit DB Packet Storm

194760	5.4	MEDIUM Network	devolutions	remote_desktop_manager	Cross-Site Scripting (XSS) in Administrative Reports in Devolutions Remote Desktop Manager before 2021.1 allows remote authenticated users to inject arbitrary web script or HTML via multiple input fi…	CWE-79 Cross-site Scripting	CVE-2021-28047	2024-11-21 14:59	2021-04-2	Show	GitHub Exploit DB Packet Storm