Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209231 5 警告 The PHP Group
アップル		 - PHP の ext/standard/basic_functions.c の move_uploaded_file の実装における拡張子の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-2348 2015-10-6 10:36 2015-03-18 Show GitHub Exploit DB Packet Storm
209232 7.5 危険 The PHP Group
アップル		 - PHP の ext/standard/var_unserializer.re の process_nested_data 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-2787 2015-10-6 10:36 2015-02-3 Show GitHub Exploit DB Packet Storm
209233 6.8 警告 The PHP Group
アップル		 - PHP の ext/exif/exif.c 内の exif_process_unicode 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-0232 2015-10-6 10:36 2015-01-22 Show GitHub Exploit DB Packet Storm
209234 7.5 危険 The PHP Group
アップル		 - PHP の ext/standard/var_unserializer.re の process_nested_data 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-0231 2015-10-6 10:36 2015-01-22 Show GitHub Exploit DB Packet Storm
209235 6.9 警告 アップル
FreeBSD		 - FreeBSD および Apple iOS のカーネルの libc の stdio 内の fflush.c の __sflush 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-8611 2015-10-6 10:34 2014-12-10 Show GitHub Exploit DB Packet Storm
209236 5 警告 The PHP Group
アップル
file project		 - PHP の Fileinfo コンポーネントで使用される file の softmagic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9652 2015-10-6 10:34 2014-11-10 Show GitHub Exploit DB Packet Storm
209237 7.5 危険 The PHP Group
アップル		 - PHP の ext/enchant/enchant.c の enchant_broker_request_dict 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9705 2015-10-6 10:34 2014-12-5 Show GitHub Exploit DB Packet Storm
209238 5 警告 The PHP Group
LibGD project
アップル		 - PHP で使用される LibGD の gd_gif_in.c 内の GetCode_ 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9709 2015-10-6 10:34 2014-12-13 Show GitHub Exploit DB Packet Storm
209239 7.5 危険 The PHP Group
アップル		 - PHP の CGI コンポーネントの sapi/cgi/cgi_main.c における php-cgi プロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-9427 2015-10-6 10:33 2014-12-30 Show GitHub Exploit DB Packet Storm
209240 7.5 危険 The PHP Group
アップル		 - PHP の Zend Engine の zend_ts_hash.c の zend_ts_hash_graceful_destroy 関数におけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2014-9425 2015-10-6 10:33 2014-12-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297721 - novell file_reporter Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a .. (dot dot) in a FILE element of… CWE-22
Path Traversal 		CVE-2012-4959 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
297722 - novell file_reporter Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to read arbitrary files via a 126 /FSF/CMD request with a .. (dot dot) in a FILE element of an … CWE-22
Path Traversal 		CVE-2012-4958 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
297723 - novell file_reporter Absolute path traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to read arbitrary files via a /FSF/CMD request with a full pathname in a PATH element of an… CWE-22
Path Traversal 		CVE-2012-4957 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
297724 - novell file_reporter Heap-based buffer overflow in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to execute arbitrary code via a large number of VOL elements in an SRS record. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4956 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
297725 - pgbouncer_project pgbouncer The add_database function in objects.c in the pgbouncer pooler 1.5.2 for PostgreSQL allows remote attackers to cause a denial of service (daemon outage) via a long database name in a request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4575 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
297726 - emc rsa_data_protection_manager_appliance EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 does not properly restrict the number of authentication attempts by a user account, which makes it easier for local users to bypas… CWE-287
Improper Authentication 		CVE-2012-4613 2024-11-21 10:43 2012-11-16 Show GitHub Exploit DB Packet Storm
297727 - emc rsa_data_protection_manager_appliance
rsa_data_protection_manager_software_server 		Cross-site scripting (XSS) vulnerability in EMC RSA Data Protection Manager Appliance and Software Server 2.7.x and 3.x before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via… CWE-79
Cross-site Scripting 		CVE-2012-4612 2024-11-21 10:43 2012-11-16 Show GitHub Exploit DB Packet Storm
297728 - dell openmanage_server_administrator Cross-site scripting (XSS) vulnerability in Dell OpenManage Server Administrator (OMSA) before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting 		CVE-2012-4955 2024-11-21 10:43 2012-11-15 Show GitHub Exploit DB Packet Storm
297729 - vanillaforums vanilla_forums
vanilla 		The edit-profile page in Vanilla Forums before 2.1a32 allows remote authenticated users to modify arbitrary profile settings by replacing the UserID value during a man-in-the-middle attack, related t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4954 2024-11-21 10:43 2012-11-15 Show GitHub Exploit DB Packet Storm
297730 - verifone vericentre_web_console Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in VeriFone VeriCentre Web Console before 2.2 build 36 allow remote attackers to execute arbitrary SQL commands via the (1) TerminalI… CWE-89
SQL Injection 		CVE-2012-4951 2024-11-21 10:43 2012-11-15 Show GitHub Exploit DB Packet Storm