Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215941	7.5	危険	（複数のベンダ）	-	複数の NAT-PMP デバイスが WAN 側から操作可能な問題	-	-	2014-10-27 14:46	2014-10-23	Show	GitHub Exploit DB Packet Storm

215942	4.3	警告	The Jamroom Network	-	Jamroom の Search モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5098	2014-10-27 14:43	2014-07-23	Show	GitHub Exploit DB Packet Storm

215943	5	警告	Status2K.com	-	Status2k における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-5094	2014-10-27 14:42	2014-06-20	Show	GitHub Exploit DB Packet Storm

215944	7.5	危険	Innovative Interfaces Inc.	-	Innovative vtls-Virtua の web_reports/cgi-bin/InfoStation.cgi のログインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2081	2014-10-27 14:42	2014-08-22	Show	GitHub Exploit DB Packet Storm

215945	4.3	警告	Achievo	-	Achievo の include.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5866	2014-10-27 14:41	2012-12-5	Show	GitHub Exploit DB Packet Storm

215946	6.5	警告	Achievo	-	Achievo の dispatch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-5865	2014-10-27 14:41	2012-12-5	Show	GitHub Exploit DB Packet Storm

215947	6.8	警告	dotProject	-	dotProject における SQL インジェクションの脆弱性	CWE-352 CWE-89	CVE-2012-5701	2014-10-27 14:40	2012-11-15	Show	GitHub Exploit DB Packet Storm

215948	5	警告	OSClass	-	OSClass におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-6308	2014-10-27 14:40	2014-09-15	Show	GitHub Exploit DB Packet Storm

215949	4.3	警告	OSClass	-	OSClass におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6280	2014-10-27 14:39	2014-09-15	Show	GitHub Exploit DB Packet Storm

215950	7.5	危険	Banana Dance	-	Banana Dance におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-5244	2014-10-27 14:39	2012-12-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293491	-	redhat	cloudforms	The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when using Active Directory for authentication, allows remote attackers to bypass authentication via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5604	2024-11-21 10:44	2013-03-1	Show	GitHub Exploit DB Packet Storm

293492	-	katello	katello	script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.	CWE-200 Information Exposure	CVE-2012-5561	2024-11-21 10:44	2013-03-1	Show	GitHub Exploit DB Packet Storm

293493	-	jforum	jforum	Multiple cross-site scripting (XSS) vulnerabilities in jforum.page in JForum 2.1.9 allow remote attackers to inject arbitrary web script or HTML via the (1) action, (2) match_type, (3) sort_by, or (4…	CWE-79 Cross-site Scripting	CVE-2012-5337	2024-11-21 10:44	2013-02-25	Show	GitHub Exploit DB Packet Storm

293494	-	qt digia canonical	qt ubuntu_linux	The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensi…	CWE-200 Information Exposure	CVE-2012-5624	2024-11-21 10:44	2013-02-25	Show	GitHub Exploit DB Packet Storm

293495	-	redhat fedora_project	enterprise_linux fedora_release_rawhide	A certain Red Hat build of the pam_ssh_agent_auth module on Red Hat Enterprise Linux (RHEL) 6 and Fedora Rawhide calls the glibc error function instead of the error function in the OpenSSH codebase, …	CWE-20 Improper Input Validation	CVE-2012-5536	2024-11-21 10:44	2013-02-22	Show	GitHub Exploit DB Packet Storm

293496	-	linux	linux_kernel	The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (prevention of file creation) by leveraging the ability to write to a…	CWE-310 Cryptographic Issues	CVE-2012-5375	2024-11-21 10:44	2013-02-18	Show	GitHub Exploit DB Packet Storm

293497	-	linux	linux_kernel	The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (extended runtime of kernel code) by creating many different files wh…	CWE-310 Cryptographic Issues	CVE-2012-5374	2024-11-21 10:44	2013-02-18	Show	GitHub Exploit DB Packet Storm

293498	-	hp	arcsight_connector_appliance_firmware arcsight_connector_appliance arcsight_logger	Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to execute arbitrary code via unknown vectors.	NVD-CWE-noinfo	CVE-2012-5199	2024-11-21 10:44	2013-02-17	Show	GitHub Exploit DB Packet Storm

293499	-	hp	arcsight_connector_appliance_firmware arcsight_connector_appliance arcsight_logger	Unspecified vulnerability in HP ArcSight Connector Appliance before 6.3 and ArcSight Logger 5.2 and earlier allows remote attackers to obtain sensitive information via unknown vectors.	NVD-CWE-noinfo	CVE-2012-5198	2024-11-21 10:44	2013-02-17	Show	GitHub Exploit DB Packet Storm

293500	-	google	android_debug_bridge	android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log.	CWE-59 Link Following	CVE-2012-5564	2024-11-21 10:44	2013-02-15	Show	GitHub Exploit DB Packet Storm