Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215941 7.5 危険 (複数のベンダ) - 複数の NAT-PMP デバイスが WAN 側から操作可能な問題 - - 2014-10-27 14:46 2014-10-23 Show GitHub Exploit DB Packet Storm
215942 4.3 警告 The Jamroom Network - Jamroom の Search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5098 2014-10-27 14:43 2014-07-23 Show GitHub Exploit DB Packet Storm
215943 5 警告 Status2K.com - Status2k における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-5094 2014-10-27 14:42 2014-06-20 Show GitHub Exploit DB Packet Storm
215944 7.5 危険 Innovative Interfaces Inc. - Innovative vtls-Virtua の web_reports/cgi-bin/InfoStation.cgi のログインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2081 2014-10-27 14:42 2014-08-22 Show GitHub Exploit DB Packet Storm
215945 4.3 警告 Achievo - Achievo の include.php における クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5866 2014-10-27 14:41 2012-12-5 Show GitHub Exploit DB Packet Storm
215946 6.5 警告 Achievo - Achievo の dispatch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5865 2014-10-27 14:41 2012-12-5 Show GitHub Exploit DB Packet Storm
215947 6.8 警告 dotProject - dotProject における SQL インジェクションの脆弱性 CWE-352
CWE-89
CVE-2012-5701 2014-10-27 14:40 2012-11-15 Show GitHub Exploit DB Packet Storm
215948 5 警告 OSClass - OSClass におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-6308 2014-10-27 14:40 2014-09-15 Show GitHub Exploit DB Packet Storm
215949 4.3 警告 OSClass - OSClass におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6280 2014-10-27 14:39 2014-09-15 Show GitHub Exploit DB Packet Storm
215950 7.5 危険 Banana Dance - Banana Dance におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5244 2014-10-27 14:39 2012-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293641 - mantisbt mantisbt MantisBT before 1.2.12 does not use an expected default value during decisions about whether a user may modify the status of a bug, which allows remote authenticated users to bypass intended access r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5522 2024-11-21 10:44 2012-11-16 Show GitHub Exploit DB Packet Storm
293642 - vmware player
workstation 		Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "s… NVD-CWE-Other
CVE-2012-5459 2024-11-21 10:44 2012-11-14 Show GitHub Exploit DB Packet Storm
293643 - vmware player
workstation 		VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a cra… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5458 2024-11-21 10:44 2012-11-14 Show GitHub Exploit DB Packet Storm
293644 - adobe flash_player
flash_player_for_android
adobe_air
adobe_air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5287 2024-11-21 10:44 2012-11-13 Show GitHub Exploit DB Packet Storm
293645 - adobe flash_player
flash_player_for_android
adobe_air
adobe_air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5286 2024-11-21 10:44 2012-11-13 Show GitHub Exploit DB Packet Storm
293646 - adobe flash_player
air
air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5285 2024-11-21 10:44 2012-11-13 Show GitHub Exploit DB Packet Storm
293647 - openstack image_registry_and_delivery_service_\(glance\)
essex
folsom 		The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request. NOTE: this vulne… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5482 2024-11-21 10:44 2012-11-11 Show GitHub Exploit DB Packet Storm
293648 - be-graph bezip Directory traversal vulnerability in Be Graph BeZIP before 3.10 allows remote attackers to create or overwrite arbitrary files via a crafted archive file. CWE-22
Path Traversal 		CVE-2012-5171 2024-11-21 10:44 2012-11-8 Show GitHub Exploit DB Packet Storm
293649 - cisco secure_access_control_server Cisco Secure Access Control System (ACS) 5.x before 5.2 Patch 11 and 5.3 before 5.3 Patch 7, when a certain configuration involving TACACS+ and LDAP is used, does not properly validate passwords, whi… CWE-20
 Improper Input Validation  		CVE-2012-5424 2024-11-21 10:44 2012-11-8 Show GitHub Exploit DB Packet Storm
293650 - google chrome
v8 		Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, does not properly perform write operations, which allows remote attackers to cause a denial of service or possibly have unspec… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5128 2024-11-21 10:44 2012-11-7 Show GitHub Exploit DB Packet Storm