Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215971 9 危険 VMware - VMware vCloud Automation Center の VMware Remote Console 機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8373 2014-12-15 18:22 2014-12-9 Show GitHub Exploit DB Packet Storm
215972 4 警告 VMware - AirWatch by VMware On-Premise における任意のテナントから組織の情報および統計データを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8372 2014-12-15 18:21 2014-12-10 Show GitHub Exploit DB Packet Storm
215973 4.3 警告 レッドハット - Red Hat JBoss Portal で使用される JBoss RichFaces におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7852 2014-12-15 18:21 2014-12-9 Show GitHub Exploit DB Packet Storm
215974 2.1 注意 ヒューレット・パッカード - Windows および Linux 上で稼働する HP Smart Update Manager における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2608 2014-12-15 18:20 2014-12-9 Show GitHub Exploit DB Packet Storm
215975 4 警告 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるグリッドデータのアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-6138 2014-12-15 18:19 2014-12-8 Show GitHub Exploit DB Packet Storm
215976 3.5 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6163 2014-12-15 18:18 2014-12-8 Show GitHub Exploit DB Packet Storm
215977 2.1 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-6143 2014-12-15 18:17 2014-12-8 Show GitHub Exploit DB Packet Storm
215978 6 警告 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3058 2014-12-15 18:17 2014-12-8 Show GitHub Exploit DB Packet Storm
215979 10 危険 Node.js Foundation
IBM		 - IBM Rational Application Developer などの製品で使用される Node.js 用 syntax-error パッケージの index.js における Eval インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2014-7192 2014-12-15 18:16 2014-07-15 Show GitHub Exploit DB Packet Storm
215980 5 警告 IBM - 複数の IBM 製品の Rule Execution Server の Hosted Transparent Decision Service における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2014-6114 2014-12-15 18:16 2014-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295491 - portable_sdk_for_upnp_project portable_sdk_for_upnp Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5962 2024-11-21 10:45 2013-02-1 Show GitHub Exploit DB Packet Storm
295492 - libupnp_project libupnp Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5961 2024-11-21 10:45 2013-02-1 Show GitHub Exploit DB Packet Storm
295493 - portable_sdk_for_upnp_project portable_sdk_for_upnp Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) be… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5960 2024-11-21 10:45 2013-02-1 Show GitHub Exploit DB Packet Storm
295494 - portable_sdk_for_upnp_project portable_sdk_for_upnp Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) be… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5959 2024-11-21 10:45 2013-02-1 Show GitHub Exploit DB Packet Storm
295495 - libupnp_project libupnp Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) be… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5958 2024-11-21 10:45 2013-02-1 Show GitHub Exploit DB Packet Storm
295496 - cisco nac_appliance Multiple cross-site scripting (XSS) vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting 		CVE-2012-6029 2024-11-21 10:45 2013-01-31 Show GitHub Exploit DB Packet Storm
295497 - tinymce
moodle 		spellchecker_php
moodle 		classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x be… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6112 2024-11-21 10:45 2013-01-28 Show GitHub Exploit DB Packet Storm
295498 - moodle moodle calendar/managesubscriptions.php in the Manage Subscriptions implementation in Moodle 2.4.x before 2.4.1 omits a capability check, which allows remote authenticated users to remove course-level calen… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6106 2024-11-21 10:45 2013-01-28 Show GitHub Exploit DB Packet Storm
295499 - moodle moodle blog/rsslib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 continues to provide a blog RSS feed after blogging is disabled, which allows remote atta… CWE-200
Information Exposure 		CVE-2012-6105 2024-11-21 10:45 2013-01-28 Show GitHub Exploit DB Packet Storm
295500 - moodle moodle blog/rsslib.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allows remote attackers to obtain sensitive information from site-level blogs by leveraging the guest role and… CWE-200
Information Exposure 		CVE-2012-6104 2024-11-21 10:45 2013-01-28 Show GitHub Exploit DB Packet Storm