Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216161 6.8 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5695 2014-10-27 16:49 2012-11-15 Show GitHub Exploit DB Packet Storm
216162 6.8 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5694 2014-10-27 16:48 2012-11-15 Show GitHub Exploit DB Packet Storm
216163 3.5 注意 EspoCRM - EspoCRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8330 2014-10-27 16:42 2014-08-10 Show GitHub Exploit DB Packet Storm
216164 10 危険 Schrack - Schrack Technik microControl のファームウェアにおけるアクセスデータを取得される脆弱性 CWE-287
不適切な認証 		CVE-2014-8329 2014-10-27 16:05 2014-07-10 Show GitHub Exploit DB Packet Storm
216165 7.5 危険 (複数のベンダ) - 複数の NAT-PMP デバイスが WAN 側から操作可能な問題 - - 2014-10-27 14:46 2014-10-23 Show GitHub Exploit DB Packet Storm
216166 4.3 警告 The Jamroom Network - Jamroom の Search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5098 2014-10-27 14:43 2014-07-23 Show GitHub Exploit DB Packet Storm
216167 5 警告 Status2K.com - Status2k における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-5094 2014-10-27 14:42 2014-06-20 Show GitHub Exploit DB Packet Storm
216168 7.5 危険 Innovative Interfaces Inc. - Innovative vtls-Virtua の web_reports/cgi-bin/InfoStation.cgi のログインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2081 2014-10-27 14:42 2014-08-22 Show GitHub Exploit DB Packet Storm
216169 4.3 警告 Achievo - Achievo の include.php における クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5866 2014-10-27 14:41 2012-12-5 Show GitHub Exploit DB Packet Storm
216170 6.5 警告 Achievo - Achievo の dispatch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5865 2014-10-27 14:41 2012-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295811 - google chrome The IPC implementation in Google Chrome before 22.0.1229.79 allows attackers to obtain potentially sensitive information about memory addresses via unspecified vectors. CWE-200
Information Exposure 		CVE-2012-2891 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295812 - google chrome Use-after-free vulnerability in the PDF functionality in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted… CWE-399
 Resource Management Errors 		CVE-2012-2890 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295813 - google
apple 		chrome
iphone_os 		Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML via vectors involving frames, aka "Universal XSS (UXSS)." CWE-79
Cross-site Scripting 		CVE-2012-2889 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295814 - opensuse
google 		opensuse
chrome 		Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG text referen… CWE-399
 Resource Management Errors 		CVE-2012-2888 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295815 - google
opensuse 		chrome
opensuse 		Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving onclick events. CWE-399
 Resource Management Errors 		CVE-2012-2887 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295816 - google
opensuse 		chrome
opensuse 		Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Google V8 bindings, aka "Univer… CWE-79
Cross-site Scripting 		CVE-2012-2886 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295817 - opensuse
google 		opensuse
chrome 		Double free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to application exit. CWE-399
 Resource Management Errors 		CVE-2012-2885 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295818 - google
opensuse 		chrome
opensuse 		Skia, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2884 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295819 - google
opensuse 		chrome
opensuse 		Skia, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write oper… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2883 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm
295820 - google
opensuse 		chrome
opensuse 		FFmpeg, as used in Google Chrome before 22.0.1229.79, does not properly handle OGG containers, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via… CWE-20
 Improper Input Validation  		CVE-2012-2882 2024-11-21 10:39 2012-09-26 Show GitHub Exploit DB Packet Storm