Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216221 10 危険 アドビシステムズ - Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0567 2014-09-25 17:49 2014-09-16 Show GitHub Exploit DB Packet Storm
216222 10 危険 アドビシステムズ - Windows 上で稼働する Adobe Reader および Acrobat におけるサンドボックス保護メカニズムを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2014-0568 2014-09-25 17:47 2014-09-16 Show GitHub Exploit DB Packet Storm
216223 2.6 注意 Bump Technologies, Inc. - Android 版 Bump における暗黙的 Intent の扱いに関する脆弱性 CWE-DesignError
CVE-2014-5320 2014-09-25 17:43 2014-09-19 Show GitHub Exploit DB Packet Storm
216224 6.5 警告 Huge-IT - WordPress 用 Huge-IT Image Gallery プラグインの admin/gallery_func.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-7153 2014-09-25 12:18 2014-08-25 Show GitHub Exploit DB Packet Storm
216225 4 警告 ヤフー株式会社 - Yahoo!ボックス(Android版) における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2014-5881 2014-09-25 12:09 2014-09-25 Show GitHub Exploit DB Packet Storm
216226 5 警告 アップル - Safari におけるアプリケーションキャッシュの取扱いに関する問題 CWE-DesignError
CVE-2014-4409 2014-09-25 12:01 2014-09-17 Show GitHub Exploit DB Packet Storm
216227 7.2 危険 Cobham plc - Cobham AVIATOR 700D および 700E 衛星通信用端末における特権的端末セッションを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-2942 2014-09-25 11:57 2014-08-7 Show GitHub Exploit DB Packet Storm
216228 4 警告 FileMaker, Inc - FileMaker Pro における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2014-5321 2014-09-24 18:04 2014-09-18 Show GitHub Exploit DB Packet Storm
216229 6.1 警告 シスコシステムズ - Cisco Network Convergence System 6000 シリーズデバイス上で稼働する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3379 2014-09-24 17:58 2014-09-19 Show GitHub Exploit DB Packet Storm
216230 5 警告 シスコシステムズ - Cisco IOS XR の tacacsd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3378 2014-09-24 17:56 2014-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293361 - owncloud owncloud lib/base.php in ownCloud before 4.0.8 does not properly validate the user_id session variable, which allows remote authenticated users to read arbitrary files via vectors related to WebDAV. CWE-20
 Improper Input Validation  		CVE-2012-5336 2024-11-21 10:44 2014-06-4 Show GitHub Exploit DB Packet Storm
293362 - mediawiki mediawiki Session fixation vulnerability in the CentralAuth extension for MediaWiki before 1.18.6, 1.19.x before 1.19.3, and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the centrala… NVD-CWE-Other
CVE-2012-5395 2024-11-21 10:44 2014-06-3 Show GitHub Exploit DB Packet Storm
293363 - mediawiki mediawiki Session fixation vulnerability in Special:UserLogin in MediaWiki before 1.18.6, 1.19.x before 1.19.3, and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the session_id. NVD-CWE-Other
CVE-2012-5391 2024-11-21 10:44 2014-06-3 Show GitHub Exploit DB Packet Storm
293364 - dancer dancer CRLF injection vulnerability in the cookie method (lib/Dancer/Cookie.pm) in Dancer before 1.3114 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v… CWE-20
 Improper Input Validation  		CVE-2012-5572 2024-11-21 10:44 2014-05-30 Show GitHub Exploit DB Packet Storm
293365 - mate-desktop mate-settings-daemon The default configuration in mate-settings-daemon 1.5.3 allows local users to change the timezone for the system via a crafted D-Bus call. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5560 2024-11-21 10:44 2014-05-30 Show GitHub Exploit DB Packet Storm
293366 - theforeman foreman The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5477 2024-11-21 10:44 2014-05-8 Show GitHub Exploit DB Packet Storm
293367 - cisco ios Cisco IOS Unified Border Element (CUBE) in Cisco IOS before 15.3(2)T allows remote authenticated users to cause a denial of service (input queue wedge) via a crafted series of RTCP packets, aka Bug I… CWE-20
 Improper Input Validation  		CVE-2012-5427 2024-11-21 10:44 2014-04-23 Show GitHub Exploit DB Packet Storm
293368 - cisco ios
as5400_universal_gateway
as5400hpx_universal_gateway
as5400xm_media_gateway
as5400xm_universal_gateway 		Unspecified vulnerability in Cisco IOS before 15.3(2)T on AS5400 devices allows remote authenticated users to cause a denial of service (spurious errors) via unknown vectors, aka Bug ID CSCub61009. NVD-CWE-noinfo
CVE-2012-5422 2024-11-21 10:44 2014-04-23 Show GitHub Exploit DB Packet Storm
293369 - horde groupware
kronolith_h4 		Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.18, as used in Horde Groupware Webmail Edition before 4.0.9, allow remote attackers to inject… CWE-79
Cross-site Scripting 		CVE-2012-5567 2024-11-21 10:44 2014-04-6 Show GitHub Exploit DB Packet Storm
293370 - horde kronolith_h4
groupware 		Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.17, as used in Horde Groupware Webmail Edition before 4.0.8, allow remote attackers to inject… CWE-79
Cross-site Scripting 		CVE-2012-5566 2024-11-21 10:44 2014-04-6 Show GitHub Exploit DB Packet Storm