Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216251 4 警告 Adaptive Computing - Adaptive Computing Moab のサーバにおける任意のユーザを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-5375 2014-10-10 15:51 2014-10-6 Show GitHub Exploit DB Packet Storm
216252 5 警告 Adaptive Computing - Adaptive Computing Moab における署名のチェックを回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-5300 2014-10-10 15:51 2014-10-6 Show GitHub Exploit DB Packet Storm
216253 10 危険 hapi.js - Node.js 用 hapi サーバフレームワークの bassmaster プラグインの lib/batch.js の internals.batch における任意の Javascript コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-7205 2014-10-10 13:49 2014-09-26 Show GitHub Exploit DB Packet Storm
216254 3.5 注意 Drupal - Drupal 用 Zen テーマの template.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7980 2014-10-10 12:27 2014-04-30 Show GitHub Exploit DB Packet Storm
216255 3.5 注意 Drupal - Drupal 用 SimpleCorp テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7979 2014-10-10 12:26 2014-04-8 Show GitHub Exploit DB Packet Storm
216256 3.5 注意 Drupal - Drupal 用 BlueMasters テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7978 2014-10-10 12:25 2014-04-8 Show GitHub Exploit DB Packet Storm
216257 5 警告 Joomla! - Joomla! におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-7229 2014-10-10 11:33 2014-09-30 Show GitHub Exploit DB Packet Storm
216258 7.5 危険 Joomla! - Joomla! におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-6632 2014-10-10 11:33 2014-09-23 Show GitHub Exploit DB Packet Storm
216259 4.3 警告 Joomla! - Joomla! の com_media におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6631 2014-10-10 11:33 2014-09-23 Show GitHub Exploit DB Packet Storm
216260 10 危険 FreePBX - FreePBX の ARI Framework module/Asterisk Recording Interface の htdocs_ari/includes/login.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-7235 2014-10-9 19:28 2014-09-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293001 - omniauth-oauth2_project omniauth-oauth2 Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the authentication of users for requests that modify session st… CWE-352
 Origin Validation Error 		CVE-2012-6134 2024-11-21 10:45 2013-04-10 Show GitHub Exploit DB Packet Storm
293002 - fedorahosted cronie File descriptor leak in cronie 1.4.8, when running in certain environments, might allow local users to read restricted files, as demonstrated by reading /etc/crontab. CWE-200
Information Exposure 		CVE-2012-6097 2024-11-21 10:45 2013-04-10 Show GitHub Exploit DB Packet Storm
293003 - redhat
gluster 		storage_native_client
storage_server
storage_management_console
glusterfs 		The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5635 2024-11-21 10:45 2013-04-10 Show GitHub Exploit DB Packet Storm
293004 - transmissionbt
fedoraproject
canonical 		transmission
fedora
ubuntu_linux 		Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute ar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6129 2024-11-21 10:45 2013-04-3 Show GitHub Exploit DB Packet Storm
293005 - redhat
candlepinproject 		subscription_asset_manager
candlepin 		Candlepin before 0.7.24, as used in Red Hat Subscription Asset Manager before 1.2.1, does not properly check manifest signatures, which allows local users to modify manifests. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6119 2024-11-21 10:45 2013-04-3 Show GitHub Exploit DB Packet Storm
293006 - mcafee mcafee_virtual_technician
epo_mcafee_virtual_technician 		An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5879 2024-11-21 10:45 2013-03-29 Show GitHub Exploit DB Packet Storm
293007 - ibm lotus_inotes Cross-site scripting (XSS) vulnerability in IBM iNotes 8.5.x before 8.5.3 FP4 allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving mail, aka SPR JDOE8ZZS… CWE-79
Cross-site Scripting 		CVE-2012-5943 2024-11-21 10:45 2013-03-27 Show GitHub Exploit DB Packet Storm
293008 - ibm rational_clearquest Cross-site scripting (XSS) vulnerability in the Web Client in IBM Rational ClearQuest 7.1.x before 7.1.2.10 and 8.x before 8.0.0.6 allows remote attackers to inject arbitrary web script or HTML via a… CWE-79
Cross-site Scripting 		CVE-2012-5757 2024-11-21 10:45 2013-03-22 Show GitHub Exploit DB Packet Storm
293009 - ibm infosphere_information_server The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to byp… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5938 2024-11-21 10:45 2013-03-20 Show GitHub Exploit DB Packet Storm
293010 - redhat enterprise_virtualization_manager The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier, when the validate action is enabled, logs the administrative password to a wor… CWE-255
Credentials Management 		CVE-2012-6115 2024-11-21 10:45 2013-03-13 Show GitHub Exploit DB Packet Storm