Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216321 5 警告 Zoho Corporation - ZOHO ManageEngine DeviceExpert の ReadUsersFromMasterServlet におけるユーザアカウントの認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-5377 2014-09-8 17:39 2014-08-27 Show GitHub Exploit DB Packet Storm
216322 5 警告 Plack project - Plack の Plack::App::File における生成されたファイルのホワイトリストを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5269 2014-09-8 17:39 2014-08-1 Show GitHub Exploit DB Packet Storm
216323 4.9 警告 TorrentFlux - TorrentFlux における他のユーザの Cookie を削除または変更される脆弱性 CWE-noinfo
情報不足 		CVE-2014-6029 2014-09-8 17:16 2014-08-28 Show GitHub Exploit DB Packet Storm
216324 4 警告 TorrentFlux - TorrentFlux における他のユーザの Cookie を取得される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6028 2014-09-8 17:16 2014-08-28 Show GitHub Exploit DB Packet Storm
216325 4.3 警告 Apache Software Foundation - Apache POI におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-3574 2014-09-8 16:57 2014-08-18 Show GitHub Exploit DB Packet Storm
216326 4.3 警告 Apache Software Foundation - Apache POI の OPC SAX セットアップにおける任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2014-3529 2014-09-8 16:56 2014-08-18 Show GitHub Exploit DB Packet Storm
216327 3.5 注意 openSUSE project - srvx の HelpServ モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2014-5508 2014-09-8 16:35 2014-08-28 Show GitHub Exploit DB Packet Storm
216328 6.8 警告 SAP - SAP Crystal Reports におけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2014-5506 2014-09-8 16:05 2014-09-3 Show GitHub Exploit DB Packet Storm
216329 6.8 警告 SAP - SAP Crystal Reports におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-5505 2014-09-8 16:05 2014-09-3 Show GitHub Exploit DB Packet Storm
216330 7.5 危険 SolarWinds - SolarWinds Log and Event Manager におけるデータベースへのアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-5504 2014-09-8 15:47 2014-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292861 6.5 MEDIUM
Adjacent 		quagga
debian
redhat 		quagga
debian_linux
enterprise_linux 		quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal CWE-617
 Reachable Assertion 		CVE-2012-5521 2024-11-21 10:44 2019-11-25 Show GitHub Exploit DB Packet Storm
292862 7.5 HIGH
Network 		ovirt vdsm vdsm: certificate generation upon node creation allowing vdsm to start and serve requests from anyone who has a matching key (and certificate) CWE-295
Improper Certificate Validation  		CVE-2012-5518 2024-11-21 10:44 2019-11-25 Show GitHub Exploit DB Packet Storm
292863 6.2 MEDIUM
Local 		python keyring Python keyring has insecure permissions on new databases allowing world-readable files to be created CWE-276
Incorrect Default Permissions  		CVE-2012-5578 2024-11-21 10:44 2019-11-25 Show GitHub Exploit DB Packet Storm
292864 6.1 MEDIUM
Network 		bitweaver bitweaver Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 2.8.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the path info to (1) stats/index.php or (2) newsle… CWE-79
Cross-site Scripting 		CVE-2012-5193 2024-11-21 10:44 2019-11-14 Show GitHub Exploit DB Packet Storm
292865 7.5 HIGH
Network 		python
debian 		keyring
debian_linux 		Python keyring lib before 0.10 created keyring files with world-readable permissions. CWE-276
Incorrect Default Permissions  		CVE-2012-5577 2024-11-21 10:44 2019-10-29 Show GitHub Exploit DB Packet Storm
292866 8.8 HIGH
Network 		ffmpeg ffmpeg Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted QT file. CWE-20
 Improper Input Validation  		CVE-2012-5360 2024-11-21 10:44 2018-02-9 Show GitHub Exploit DB Packet Storm
292867 8.8 HIGH
Network 		ffmpeg ffmpeg Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted ASF file. CWE-20
 Improper Input Validation  		CVE-2012-5359 2024-11-21 10:44 2018-02-9 Show GitHub Exploit DB Packet Storm
292868 9.8 CRITICAL
Network 		ektron ektron_content_management_system The XSLTCompiledTransform function in Ektron Content Management System (CMS) before 8.02 SP5 configures the XSL with enableDocumentFunction set to true, which allows remote attackers to read arbitrar… CWE-19
 Data Processing Errors 		CVE-2012-5358 2024-11-21 10:44 2017-10-30 Show GitHub Exploit DB Packet Storm
292869 9.8 CRITICAL
Network 		ektron ektron_content_management_system Ektron Content Management System (CMS) before 8.02 SP5 uses the XslCompiledTransform class with enablescript set to true, which allows remote attackers to execute arbitrary code with NETWORK SERVICE … CWE-19
 Data Processing Errors 		CVE-2012-5357 2024-11-21 10:44 2017-10-30 Show GitHub Exploit DB Packet Storm
292870 7.8 HIGH
Local 		ffmpeg ffmpeg Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted WMV file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5361 2024-11-21 10:44 2017-03-21 Show GitHub Exploit DB Packet Storm