Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216431	7.2	危険	Panda Security	-	複数の Panda Security 2014 製品の PavTPK.sys カーネルモードドライバにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-5307	2014-08-28 15:37	2014-07-18	Show	GitHub Exploit DB Packet Storm

216432	6.8	警告	KDirStat project Novell	-	KDirStat の kcleanup.cpp における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-2528	2014-08-28 14:38	2014-08-11	Show	GitHub Exploit DB Packet Storm

216433	6.8	警告	KDirStat project Novell	-	KDirStat の kcleanup.cpp における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-2527	2014-08-28 14:38	2014-08-11	Show	GitHub Exploit DB Packet Storm

216434	3.5	注意	Django Software Foundation	-	Django の管理インターフェースにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0483	2014-08-28 13:47	2014-08-20	Show	GitHub Exploit DB Packet Storm

216435	6	警告	Django Software Foundation	-	Django の contrib.auth.middleware.RemoteUserMiddleware のミドルウェアにおける Web セッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2014-0482	2014-08-28 13:47	2014-08-20	Show	GitHub Exploit DB Packet Storm

216436	4.3	警告	Django Software Foundation	-	Django のファイルアップロード処理システムのデフォルト設定におけるサービス運用妨害 (DoS) の脆弱性	CWE-16 環境設定	CVE-2014-0481	2014-08-28 13:46	2014-08-20	Show	GitHub Exploit DB Packet Storm

216437	5.8	警告	Django Software Foundation	-	Django の core.urlresolvers.reverse 関数におけるフィッシング攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-0480	2014-08-28 13:46	2014-08-20	Show	GitHub Exploit DB Packet Storm

216438	2.1	注意	QNAP Systems	-	複数の QNAP 製品のファームウェアにおけるユーザ名およびハッシュ化されたパスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-5457	2014-08-27 17:50	2014-07-11	Show	GitHub Exploit DB Packet Storm

216439	4.6	警告	シスコシステムズ	-	Cisco ASR 9000 デバイス上で稼動する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3335	2014-08-27 17:14	2014-08-25	Show	GitHub Exploit DB Packet Storm

216440	7.5	危険	php-sqrl project	-	php-sqrl の sqrl_verify.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5458	2014-08-27 16:34	2014-08-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292671	-	adobe	camera_raw	Buffer overflow in Adobe Photoshop Camera Raw before 7.3 allows attackers to execute arbitrary code via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5680	2024-11-21 10:45	2012-12-13	Show	GitHub Exploit DB Packet Storm

292672	-	adobe	camera_raw	Buffer underflow in Adobe Photoshop Camera Raw before 7.3 allows attackers to execute arbitrary code via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5679	2024-11-21 10:45	2012-12-13	Show	GitHub Exploit DB Packet Storm

292673	-	adobe	flash_player air air_sdk	Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on Windows, before 10.3.183.48 and 11.x before 11.5.502.136 on Mac OS X, before 10.3.183.48 and 11.x before 11.2.202.258 on Linux, b…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5678	2024-11-21 10:45	2012-12-12	Show	GitHub Exploit DB Packet Storm

292674	-	adobe	flash_player air air_sdk	Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on Windows, before 10.3.183.48 and 11.x before 11.5.502.136 on Mac OS X, before 10.3.183.48 and 11.x before 11.2…	CWE-189 Numeric Errors	CVE-2012-5677	2024-11-21 10:45	2012-12-12	Show	GitHub Exploit DB Packet Storm

292675	-	adobe	flash_player air air_sdk	Buffer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on Windows, before 10.3.183.48 and 11.x before 11.5.502.136 on Mac OS X, before 10.3.183.48 and 11.x before 11.2.…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5676	2024-11-21 10:45	2012-12-12	Show	GitHub Exploit DB Packet Storm

292676	-	adobe	coldfusion	Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5675	2024-11-21 10:45	2012-12-12	Show	GitHub Exploit DB Packet Storm

292677	-	zohocorp	manageengine_assetexplorer	Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine AssetExplorer 5.6 before service pack 5614 allow remote attackers to inject arbitrary web script or HTML via fields in XML asset da…	CWE-79 Cross-site Scripting	CVE-2012-5956	2024-11-21 10:45	2012-12-11	Show	GitHub Exploit DB Packet Storm

292678	-	google	android	The Browser application in Android 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted market: URI in the SRC attribute of an IFRAME element.	CWE-20 Improper Input Validation	CVE-2012-6301	2024-11-21 10:45	2012-12-11	Show	GitHub Exploit DB Packet Storm

292679	-	ca	xcom_data_transport	CA XCOM Data Transport r11.0 and r11.5 on UNIX and Linux allows remote attackers to execute arbitrary commands via a crafted request.	CWE-94 Code Injection	CVE-2012-5973	2024-11-21 10:45	2012-12-11	Show	GitHub Exploit DB Packet Storm

292680	-	isc canonical	bind ubuntu_linux	ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.	CWE-20 Improper Input Validation	CVE-2012-5688	2024-11-21 10:45	2012-12-6	Show	GitHub Exploit DB Packet Storm