Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 16, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 216441 | 7.5 | 危険 | php-sqrl project | - | php-sqrl の sqrl_verify.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-5458 | 2014-08-27 16:34 | 2014-08-17 | Show | GitHub Exploit DB Packet Storm |
| 216442 | 4.9 | 警告 | IBM | - | IBM Emptoris Sourcing Portfolio および Emptoris Spend Analysis におけるフィッシング攻撃を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-4790 | 2014-08-27 16:25 | 2014-08-12 | Show | GitHub Exploit DB Packet Storm |
| 216443 | 6 | 警告 | IBM | - | 複数の IBM Emptoris 製品におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2014-3040 | 2014-08-27 16:24 | 2014-08-12 | Show | GitHub Exploit DB Packet Storm |
| 216444 | 3.5 | 注意 | IBM | - | IBM Emptoris Sourcing Portfolio におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-3033 | 2014-08-27 16:24 | 2014-08-12 | Show | GitHub Exploit DB Packet Storm |
| 216445 | 2.6 | 注意 | サン・マイクロシステムズ Linux IBM ヒューレット・パッカード |
- | 複数の OS 上で稼動する IBM Tivoli Storage Manager for Space Management のバックアップ/アーカイブ・クライアントにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-6335 | 2014-08-27 16:23 | 2013-10-31 | Show | GitHub Exploit DB Packet Storm |
| 216446 | 6.9 | 警告 | OpenVPN Technologies | - | OpenVPN に同梱された PrivateTunnel の ptservice サービスにおける権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2014-5455 | 2014-08-27 15:57 | 2014-07-11 | Show | GitHub Exploit DB Packet Storm |
| 216447 | 6 | 警告 | SAS | - | SAS Visual Analytics のイメージアップロードモジュールにおける任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2014-5454 | 2014-08-27 15:26 | 2014-08-13 | Show | GitHub Exploit DB Packet Storm |
| 216448 | 2.1 | 注意 | Social Stats project | - | Drupal 用 Social Stats モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-5456 | 2014-08-27 14:59 | 2014-08-19 | Show | GitHub Exploit DB Packet Storm |
| 216449 | 7.2 | 危険 | Ubisoft | - | Ubisoft Uplay PC における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-5453 | 2014-08-27 14:22 | 2014-07-3 | Show | GitHub Exploit DB Packet Storm |
| 216450 | 6.8 | 警告 | innovaphone AG | - | innovaphone PBX におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2014-5335 | 2014-08-27 13:58 | 2014-08-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 16, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 292461 | 7.5 |
HIGH
Network |
gnome debian |
gnome_keyring debian_linux |
gnome-keyring does not discard stored secrets when using gnome_keyring_lock_all_sync function |
CWE-20
Improper Input Validation |
CVE-2012-6111 | 2024-11-21 10:45 | 2019-12-21 | Show | GitHub Exploit DB Packet Storm |
| 292462 | 9.8 |
CRITICAL
Network |
apple debian |
cups debian_linux |
cups (Common Unix Printing System) 'Listen localhost:631' option not honored correctly which could provide unauthorized access to the system |
CWE-863
Incorrect Authorization |
CVE-2012-6094 | 2024-11-21 10:45 | 2019-12-21 | Show | GitHub Exploit DB Packet Storm |
| 292463 | 6.5 |
MEDIUM
Network |
libreoffice debian apache |
libreoffice debian_linux openoffice |
LibreOffice and OpenOffice automatically open embedded content |
CWE-668
Exposure of Resource to Wrong Sphere |
CVE-2012-5639 | 2024-11-21 10:45 | 2019-12-20 | Show | GitHub Exploit DB Packet Storm |
| 292464 | 5.5 |
MEDIUM
Local |
libuser_project fedoraproject redhat debian |
libuser fedora enterprise_linux debian_linux |
libuser has information disclosure when moving user's home directory |
CWE-200
Information Exposure |
CVE-2012-5644 | 2024-11-21 10:45 | 2019-11-26 | Show | GitHub Exploit DB Packet Storm |
| 292465 | 5.5 |
MEDIUM
Local |
acme | thttpd | thttpd has a local DoS vulnerability via specially-crafted .htpasswd files |
CWE-476
NULL Pointer Dereference |
CVE-2012-5640 | 2024-11-21 10:45 | 2019-11-26 | Show | GitHub Exploit DB Packet Storm |
| 292466 | 8.8 |
HIGH
Network |
freeipa | freeipa | ipa 3.0 does not properly check server identity before sending credential containing cookies |
CWE-565
Reliance on Cookies without Validation and Integrity Checking |
CVE-2012-5631 | 2024-11-21 10:45 | 2019-11-26 | Show | GitHub Exploit DB Packet Storm |
| 292467 | 6.3 |
MEDIUM
Local |
libuser_project fedoraproject redhat |
libuser fedora enterprise_linux |
libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees. |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2012-5630 | 2024-11-21 10:45 | 2019-11-25 | Show | GitHub Exploit DB Packet Storm |
| 292468 | 7.5 |
HIGH
Network |
boldgrid | w3_total_cache | W3 Total Cache before 0.9.2.5 exposes sensitive cached database information which allows remote attackers to download this information via their hash keys. |
CWE-200
Information Exposure |
CVE-2012-6079 | 2024-11-21 10:45 | 2019-11-23 | Show | GitHub Exploit DB Packet Storm |
| 292469 | 7.5 |
HIGH
Network |
boldgrid | w3_total_cache | W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predict the values of the hashes. |
CWE-200
Information Exposure |
CVE-2012-6078 | 2024-11-21 10:45 | 2019-11-23 | Show | GitHub Exploit DB Packet Storm |
| 292470 | 7.5 |
HIGH
Network |
boldgrid | w3_total_cache | W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due to insecure storage of database cache files. |
CWE-200
Information Exposure |
CVE-2012-6077 | 2024-11-21 10:45 | 2019-11-23 | Show | GitHub Exploit DB Packet Storm |