Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216551	3.5	注意	IBM	-	IBM Rational Team Concert における認証情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-3050	2014-08-1 18:03	2014-07-18	Show	GitHub Exploit DB Packet Storm

216552	3.5	注意	IBM	-	複数の IBM Maximo 製品および SmartCloud Control Desk における CRLF インジェクションの脆弱性	CWE-Other その他	CVE-2014-3026	2014-08-1 18:03	2014-07-24	Show	GitHub Exploit DB Packet Storm

216553	6.9	警告	IBM	-	IBM Tivoli Integrated Portal の Embedded WebSphere Application Server の install.sh における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3020	2014-08-1 18:03	2014-07-24	Show	GitHub Exploit DB Packet Storm

216554	4.3	警告	IBM	-	複数の IBM 製品で使用される IBM Atlas Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0889	2014-08-1 18:03	2014-07-25	Show	GitHub Exploit DB Packet Storm

216555	4.3	警告	シスコシステムズ	-	Cisco Prime Data Center Network Manager の Web サーバコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3329	2014-07-31 17:20	2014-07-28	Show	GitHub Exploit DB Packet Storm

216556	7.5	危険	WeBid Support	-	WeBid における LDAP インジェクション攻撃を実行される脆弱性	CWE-Other その他	CVE-2014-5114	2014-07-31 16:40	2014-07-10	Show	GitHub Exploit DB Packet Storm

216557	6.8	警告	Gentoo Linux Canonical Fedora Project Transmission Project	-	Transmission の bitfield.c 内の tr_bitfieldEnsureNthBitAlloced 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2014-4909	2014-07-31 16:12	2014-07-1	Show	GitHub Exploit DB Packet Storm

216558	4.3	警告	Another Awesome Stuff	-	ZeroCMS の zero_user_account.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4710	2014-07-31 16:02	2014-07-24	Show	GitHub Exploit DB Packet Storm

216559	2.6	注意	Ubiquiti Networks	-	Ubiquiti UniFi Controller における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-2226	2014-07-31 15:58	2014-06-11	Show	GitHub Exploit DB Packet Storm

216560	5	警告	cairographics.org	-	GTK+ および Wireshark で使用される Cairo の cairo_image_surface_get_data 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-5116	2014-07-31 15:08	2014-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294781	5.4	MEDIUM Network	telligent	community	XSS in Telligent Community 5.6.583.20496 via a flash file and related to the allowScriptAccess parameter.	CWE-79 Cross-site Scripting	CVE-2012-1903	2024-11-21 10:38	2020-02-14	Show	GitHub Exploit DB Packet Storm

294782	5.5	MEDIUM Local	ibm	infosphere_guardium	InfoSphere Guardium aix_ktap module: DoS	NVD-CWE-noinfo	CVE-2012-2204	2024-11-21 10:38	2020-02-11	Show	GitHub Exploit DB Packet Storm

294783	5.7	MEDIUM Adjacent	hp	systems_insight_manager	HP Systems Insight Manager before 7.0 allows a remote user on adjacent network to access information	CWE-200 Information Exposure	CVE-2012-1994	2024-11-21 10:38	2020-02-11	Show	GitHub Exploit DB Packet Storm

294784	9.8	CRITICAL Network	ispconfig	ispconfig	ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2012-2087	2024-11-21 10:38	2020-01-24	Show	GitHub Exploit DB Packet Storm

294785	9.8	CRITICAL Network	invisioncommunity	invision_power_board	Invision Power Board before 3.3.1 fails to sanitize user-supplied input which could allow remote attackers to obtain sensitive information or execute arbitrary code by uploading a malicious file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2012-2226	2024-11-21 10:38	2020-01-10	Show	GitHub Exploit DB Packet Storm

294786	7.8	HIGH Local	freedesktop xpdfreader redhat opensuse	poppler xpdf enterprise_linux opensuse	The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator.	NVD-CWE-Other	CVE-2012-2142	2024-11-21 10:38	2020-01-10	Show	GitHub Exploit DB Packet Storm

294787	6.1	MEDIUM Network	codeigniter	codeigniter	EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks.	CWE-79 Cross-site Scripting	CVE-2012-1915	2024-11-21 10:38	2020-01-10	Show	GitHub Exploit DB Packet Storm

294788	7.8	HIGH Local	redhat	jboss_enterprise_application_platform jboss_application_server	An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retain…	CWE-269 Improper Privilege Management	CVE-2012-2312	2024-11-21 10:38	2019-12-19	Show	GitHub Exploit DB Packet Storm

294789	6.1	MEDIUM Network	mahara debian	mahara debian_linux	Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.3 and 1.5.x before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javasc…	CWE-79 Cross-site Scripting	CVE-2012-2237	2024-11-21 10:38	2019-12-18	Show	GitHub Exploit DB Packet Storm

294790	3.3	LOW Local	redhat	jboss_community_application_server jboss_enterprise_web_server	An issue exists in the property replacements feature in any descriptor in JBoxx AS 7.1.1 ignores java security policies	CWE-269 Improper Privilege Management	CVE-2012-2148	2024-11-21 10:38	2019-12-7	Show	GitHub Exploit DB Packet Storm