Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216571 6.5 警告 TestLink Development Team - TestLink における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0938 2014-08-18 12:06 2012-02-20 Show GitHub Exploit DB Packet Storm
216572 4 警告 Outlook.com - Android 版 Outlook.com における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2014-5239 2014-08-18 10:09 2014-07-30 Show GitHub Exploit DB Packet Storm
216573 4.3 警告 富士通 - ServerView Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3898 2014-08-18 10:04 2014-08-1 Show GitHub Exploit DB Packet Storm
216574 7.8 危険 ラリタン・ジャパン株式会社 - Dominion KX2-101 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3901 2014-08-18 09:43 2014-08-12 Show GitHub Exploit DB Packet Storm
216575 7.5 危険 ZPanel Project - ZPanel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-6654 2014-08-15 18:48 2012-11-4 Show GitHub Exploit DB Packet Storm
216576 7.5 危険 ZPanel Project - ZPanel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5685 2014-08-15 18:47 2012-11-4 Show GitHub Exploit DB Packet Storm
216577 4.3 警告 ZPanel Project - ZPanel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5684 2014-08-15 18:46 2012-11-4 Show GitHub Exploit DB Packet Storm
216578 6.8 警告 ZPanel Project - ZPanel におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5683 2014-08-15 18:46 2012-11-4 Show GitHub Exploit DB Packet Storm
216579 7.5 危険 Biblio Autocomplete Project - Drupal 用 Biblio Autocomplete モジュールの AJAX オートコンプリートのコールバックにおけるデータにアクセスされる脆弱性 CWE-noinfo
情報不足 		CVE-2014-5250 2014-08-15 18:19 2014-08-5 Show GitHub Exploit DB Packet Storm
216580 7.5 危険 Biblio Autocomplete Project - Drupal 用 Biblio Autocomplete モジュールの "Biblio self autocomplete" サブモジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5249 2014-08-15 18:19 2014-08-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294371 - midnight-commander midnight_commander Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attac… CWE-20
 Improper Input Validation  		CVE-2012-4463 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294372 - opencryptoki_project opencryptoki openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) LCK..opencryptoki or (2) LCK..opencryptoki_stdll file in /var/lock… CWE-59
Link Following 		CVE-2012-4455 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294373 - opencryptoki_project opencryptoki openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc fil… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4454 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294374 - w1.fi hostapd Heap-based buffer overflow in the eap_server_tls_process_fragment function in eap_server_tls_common.c in the EAP authentication server in hostapd 0.6 through 1.0 allows remote attackers to cause a de… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4445 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294375 - bacula
debian 		bacula
debian_linux 		The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4430 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294376 - mozilla
redhat
canonical
suse
debian 		firefox
thunderbird_esr
thunderbird
seamonkey
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_eus
linux_enterpri… 		Heap-based buffer overflow in the Convolve3x3 function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey befor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4188 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294377 - mozilla
redhat
canonical
suse 		firefox
thunderbird_esr
thunderbird
seamonkey
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_eus
linux_enterpri… 		Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage a certain insPos variable, w… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4187 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294378 - mozilla
redhat
canonical
debian
suse 		firefox
thunderbird_esr
thunderbird
seamonkey
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
debian_linux
enterprise_linux_desktop
enterprise_linux_eus 		Heap-based buffer overflow in the nsWaveReader::DecodeAudioData function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4186 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294379 - mozilla
redhat
canonical
suse 		firefox
thunderbird_esr
thunderbird
seamonkey
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_eus
linux_enterpri… 		Buffer overflow in the nsCharTraits::length function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4185 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
294380 - mozilla
redhat
canonical
suse 		firefox
thunderbird_esr
thunderbird
seamonkey
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_eus
linux_enterpri… 		The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 d… CWE-79
Cross-site Scripting 		CVE-2012-4184 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm