Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216631 5 警告 シスコシステムズ - Cisco Unified Communications Domain Manager の VOSS の Web フレームワークにおけるアカウントを列挙される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3278 2014-06-10 16:49 2014-06-6 Show GitHub Exploit DB Packet Storm
216632 10 危険 Libav - Libav における脆弱性 CWE-noinfo
情報不足 		CVE-2014-3984 2014-06-10 16:19 2014-06-1 Show GitHub Exploit DB Packet Storm
216633 2.6 注意 MediaWiki - MediaWiki の Special:PasswordReset におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3966 2014-06-10 16:15 2014-05-29 Show GitHub Exploit DB Packet Storm
216634 6.5 警告 Developer Express - DevExpress ASPxFileManager Control for ASP.NET WebForms and MVC におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2575 2014-06-10 16:10 2014-04-17 Show GitHub Exploit DB Packet Storm
216635 7.5 危険 DELL EMC (旧 EMC Corporation) - EMC Documentum Content Server における DQL インジェクション攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2508 2014-06-10 15:35 2014-06-5 Show GitHub Exploit DB Packet Storm
216636 8.5 危険 DELL EMC (旧 EMC Corporation) - EMC Documentum Content Server における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2014-2507 2014-06-10 15:35 2014-06-5 Show GitHub Exploit DB Packet Storm
216637 8.5 危険 DELL EMC (旧 EMC Corporation) - EMC Documentum Content Server におけるシステムオブジェクト作成用のスーパーユーザ権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2506 2014-06-10 15:34 2014-06-5 Show GitHub Exploit DB Packet Storm
216638 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4728 2014-06-10 13:29 2013-08-26 Show GitHub Exploit DB Packet Storm
216639 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4727 2014-06-10 13:29 2013-08-26 Show GitHub Exploit DB Packet Storm
216640 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における Cookie をキャプチャされる脆弱性 CWE-200
情報漏えい 		CVE-2013-4725 2014-06-10 13:29 2013-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295241 - ibm aix
vios 		The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly implement the dupmsg system call, which allows local users to cause a denial of service (system crash) via a c… CWE-20
 Improper Input Validation  		CVE-2012-0723 2024-11-21 10:35 2012-07-31 Show GitHub Exploit DB Packet Storm
295242 - apple safari WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0683 2024-11-21 10:35 2012-07-26 Show GitHub Exploit DB Packet Storm
295243 - apple safari WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0682 2024-11-21 10:35 2012-07-26 Show GitHub Exploit DB Packet Storm
295244 - apple safari Apple Safari before 6.0 does not properly handle the autocomplete attribute of a password input element, which allows remote attackers to bypass authentication by leveraging an unattended workstation. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0680 2024-11-21 10:35 2012-07-26 Show GitHub Exploit DB Packet Storm
295245 - apple safari Apple Safari before 6.0 allows remote attackers to read arbitrary files via a feed:// URL. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0679 2024-11-21 10:35 2012-07-26 Show GitHub Exploit DB Packet Storm
295246 - apple safari Cross-site scripting (XSS) vulnerability in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML via a feed:// URL. CWE-79
Cross-site Scripting 		CVE-2012-0678 2024-11-21 10:35 2012-07-26 Show GitHub Exploit DB Packet Storm
295247 - postgresql postgresql CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary S… CWE-89
SQL Injection 		CVE-2012-0868 2024-11-21 10:35 2012-07-19 Show GitHub Exploit DB Packet Storm
295248 - opensuse_project
postgresql
debian
redhat 		opensuse
postgresql
debian_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_… 		PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof conn… CWE-20
CWE-295
 Improper Input Validation 
Improper Certificate Validation  		CVE-2012-0867 2024-11-21 10:35 2012-07-19 Show GitHub Exploit DB Packet Storm
295249 - postgresql postgresql CREATE TRIGGER in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0866 2024-11-21 10:35 2012-07-19 Show GitHub Exploit DB Packet Storm
295250 - sun sunos Unspecified vulnerability in Oracle Solaris 9, 10, and 11 allows local users to affect availability via unknown vectors related to Kerberos/klist. NVD-CWE-noinfo
CVE-2012-0563 2024-11-21 10:35 2012-07-18 Show GitHub Exploit DB Packet Storm