Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216661	7.5	危険	FrontAccounting	-	FrontAccounting における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3973	2014-06-9 13:42	2014-05-21	Show	GitHub Exploit DB Packet Storm

216662	9.3	危険	サムスン	-	Samsung iPOLiS Device Manager におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3912	2014-06-9 13:38	2014-06-4	Show	GitHub Exploit DB Packet Storm

216663	2.6	注意	日本情報化農業研究所	-	SOY CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1998	2014-06-6 18:36	2014-06-4	Show	GitHub Exploit DB Packet Storm

216664	7.8	危険	aten	-	CN8000 におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2014-1997	2014-06-6 18:35	2014-06-4	Show	GitHub Exploit DB Packet Storm

216665	4.3	警告	Bottomline Technologies	-	Bottomline Technologies Transform Foundation Server の Transform Content Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2577	2014-06-6 18:19	2014-06-3	Show	GitHub Exploit DB Packet Storm

216666	4	警告	Ing. Punzenberger COPA-DATA GmbH	-	COPA-DATA zenon DNP3 NG ドライバおよび zenon DNP3 Process Gateway におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2346	2014-06-6 17:56	2014-06-3	Show	GitHub Exploit DB Packet Storm

216667	7.1	危険	Ing. Punzenberger COPA-DATA GmbH	-	COPA-DATA zenon DNP3 NG ドライバおよび zenon DNP3 Process Gateway におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2345	2014-06-6 17:56	2014-06-3	Show	GitHub Exploit DB Packet Storm

216668	4.3	警告	Ipswitch, Inc.	-	Ipswitch IMail Server の Web クライアントインターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3878	2014-06-6 16:30	2014-06-4	Show	GitHub Exploit DB Packet Storm

216669	7.5	危険	Stephen Adkins	-	Perl 用の App::Context モジュールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-6141	2014-06-6 16:19	2012-12-6	Show	GitHub Exploit DB Packet Storm

216670	3.5	注意	Jo Hasenau	-	TYPO3 用 Grid Elements エクステンションのレイアウトウィザードにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3949	2014-06-6 15:14	2014-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293251	-	sgi	performance_co-pilot	libpcp in Performance Co-Pilot (PCP) before 3.6.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a PDU with the numcreds field value greater than the…	CWE-189 Numeric Errors	CVE-2012-3418	2024-11-21 10:40	2012-08-28	Show	GitHub Exploit DB Packet Storm

293252	-	google	tunnelblick	Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process.	CWE-362 Race Condition	CVE-2012-3487	2024-11-21 10:40	2012-08-27	Show	GitHub Exploit DB Packet Storm

293253	-	google	tunnelblick	Tunnelblick 3.3beta20 and earlier allows local users to gain privileges via an OpenVPN configuration file that specifies execution of a script upon occurrence of an OpenVPN event.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3486	2024-11-21 10:40	2012-08-27	Show	GitHub Exploit DB Packet Storm

293254	-	google	tunnelblick	Tunnelblick 3.3beta20 and earlier relies on argv[0] to determine the name of an appropriate (1) kernel module pathname or (2) executable file pathname, which allows local users to gain privileges via…	CWE-20 Improper Input Validation	CVE-2012-3485	2024-11-21 10:40	2012-08-27	Show	GitHub Exploit DB Packet Storm

293255	-	google	tunnelblick	Tunnelblick 3.3beta20 and earlier relies on a test for specific ownership and permissions to determine whether a program can be safely executed, which allows local users to bypass intended access res…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3484	2024-11-21 10:40	2012-08-27	Show	GitHub Exploit DB Packet Storm

293256	-	google	tunnelblick	Race condition in the runScript function in Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by replacing a script file.	CWE-362 Race Condition	CVE-2012-3483	2024-11-21 10:40	2012-08-27	Show	GitHub Exploit DB Packet Storm

293257	-	thomas_hunter	neoinvoice	SQL injection vulnerability in signup_check.php in NeoInvoice allows remote attackers to execute arbitrary SQL commands via the value parameter in a username action.	CWE-89 SQL Injection	CVE-2012-3477	2024-11-21 10:40	2012-08-26	Show	GitHub Exploit DB Packet Storm

293258	-	gimp	gimp	Integer overflow in the ReadImage function in plug-ins/common/file-gif-load.c in the GIF image format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service (applicati…	CWE-190 Integer Overflow or Wraparound	CVE-2012-3481	2024-11-21 10:40	2012-08-25	Show	GitHub Exploit DB Packet Storm

293259	-	gnu	glibc	Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users t…	CWE-189 Numeric Errors	CVE-2012-3480	2024-11-21 10:40	2012-08-25	Show	GitHub Exploit DB Packet Storm

293260	-	gnu	emacs	lisp/files.el in Emacs 23.2, 23.3, 23.4, and 24.1 automatically executes eval forms in local-variable sections when the enable-local-variables option is set to :safe, which allows user-assisted remot…	NVD-CWE-noinfo	CVE-2012-3479	2024-11-21 10:40	2012-08-25	Show	GitHub Exploit DB Packet Storm