Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216661 2.7 注意 Xen プロジェクト - Xen の arch/arm/domain.c 内の alloc_domain_struct 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-4022 2014-07-10 16:50 2014-06-25 Show GitHub Exploit DB Packet Storm
216662 9.3 危険 XnSoft - XnView の xjpegls.dll フォーマットプラグインにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4988 2014-07-10 16:29 2012-06-29 Show GitHub Exploit DB Packet Storm
216663 6.9 警告 マイクロソフト - 複数の Microsoft Windows 製品の DirectShow における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2780 2014-07-10 15:02 2014-07-8 Show GitHub Exploit DB Packet Storm
216664 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの afd.sys の Ancillary Function Driver における権限昇格の脆弱性 CWE-Other
その他 		CVE-2014-1767 2014-07-10 15:01 2014-07-8 Show GitHub Exploit DB Packet Storm
216665 7.6 危険 マイクロソフト - 複数の Microsoft Windows 製品におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2781 2014-07-10 15:00 2014-07-8 Show GitHub Exploit DB Packet Storm
216666 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品の Windows Journal における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1824 2014-07-10 14:59 2014-07-8 Show GitHub Exploit DB Packet Storm
216667 10 危険 マイクロソフト - Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1765 2014-07-10 14:57 2014-03-14 Show GitHub Exploit DB Packet Storm
216668 10 危険 マイクロソフト - Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1763 2014-07-10 14:55 2014-03-13 Show GitHub Exploit DB Packet Storm
216669 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-2813 2014-07-10 14:46 2014-07-8 Show GitHub Exploit DB Packet Storm
216670 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-2809 2014-07-10 14:45 2014-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295911 - smwplus smw\+ Cross-site scripting (XSS) vulnerability in the smwfOnSfSetTargetName function in extensions/SMWHalo/includes/SMW_Initialize.php in Semantic Enterprise Wiki (SMW+) 1.5.6, 1.6.0_2 and earlier allows r… CWE-79
Cross-site Scripting 		CVE-2012-1212 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295912 - powie pfile Cross-site scripting (XSS) vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter. CWE-79
Cross-site Scripting 		CVE-2012-1211 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295913 - powie pfile SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2012-1210 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295914 - fork-cms fork_cms Cross-site scripting (XSS) vulnerability in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allows remote attackers to inject arbitrary web script or HTML via … CWE-79
Cross-site Scripting 		CVE-2012-1209 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295915 - fork-cms fork_cms Multiple cross-site scripting (XSS) vulnerabilities in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allow remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2012-1208 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295916 - fork-cms fork_cms Directory traversal vulnerability in frontend/core/engine/javascript.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allows remote attackers to read arbitrary files via a .. (dot dot) … CWE-22
Path Traversal 		CVE-2012-1207 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295917 - hancom hancom_office_2010_se Multiple integer overflows in Hancom Office 2010 SE 8.5.5 allow remote attackers to execute arbitrary code via large dimension values in a (1) JPG image to the ImportGR in the JPG image filter module… CWE-189
Numeric Errors 		CVE-2012-1206 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295918 - alanft relocate-upload PHP remote file inclusion vulnerability in relocate-upload.php in Relocate Upload plugin before 0.20 for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the abspath param… CWE-94
Code Injection 		CVE-2012-1205 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295919 - lepton-cms lepton Multiple cross-site scripting (XSS) vulnerabilities in LEPTON 1.1.3 and other versions before 1.1.4 allow remote attackers to inject arbitrary web script or HTML via the (1) message parameter to admi… CWE-79
Cross-site Scripting 		CVE-2012-1000 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm
295920 - lepton-cms lepton SQL injection vulnerability in modules/news/rss.php in LEPTON before 1.1.4 allows remote attackers to execute arbitrary SQL commands via the group_id parameter. CWE-89
SQL Injection 		CVE-2012-0999 2024-11-21 10:36 2012-02-24 Show GitHub Exploit DB Packet Storm