Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216681	7.5	危険	Php Scriptlerim.	-	Videos Tube における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3962	2014-06-6 12:20	2014-05-5	Show	GitHub Exploit DB Packet Storm

216682	7.5	危険	xnau webdesign	-	WordPress 用 Participants Database プラグインの Export CSV ページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3961	2014-06-6 12:15	2014-06-1	Show	GitHub Exploit DB Packet Storm

216683	4.3	警告	OpenNMS	-	OpenNMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3960	2014-06-6 11:51	2014-06-2	Show	GitHub Exploit DB Packet Storm

216684	4.3	警告	F5 Networks	-	複数の F5 BIG-IP 製品の Configuration ユーティリティにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3959	2014-06-5 17:50	2014-05-29	Show	GitHub Exploit DB Packet Storm

216685	7.5	危険	ownCloud	-	ownCloud Server における他のユーザの連絡先にアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3834	2014-06-5 17:05	2014-04-29	Show	GitHub Exploit DB Packet Storm

216686	4.3	警告	ownCloud	-	ownCloud Server の Gallery およびコアコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3833	2014-06-5 16:57	2014-04-29	Show	GitHub Exploit DB Packet Storm

216687	4.3	警告	ownCloud	-	ownCloud Server の Documents コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3832	2014-06-5 16:50	2014-04-29	Show	GitHub Exploit DB Packet Storm

216688	7.5	危険	leonardofln ownCloud	-	ownCloud Server で使用される PHPDocX における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-2056	2014-06-5 16:47	2014-03-7	Show	GitHub Exploit DB Packet Storm

216689	7.5	危険	fruux ownCloud	-	ownCloud Server で使用される SabreDAV における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-2055	2014-06-5 16:46	2014-02-27	Show	GitHub Exploit DB Packet Storm

216690	7.5	危険	PHPOffice ownCloud	-	ownCloud Server で使用される PHPExcel における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-2054	2014-06-5 16:44	2014-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295281	-	pythonpaste	paste	Paste Script 1.7.5 and earlier does not properly set group memberships during execution with root privileges, which might allow remote attackers to bypass intended file-access restrictions by leverag…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0878	2024-11-21 10:35	2012-05-2	Show	GitHub Exploit DB Packet Storm

295282	-	mumble	mumble	Mumble 1.2.3 and earlier uses world-readable permissions for .local/share/data/Mumble/.mumble.sqlite files in home directories, which might allow local users to obtain a cleartext password and config…	CWE-310 Cryptographic Issues	CVE-2012-0863	2024-11-21 10:35	2012-04-30	Show	GitHub Exploit DB Packet Storm

295283	-	mozilla	bugzilla	template/en/default/list/list.js.tmpl in Bugzilla 2.x and 3.x before 3.6.9, 3.7.x and 4.0.x before 4.0.6, and 4.1.x and 4.2.x before 4.2.1 does not properly handle multiple logins, which allows remot…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0466	2024-11-21 10:35	2012-04-28	Show	GitHub Exploit DB Packet Storm

295284	-	mozilla	bugzilla	Bugzilla 3.5.x and 3.6.x before 3.6.9, 3.7.x and 4.0.x before 4.0.6, and 4.1.x and 4.2.x before 4.2.1, when the inbound_proxies option is enabled, does not properly validate the X-Forwarded-For HTTP …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0465	2024-11-21 10:35	2012-04-28	Show	GitHub Exploit DB Packet Storm

295285	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to spoof the addres…	NVD-CWE-Other	CVE-2012-0479	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295286	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	The texImage2D implementation in the WebGL subsystem in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonk…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0478	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295287	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonke…	CWE-79 Cross-site Scripting	CVE-2012-0477	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295288	-	mozilla	firefox thunderbird seamonkey	Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 do not properly construct the Origin and Sec-WebSocket-Origin HTTP headers, which might allow remote attackers…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0475	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295289	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Cross-site scripting (XSS) vulnerability in the docshell implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before …	CWE-79 Cross-site Scripting	CVE-2012-0474	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295290	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey bef…	CWE-189 Numeric Errors	CVE-2012-0473	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm