Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216691 5.4 警告 TRA Mobile Apps - Android 用 TRA Auctions for Buyers アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5656 2014-11-12 11:17 2014-09-3 Show GitHub Exploit DB Packet Storm
216692 5.4 警告 #1 deals and maps app - Android 用 Point Inside Shopping & Travel アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5677 2014-11-12 11:17 2014-09-3 Show GitHub Exploit DB Packet Storm
216693 5.4 警告 Cheetah Mobile - Android 用 CM Browser - Fast & Secure アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5655 2014-11-12 11:15 2014-09-3 Show GitHub Exploit DB Packet Storm
216694 5.4 警告 カスペルスキー - Android 用 Kaspersky Internet Security アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5654 2014-11-12 11:13 2014-09-3 Show GitHub Exploit DB Packet Storm
216695 5.4 警告 Playrix Games - Android 用 Township アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5676 2014-11-12 11:13 2014-09-3 Show GitHub Exploit DB Packet Storm
216696 5.4 警告 Safeway Inc. - Android 用 Safeway アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5692 2014-11-12 11:11 2014-09-3 Show GitHub Exploit DB Packet Storm
216697 5.4 警告 Pinssible Labs - Android 用 The Phonegram - Instagram Download アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5675 2014-11-12 11:11 2014-09-3 Show GitHub Exploit DB Packet Storm
216698 5.4 警告 Scopely - Android 用 Slots Vacation - FREE Slots アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5693 2014-11-12 11:11 2014-09-3 Show GitHub Exploit DB Packet Storm
216699 5.4 警告 Scoutmob - Android 用 Scoutmob local deals & events アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5694 2014-11-12 11:10 2014-09-3 Show GitHub Exploit DB Packet Storm
216700 5.4 警告 Sanrio Digital - Android 用 Hello Kitty Cafe アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5695 2014-11-12 11:09 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296731 - google
opensuse 		chrome
opensuse 		Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact and attack vectors. NVD-CWE-noinfo
CVE-2012-5138 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296732 - google
opensuse 		chrome
opensuse 		Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Media Sourc… CWE-416
 Use After Free 		CVE-2012-5137 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296733 - google chrome
chrome_os 		Heap-based buffer overflow in the WebGL subsystem in Google Chrome OS before 23.0.1271.94 allows remote attackers to cause a denial of service (GPU process crash) or possibly have unspecified other i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5129 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296734 - basic_webmail_project
jason_flatt 		basic_webmail Multiple cross-site scripting (XSS) vulnerabilities in the Basic webmail module 6.x-1.x before 6.x-1.2 for Drupal allow remote attackers to inject arbitrary web script or HTML via a (1) page title or… CWE-79
Cross-site Scripting 		CVE-2012-5569 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296735 - chaos_tool_suite_project ctools Cross-site scripting (XSS) vulnerability in the page manager node view task in the Chaos tool suite (ctools) module 6.x-1.x before 6.x-1.10 for Drupal allows remote authenticated users with permissio… CWE-79
Cross-site Scripting 		CVE-2012-5559 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296736 - user_read-only_project user_readonly The User Read-Only module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, does not properly assign roles when there are more than three roles on the site and certain unspecified configu… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5557 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296737 - restful_web_services_project restful_web_services Multiple cross-site request forgery (CSRF) vulnerabilities in the RESTful Web Services (RESTWS) module 7.x-1.x before 7.x-1.1 and 7.x-2.x before 7.x-2.0-alpha3 for Drupal allow remote attackers to hi… CWE-352
 Origin Validation Error 		CVE-2012-5556 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296738 - coleman_watts webform_civicrm The default configuration for the Webform CiviCRM Integration module 7.x-3.x before 7.x-3.2 has "Enforce Permissions" disabled, which allows remote attackers to obtain contact information by reading … CWE-200
Information Exposure 		CVE-2012-5554 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296739 - daniel_honrade om_maximenu Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM M… CWE-79
Cross-site Scripting 		CVE-2012-5553 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm
296740 - erikwebb password_policy The Password policy module 6.x-1.x before 6.x-1.5 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to obtain password hashes by sniffing the network, related to "client-side password his… CWE-200
Information Exposure 		CVE-2012-5552 2024-11-21 10:44 2012-12-4 Show GitHub Exploit DB Packet Storm