Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216731	7.5	危険	Sensio Labs	-	Symfony の Yaml::parse 関数における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-1348	2014-06-4 14:57	2013-01-17	Show	GitHub Exploit DB Packet Storm

216732	5	警告	University of California	-	BOINC の client/cs_account.cpp の PROJECT::write_account_file 関数におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2013-7386	2014-06-4 14:46	2013-04-25	Show	GitHub Exploit DB Packet Storm

216733	9.3	危険	University of California	-	BOINC の XML パーサにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-2298	2014-06-4 14:45	2013-03-7	Show	GitHub Exploit DB Packet Storm

216734	9.3	危険	University of California	-	BOINC におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-2019	2014-06-4 14:45	2013-04-28	Show	GitHub Exploit DB Packet Storm

216735	5	警告	University of California	-	BOINC におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5280	2014-06-4 14:45	2011-11-6	Show	GitHub Exploit DB Packet Storm

216736	7.5	危険	XOOPS	-	XOOPS 用 Glossaire モジュールの glossaire-aff.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3935	2014-06-4 14:35	2014-05-19	Show	GitHub Exploit DB Packet Storm

216737	7.5	危険	PHPNUKE	-	PHP-Nuke 用 Submit News モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3934	2014-06-4 13:59	2014-05-24	Show	GitHub Exploit DB Packet Storm

216738	5	警告	OpenStack	-	OpenStack Identity におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2014	2014-06-4 12:12	2013-02-21	Show	GitHub Exploit DB Packet Storm

216739	5	警告	MediaWiki	-	MediaWiki の maintenance/mwdoc-filter.php における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2013-1818	2014-06-4 12:08	2013-03-4	Show	GitHub Exploit DB Packet Storm

216740	6.8	警告	MediaWiki	-	MediaWiki 用 CentralAuth 拡張機能における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2012-5395	2014-06-4 12:08	2012-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295281	-	pythonpaste	paste	Paste Script 1.7.5 and earlier does not properly set group memberships during execution with root privileges, which might allow remote attackers to bypass intended file-access restrictions by leverag…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0878	2024-11-21 10:35	2012-05-2	Show	GitHub Exploit DB Packet Storm

295282	-	mumble	mumble	Mumble 1.2.3 and earlier uses world-readable permissions for .local/share/data/Mumble/.mumble.sqlite files in home directories, which might allow local users to obtain a cleartext password and config…	CWE-310 Cryptographic Issues	CVE-2012-0863	2024-11-21 10:35	2012-04-30	Show	GitHub Exploit DB Packet Storm

295283	-	mozilla	bugzilla	template/en/default/list/list.js.tmpl in Bugzilla 2.x and 3.x before 3.6.9, 3.7.x and 4.0.x before 4.0.6, and 4.1.x and 4.2.x before 4.2.1 does not properly handle multiple logins, which allows remot…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0466	2024-11-21 10:35	2012-04-28	Show	GitHub Exploit DB Packet Storm

295284	-	mozilla	bugzilla	Bugzilla 3.5.x and 3.6.x before 3.6.9, 3.7.x and 4.0.x before 4.0.6, and 4.1.x and 4.2.x before 4.2.1, when the inbound_proxies option is enabled, does not properly validate the X-Forwarded-For HTTP …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0465	2024-11-21 10:35	2012-04-28	Show	GitHub Exploit DB Packet Storm

295285	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to spoof the addres…	NVD-CWE-Other	CVE-2012-0479	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295286	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	The texImage2D implementation in the WebGL subsystem in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonk…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0478	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295287	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonke…	CWE-79 Cross-site Scripting	CVE-2012-0477	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295288	-	mozilla	firefox thunderbird seamonkey	Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 do not properly construct the Origin and Sec-WebSocket-Origin HTTP headers, which might allow remote attackers…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0475	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295289	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Cross-site scripting (XSS) vulnerability in the docshell implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before …	CWE-79 Cross-site Scripting	CVE-2012-0474	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm

295290	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey bef…	CWE-189 Numeric Errors	CVE-2012-0473	2024-11-21 10:35	2012-04-25	Show	GitHub Exploit DB Packet Storm