Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216771	4.3	警告	IBM	-	IBM WebSphere Message Broker および IBM Integration Bus の XML4J パーサにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-5372	2014-06-27 16:09	2013-10-17	Show	GitHub Exploit DB Packet Storm

216772	6.8	警告	IBM	-	IBM Java SDK における制限されたクラスにアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2013-4041	2014-06-27 16:08	2013-10-20	Show	GitHub Exploit DB Packet Storm

216773	1.5	注意	マイクロソフト（複数のベンダ） IBM	-	Oracle Outside In にバッファオーバーフローの脆弱性	CWE-noinfo CWE-Other	CVE-2013-5763	2014-06-27 15:41	2013-10-17	Show	GitHub Exploit DB Packet Storm

216774	1.5	注意	マイクロソフト IBM オラクル	-	Oracle Outside In にバッファオーバーフローの脆弱性	CWE-noinfo CWE-Other	CVE-2013-5791	2014-06-27 15:38	2013-10-15	Show	GitHub Exploit DB Packet Storm

216775	6.8	警告	LongTail Ad Solutions	-	WordPress 用 JW Player プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-4030	2014-06-27 15:34	2014-06-10	Show	GitHub Exploit DB Packet Storm

216776	4.3	警告	D-Link Systems, Inc.	-	D-link DSL-2760U-E1 の dhcpinfo.html におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4645	2014-06-27 14:30	2014-06-21	Show	GitHub Exploit DB Packet Storm

216777	7.5	危険	The Cacti Group	-	Cacti 用 superlinks プラグインの superlinks.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-4644	2014-06-27 12:07	2014-06-18	Show	GitHub Exploit DB Packet Storm

216778	5	警告	Core FTP	-	Core FTP LE のクライアントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-4643	2014-06-27 11:17	2014-06-11	Show	GitHub Exploit DB Packet Storm

216779	4.7	警告	ソフォス	-	Sophos Disk Encryption における認証不備の脆弱性	CWE-287 不適切な認証	CVE-2014-2005	2014-06-26 18:07	2014-06-24	Show	GitHub Exploit DB Packet Storm

216780	5	警告	IBM	-	IBM Notes および IBM Domino に問題	CWE-200 情報漏えい	CVE-2014-0892	2014-06-26 17:34	2014-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292371	-	caminova	djvu_browser_plug-in	Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions before 6.1.4.27993 allows remote attackers to execute arbitrary code via a crafted Sjbz …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5006	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292372	-	frankdeveloper	vr_gpub	Cross-site request forgery (CSRF) vulnerability in admin/admin_options.php in VR GPub 4.0 allows remote attackers to hijack the authentication of admins for requests that add admin accounts via an ad…	CWE-352 Origin Validation Error	CVE-2012-5005	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292373	-	parallels	h-sphere	Multiple cross-site request forgery (CSRF) vulnerabilities in Parallels H-Sphere 3.3 Patch 1 allow remote attackers to hijack the authentication of admins for requests that (1) add group plans via ad…	CWE-352 Origin Validation Error	CVE-2012-5004	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292374	-	nomachine	nx_web_companion	nxapplet.jar in No Machine NX Web Companion 3.x and earlier does not properly verify the authenticity of updates, which allows user-assisted remote attackers to execute arbitrary code via a crafted (…	CWE-287 Improper Authentication	CVE-2012-5003	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292375	-	ricoh	sr10_ftp_server dl-10	Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5002	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292376	-	hitachi	jp1\/cm2\/network_node_manager	Multiple unspecified vulnerabilities in Hitachi JP1/Cm2/Network Node Manager i before 09-50-03 allow remote attackers to cause a denial of service and possibly execute arbitrary code via unspecified …	NVD-CWE-noinfo	CVE-2012-5001	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292377	-	blueteck	witze_addon	SQL injection vulnerability in jokes/index.php in the Witze addon 0.9 for deV!L'z Clanportal allows remote attackers to execute arbitrary SQL commands via the id parameter in a show action.	CWE-89 SQL Injection	CVE-2012-5000	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292378	-	mercurycom	mr804_firmware mr804	Mercury MR804 Router 8.0 3.8.1 Build 101220 Rel.53006nB allows remote attackers to cause a denial of service (service hang) via a crafted string in HTTP header fields such as (1) If-Modified-Since, (…	CWE-20 Improper Input Validation	CVE-2012-4999	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292379	-	starcms	starcms	Cross-site scripting (XSS) vulnerability in index.php in starCMS allows remote attackers to inject arbitrary web script or HTML via the q parameter.	CWE-79 Cross-site Scripting	CVE-2012-4998	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm

292380	-	anecms	anecms	Directory traversal vulnerability in acp/index.php in AneCMS allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter.	CWE-22 Path Traversal	CVE-2012-4997	2024-11-21 10:43	2012-09-20	Show	GitHub Exploit DB Packet Storm