Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216851	3.3	注意	Novell Travis Shirk	-	Python 用 eyeD3 の tag.py における任意のファイルを変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1934	2014-05-12 16:34	2014-05-7	Show	GitHub Exploit DB Packet Storm

216852	4.3	警告	Cristian Gafton	-	Pam 用 pam_userdb モジュールにおけるパスワードを推測される脆弱性	CWE-310 暗号の問題	CVE-2013-7041	2014-05-12 16:34	2013-12-4	Show	GitHub Exploit DB Packet Storm

216853	4.9	警告	GNU Project	-	GNU Rush における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6889	2014-05-12 16:23	2013-12-29	Show	GitHub Exploit DB Packet Storm

216854	2.1	注意	CloudBees	-	Jenkins 用 Subversion Plugin におけるパスワードおよび SSH 秘密鍵を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-6372	2014-05-12 16:11	2013-11-20	Show	GitHub Exploit DB Packet Storm

216855	4.9	警告	Fabrice Bellard Canonical	-	QEMU の hw/net/vmxnet3.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-4544	2014-05-12 15:51	2013-06-12	Show	GitHub Exploit DB Packet Storm

216856	5.5	警告	Fedora Project Zabbix	-	Zabbix の Frontend における任意のユーザのメディアを変更される脆弱性	CWE-noinfo 情報不足	CVE-2014-1685	2014-05-12 12:23	2014-02-6	Show	GitHub Exploit DB Packet Storm

216857	4	警告	Fedora Project Zabbix	-	Zabbix の API における任意のユーザになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2014-1682	2014-05-12 12:19	2014-02-13	Show	GitHub Exploit DB Packet Storm

216858	2.6	注意	dest-unreach.org	-	socat におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-3571	2014-05-12 12:13	2013-05-26	Show	GitHub Exploit DB Packet Storm

216859	5	警告	DELL EMC (旧 EMC Corporation) 日立	-	EMC RSA BSAFE SSL-J の API の SSLSocket の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-DesignError	CVE-2014-0625	2014-05-9 18:35	2014-02-14	Show	GitHub Exploit DB Packet Storm

216860	6.5	警告	ヒューレット・パッカード	-	HP OneView における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-2602	2014-05-9 18:30	2014-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292991	-	mapsmarker	leaflet_maps_marker_plugin	Multiple cross-site scripting (XSS) vulnerabilities in the Leaflet plugin 0.0.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) leaflet_layer.p…	CWE-79 Cross-site Scripting	CVE-2012-2913	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292992	-	kolja_schleich	leaguemanager	Multiple cross-site scripting (XSS) vulnerabilities in the LeagueManager plugin 3.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) group parameter in the show…	CWE-79 Cross-site Scripting	CVE-2012-2912	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292993	-	silisoftware	backupdb\(\)	Cross-site scripting (XSS) vulnerability in backupDB.php in SiliSoftware backupDB() 1.2.7a allows remote attackers to inject arbitrary web script or HTML via the onlyDB parameter.	CWE-79 Cross-site Scripting	CVE-2012-2911	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292994	-	silisoftware	phpthumb\(\)	Multiple cross-site scripting (XSS) vulnerabilities in SiliSoftware phpThumb() 1.7.11 allow remote attackers to inject arbitrary web script or HTML via the (1) dir parameter to demo/phpThumb.demo.ran…	CWE-79 Cross-site Scripting	CVE-2012-2910	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292995	-	viscacha	viscacha	Multiple cross-site scripting (XSS) vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) text field in the Private Messages System, (2) Bad Wo…	CWE-79 Cross-site Scripting	CVE-2012-2909	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292996	-	viscacha	viscacha	Multiple SQL injection vulnerabilities in admin/bbcodes.php in Viscacha 0.8.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) bbcodeexample, (2) buttonimage, or (3) bbcodetag p…	CWE-89 SQL Injection	CVE-2012-2908	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292997	-	ishmael_sanchez	aberdeen	Cross-site scripting (XSS) vulnerability in the aberdeen_breadcrumb function in template.php in the Aberdeen theme 6.x-1.x before 6.x-1.11 for Drupal, when set to append the content title to the brea…	CWE-79 Cross-site Scripting	CVE-2012-2907	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292998	-	artiphp	artiphp_cms	Multiple cross-site scripting (XSS) vulnerabilities in artpublic/recommandation/index.php in Artiphp CMS 5.5.0 Neo (r422) allow remote attackers to inject arbitrary web script or HTML via the (1) add…	CWE-79 Cross-site Scripting	CVE-2012-2906	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

292999	-	artiphp	artiphp_cms	Artiphp CMS 5.5.0 Neo (r422) stores database backups with predictable names under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a di…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2905	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

293000	-	longtailvideo	jw_player	player.swf in LongTail JW Player 5.9 allows remote attackers to conduct cross-site scripting (XSS) attacks to inject arbitrary web script or HTML via multiple "javascript:" sequences in the debug par…	CWE-79 Cross-site Scripting	CVE-2012-2904	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm