Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216851	4.3	警告	Exponent CMS project	-	Exponent CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6635	2014-10-29 15:45	2014-09-20	Show	GitHub Exploit DB Packet Storm

216852	7.5	危険	XRMS CRM Project	-	XRMS CRM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5520	2014-10-29 15:41	2014-08-27	Show	GitHub Exploit DB Packet Storm

216853	7.5	危険	F5 Networks	-	F5 BIG-IP Analytics における脆弱性	CWE-310 暗号の問題	CVE-2013-7408	2014-10-29 15:40	2013-04-9	Show	GitHub Exploit DB Packet Storm

216854	5	警告	DeepRoot Linux	-	DeepOfix の SMTP サーバにおける認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6796	2014-10-29 15:39	2013-11-6	Show	GitHub Exploit DB Packet Storm

216855	7.5	危険	Zoho Corporation	-	ZOHO ManageEngine EventLog Analyzer の agentUpload サーブレットにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-6037	2014-10-29 15:39	2014-08-31	Show	GitHub Exploit DB Packet Storm

216856	4.4	警告	Vinay Sajip	-	python-gnupg の shell_quote 関数における脆弱性	CWE-20 不適切な入力確認	CVE-2014-1929	2014-10-29 15:28	2014-06-4	Show	GitHub Exploit DB Packet Storm

216857	4.6	警告	Vinay Sajip	-	python-gnupg の shell_quote 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-1928	2014-10-29 15:28	2014-02-5	Show	GitHub Exploit DB Packet Storm

216858	7.5	危険	Vinay Sajip	-	python-gnupg の shell_quote 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-1927	2014-10-29 15:27	2014-02-5	Show	GitHub Exploit DB Packet Storm

216859	2.1	注意	IBM	-	IBM API Management における重要な暗号文情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-6133	2014-10-29 14:29	2014-10-21	Show	GitHub Exploit DB Packet Storm

216860	5	警告	IBM	-	IBM Sterling B2B Integrator のパスワード変更機能における管理者のアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-6099	2014-10-29 14:25	2014-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296861	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3614	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296862	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3613	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296863	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3612	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296864	-	apple	itunes iphone_os	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3607	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296865	-	apple	itunes iphone_os	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3606	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296866	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3602	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296867	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3601	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296868	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3598	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296869	-	cisco	unified_presence jabber_extensible_communications_platform	Cisco Unified Presence (CUP) before 8.6(3) and Jabber Extensible Communications Platform (aka Jabber XCP) before 5.3 allow remote attackers to cause a denial of service (process crash) via a crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3935	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

296870	-	oscc nurul_hidayah_hamazulan	mymeeting mymesyuarat	Open Source Competency Center (OSCC) MyMeeting 3.0.1 and earlier, and MyMesyuarat 09b-1, does not properly verify uploaded documents, which allows remote authenticated users to execute arbitrary PHP …	CWE-20 Improper Input Validation	CVE-2012-3572	2024-11-21 10:41	2012-09-12	Show	GitHub Exploit DB Packet Storm