Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216861 6.5 警告 IBM - 複数の IBM 製品における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4016 2014-05-28 14:45 2013-06-7 Show GitHub Exploit DB Packet Storm
216862 3.5 注意 IBM - IBM Maximo Asset Management および SmartCloud Control Desk の frontcontroller.jsp における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2998 2014-05-28 14:45 2013-04-12 Show GitHub Exploit DB Packet Storm
216863 4.3 警告 IBM - IBM Maximo Asset Management および SmartCloud Control Desk における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2012-3333 2014-05-28 14:44 2012-06-7 Show GitHub Exploit DB Packet Storm
216864 6.8 警告 IBM - IBM Sametime Proxy Server and Web Client の WebPlayer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3015 2014-05-28 14:30 2014-05-21 Show GitHub Exploit DB Packet Storm
216865 5 警告 IBM - IBM Sametime の Meeting Server における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-3867 2014-05-28 14:29 2014-05-21 Show GitHub Exploit DB Packet Storm
216866 4.3 警告 IBM - IBM Sametime の Meeting Server におけるユーザの検索アクションを行われる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0906 2014-05-28 14:28 2014-05-21 Show GitHub Exploit DB Packet Storm
216867 5 警告 IBM - IBM Sametime の Meeting Server における Cookie をキャプチャされる脆弱性 CWE-200
情報漏えい 		CVE-2013-3984 2014-05-28 14:28 2013-06-7 Show GitHub Exploit DB Packet Storm
216868 5 警告 IBM - IBM Sametime の Meeting Server における不特定のインストール情報および技術データを取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3982 2014-05-28 14:27 2013-06-7 Show GitHub Exploit DB Packet Storm
216869 5 警告 IBM - IBM Sametime の Meeting Server における任意のユーザのアバターの写真をダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3981 2014-05-28 14:27 2013-06-7 Show GitHub Exploit DB Packet Storm
216870 5 警告 IBM - IBM Sametime の Meeting Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3980 2014-05-28 14:26 2013-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295441 - microsoft internet_explorer Microsoft Internet Explorer 9 does not properly handle the creation and initialization of string objects, which allows remote attackers to read data from arbitrary process-memory locations via a craf… CWE-665
 Improper Initialization 		CVE-2012-0012 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
295442 - microsoft internet_explorer Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "HTML Layout Remote Code… CWE-94
Code Injection 		CVE-2012-0011 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
295443 - microsoft internet_explorer Microsoft Internet Explorer 6 through 9 does not properly perform copy-and-paste operations, which allows user-assisted remote attackers to read content from a different (1) domain or (2) zone via a … CWE-200
Information Exposure 		CVE-2012-0010 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
295444 - cisco ironport_encryption_appliance Cross-site scripting (XSS) vulnerability in the management interface on the Cisco IronPort Encryption Appliance with software before 6.5.3 allows remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting 		CVE-2012-0340 2024-11-21 10:34 2012-02-14 Show GitHub Exploit DB Packet Storm
295445 - emc documentum_xplore EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0396 2024-11-21 10:34 2012-02-7 Show GitHub Exploit DB Packet Storm
295446 - ibm aix The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service (assertion failure and panic) via an unspecifi… NVD-CWE-noinfo
CVE-2012-0194 2024-11-21 10:34 2012-02-7 Show GitHub Exploit DB Packet Storm
295447 - symantec pcanywhere
altiris_client_management_suite_pcanywhere_solution
altiris_deployment_solution_remote_pcanywhere_solution 		Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1… NVD-CWE-noinfo
CVE-2012-0290 2024-11-21 10:34 2012-02-7 Show GitHub Exploit DB Packet Storm
295448 - emobile pocket_wifi_firmware
pocket_wifi 		Multiple cross-site request forgery (CSRF) vulnerabilities on the eAccess Pocket WiFi (aka GP02) router before 2.00 with firmware 11.203.11.05.168 and earlier allow remote attackers to hijack the aut… CWE-352
 Origin Validation Error 		CVE-2012-0314 2024-11-21 10:34 2012-02-3 Show GitHub Exploit DB Packet Storm
295449 - mozilla bugzilla Bugzilla 2.x and 3.x before 3.4.14, 3.5.x and 3.6.x before 3.6.8, 3.7.x and 4.0.x before 4.0.4, and 4.1.x and 4.2.x before 4.2rc2 does not reject non-ASCII characters in e-mail addresses of new user … CWE-20
 Improper Input Validation  		CVE-2012-0448 2024-11-21 10:34 2012-02-3 Show GitHub Exploit DB Packet Storm
295450 - mozilla bugzilla Cross-site request forgery (CSRF) vulnerability in jsonrpc.cgi in Bugzilla 3.5.x and 3.6.x before 3.6.8, 3.7.x and 4.0.x before 4.0.4, and 4.1.x and 4.2.x before 4.2rc2 allows remote attackers to hij… CWE-352
 Origin Validation Error 		CVE-2012-0440 2024-11-21 10:34 2012-02-3 Show GitHub Exploit DB Packet Storm