Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216911 7.5 危険 Cogent Real-Time Systems Inc. - Cogent Real-Time Systems Cogent DataHub の Web サーバにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-3788 2014-05-26 14:42 2014-04-29 Show GitHub Exploit DB Packet Storm
216912 6.5 警告 Bizagi - Bizagi BPM Suite の workflowenginesoa.asmx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2948 2014-05-26 14:04 2014-05-22 Show GitHub Exploit DB Packet Storm
216913 4.3 警告 Bizagi - Bizagi BPM Suite の Login.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2947 2014-05-26 14:03 2014-05-22 Show GitHub Exploit DB Packet Storm
216914 4 警告 IBM - IBM WebSphere Portal におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0959 2014-05-26 12:15 2014-05-13 Show GitHub Exploit DB Packet Storm
216915 4.3 警告 IBM - IBM WebSphere Portal の googlemap.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0956 2014-05-26 12:14 2014-05-13 Show GitHub Exploit DB Packet Storm
216916 4.3 警告 IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0955 2014-05-26 12:13 2014-05-13 Show GitHub Exploit DB Packet Storm
216917 4.3 警告 IBM - IBM WebSphere Portal の boot_config.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0952 2014-05-26 12:12 2014-05-13 Show GitHub Exploit DB Packet Storm
216918 4.3 警告 IBM - IBM WebSphere Portal の FilterForm.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0951 2014-05-26 12:12 2014-05-13 Show GitHub Exploit DB Packet Storm
216919 5 警告 IBM - IBM WebSphere Portal におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-0949 2014-05-26 12:11 2014-05-13 Show GitHub Exploit DB Packet Storm
216920 7.5 危険 Wojtek Kaniewski - Pidgin およびその他の製品で使用される libgadu におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3775 2014-05-26 12:02 2014-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293591 - opensuse
google 		opensuse
chrome 		Google Chrome before 21.0.1180.89 does not properly load URLs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a "stale b… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2869 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293592 - opensuse
google 		opensuse
chrome 		Race condition in Google Chrome before 21.0.1180.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving improper interaction between w… CWE-362
Race Condition 		CVE-2012-2868 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293593 - opensuse
google 		opensuse
chrome 		The SPDY implementation in Google Chrome before 21.0.1180.89 allows remote attackers to cause a denial of service (application crash) via unspecified vectors. NVD-CWE-noinfo
CVE-2012-2867 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293594 - opensuse
google 		opensuse
chrome 		Google Chrome before 21.0.1180.89 does not properly perform a cast of an unspecified variable during handling of run-in elements, which allows remote attackers to cause a denial of service or possibl… NVD-CWE-noinfo
CVE-2012-2866 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293595 - opensuse
google 		opensuse
chrome 		Google Chrome before 21.0.1180.89 does not properly perform line breaking, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2865 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293596 - unixodbc unixodbc Buffer overflow in the SQLDriverConnect function in unixODBC 2.3.1 allows local users to cause a denial of service (crash) via a long string in the DRIVER option. NOTE: this issue might not be a vuln… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2658 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293597 - unixodbc unixodbc Buffer overflow in the SQLDriverConnect function in unixODBC 2.0.10, 2.3.1, and earlier allows local users to cause a denial of service (crash) via a long string in the FILEDSN option. NOTE: this iss… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2657 2024-11-21 10:39 2012-09-1 Show GitHub Exploit DB Packet Storm
293598 - otrs otrs
otrs_itsm 		Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.13, 3.0.x before 3.0.15, and 3.1.x before 3.1.9, and OTRS ITSM 2.1.x before 2.1.5, … CWE-79
Cross-site Scripting 		CVE-2012-2582 2024-11-21 10:39 2012-08-23 Show GitHub Exploit DB Packet Storm
293599 - apache http_server Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiVi… CWE-79
Cross-site Scripting 		CVE-2012-2687 2024-11-21 10:39 2012-08-23 Show GitHub Exploit DB Packet Storm
293600 - google chrome_os Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2864 2024-11-21 10:39 2012-08-22 Show GitHub Exploit DB Packet Storm