Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216941 5 警告 Plone Foundation - Plone の Products/CMFPlone/FactoryTool.py におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-7060 2014-05-7 17:37 2013-12-10 Show GitHub Exploit DB Packet Storm
216942 5 警告 エマソン - Emerson Avocent MergePoint Unity にディレクトリトラバーサルの脆弱性 CWE-22
CWE-Other
CVE-2013-6030  2014-05-7 17:24 2014-01-23 Show GitHub Exploit DB Packet Storm
216943 6.9 警告 fishshell - fish における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2905 2014-05-7 16:10 2014-04-28 Show GitHub Exploit DB Packet Storm
216944 7.5 危険 Dynamix Solutions - Ruby 用 Arabic Prawn gem の lib/string_utf_support.rb における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2014-2322 2014-05-7 16:02 2014-03-10 Show GitHub Exploit DB Packet Storm
216945 4.3 警告 シトリックス・システムズ - Citrix NetScaler Gateway におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1899 2014-05-7 15:39 2014-04-30 Show GitHub Exploit DB Packet Storm
216946 6.5 警告 Xerox - Xerox DocuShare における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3138 2014-05-7 15:07 2014-04-22 Show GitHub Exploit DB Packet Storm
216947 7.5 危険 Unitrends - Unitrends Enterprise Backup の recoveryconsole/bpl/snmpd.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-3139 2014-05-7 15:05 2014-04-15 Show GitHub Exploit DB Packet Storm
216948 4 警告 Core FTP - Core FTP Server における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-1443 2014-05-7 14:57 2014-01-30 Show GitHub Exploit DB Packet Storm
216949 4 警告 Core FTP - Core FTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1442 2014-05-7 14:57 2014-01-30 Show GitHub Exploit DB Packet Storm
216950 4.3 警告 Core FTP - Core FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2014-1441 2014-05-7 14:56 2014-01-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295011 - invensys wonderware_information_server SQL injection vulnerability in Invensys Wonderware Information Server 4.0 SP1 and 4.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2012-0226 2024-11-21 10:34 2012-04-3 Show GitHub Exploit DB Packet Storm
295012 - invensys wonderware_information_server Cross-site scripting (XSS) vulnerability in Invensys Wonderware Information Server 4.0 SP1 and 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-0225 2024-11-21 10:34 2012-04-3 Show GitHub Exploit DB Packet Storm
295013 - rockwellautomation rslogix_5000
factorytalk 		The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 allows remote attackers to cause a denial of service (out… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0222 2024-11-21 10:34 2012-04-3 Show GitHub Exploit DB Packet Storm
295014 - rockwellautomation rslogix_5000
factorytalk 		The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspeci… CWE-20
 Improper Input Validation  		CVE-2012-0221 2024-11-21 10:34 2012-04-3 Show GitHub Exploit DB Packet Storm
295015 - ecava integraxor Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via vectors involving an HTML document on th… CWE-22
Path Traversal 		CVE-2012-0246 2024-11-21 10:34 2012-04-2 Show GitHub Exploit DB Packet Storm
295016 - hp performance_manager Unspecified vulnerability in HP Performance Manager 9.00 allows remote attackers to execute arbitrary code via unknown vectors. NVD-CWE-noinfo
CVE-2012-0127 2024-11-21 10:34 2012-03-31 Show GitHub Exploit DB Packet Storm
295017 - cisco ios Memory leak in the H.323 inspection feature in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (memory consumption or device reloa… CWE-399
 Resource Management Errors 		CVE-2012-0388 2024-11-21 10:34 2012-03-29 Show GitHub Exploit DB Packet Storm
295018 - cisco ios Memory leak in the HTTP Inspection Engine feature in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (memory consumption or device… CWE-399
 Resource Management Errors 		CVE-2012-0387 2024-11-21 10:34 2012-03-29 Show GitHub Exploit DB Packet Storm
295019 - cisco ios
ios_xe 		The SSHv2 implementation in Cisco IOS 12.2, 12.4, 15.0, 15.1, and 15.2 and IOS XE 2.3.x through 2.6.x and 3.1.xS through 3.4.xS before 3.4.2S allows remote attackers to cause a denial of service (dev… CWE-310
Cryptographic Issues 		CVE-2012-0386 2024-11-21 10:34 2012-03-29 Show GitHub Exploit DB Packet Storm
295020 - cisco ios The Smart Install feature in Cisco IOS 12.2, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (device reload) by sending a malformed Smart Install message over TCP, aka Bug I… CWE-20
 Improper Input Validation  		CVE-2012-0385 2024-11-21 10:34 2012-03-29 Show GitHub Exploit DB Packet Storm