Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217001 5 警告 SAP - SAP Web Services Tool におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-4008 2014-06-11 17:47 2014-06-6 Show GitHub Exploit DB Packet Storm
217002 5 警告 SAP - SAP Upgrade tools for ABAP におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-4007 2014-06-11 17:47 2014-06-6 Show GitHub Exploit DB Packet Storm
217003 5 警告 SAP - SAP Trader's and Scheduler's Workbench for Oil & Gas におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-4006 2014-06-11 17:46 2014-06-6 Show GitHub Exploit DB Packet Storm
217004 5 警告 SAP - SAP Brazil add-on におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-4005 2014-06-11 17:46 2014-06-6 Show GitHub Exploit DB Packet Storm
217005 5 警告 SAP - SAP Project System のコンポーネントにおけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-4004 2014-06-11 17:45 2014-06-6 Show GitHub Exploit DB Packet Storm
217006 7.5 危険 SAP - SAP NetWeaver の System Landscape Directory における情報を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4003 2014-06-11 17:45 2014-06-6 Show GitHub Exploit DB Packet Storm
217007 4 警告 シスコシステムズ - Cisco WebEx Meeting Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3294 2014-06-11 17:11 2014-06-9 Show GitHub Exploit DB Packet Storm
217008 5.5 警告 シスコシステムズ - Cisco Unified Communications Manager の Real Time Monitoring Tool の実装における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3292 2014-06-11 17:10 2014-06-10 Show GitHub Exploit DB Packet Storm
217009 4 警告 シスコシステムズ - Cisco Unified Communications Domain Manager の Java インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3287 2014-06-11 17:09 2014-06-9 Show GitHub Exploit DB Packet Storm
217010 4.3 警告 シスコシステムズ - Cisco AsyncOS 製品にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3289 2014-06-11 16:37 2014-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294431 - novell zenworks_configuration_management Directory traversal vulnerability in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote attackers to read arbitrary files via an opcode 0x21 request. CWE-22
Path Traversal 		CVE-2012-2215 2024-11-21 10:38 2012-04-10 Show GitHub Exploit DB Packet Storm
294432 - phpmyadmin phpmyadmin show_config_errors.php in phpMyAdmin 3.4.x before 3.4.10.2, when a configuration file does not exist, allows remote attackers to obtain sensitive information via a direct request, which reveals the i… CWE-200
Information Exposure 		CVE-2012-1902 2024-11-21 10:38 2012-04-7 Show GitHub Exploit DB Packet Storm
294433 7.5 HIGH
Network 		github github GitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values for a model's attributes, which allows remote attackers to set the public_key[user_id] value via a mod… CWE-913
 Improper Control of Dynamically-Managed Code Resources 		CVE-2012-2055 2024-11-21 10:38 2012-04-5 Show GitHub Exploit DB Packet Storm
294434 - redmine redmine Redmine before 1.3.2 does not properly restrict the use of a hash to provide values for a model's attributes, which allows remote attackers to set attributes in the (1) Comment, (2) Document, (3) Iss… CWE-255
Credentials Management 		CVE-2012-2054 2024-11-21 10:38 2012-04-5 Show GitHub Exploit DB Packet Storm
294435 - f5 firepass The sudoers file in the Linux system configuration in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 does not require a password for executing commands as root, which allows local users to gain privileges… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2053 2024-11-21 10:38 2012-04-5 Show GitHub Exploit DB Packet Storm
294436 - socialcms socialcms Cross-site scripting (XSS) vulnerability in my_admin/admin1_list_pages.php in SocialCMS 1.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the TR_title par… CWE-79
Cross-site Scripting 		CVE-2012-1982 2024-11-21 10:38 2012-04-5 Show GitHub Exploit DB Packet Storm
294437 - privawall privawall_antivirus The scanner engine in PrivaWall Antivirus 5.6 and earlier does not recognize the Office XML (aka Open Document XML) file format, which allows remote attackers to bypass malware detection via a crafte… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1907 2024-11-21 10:38 2012-03-28 Show GitHub Exploit DB Packet Storm
294438 - realnetworks realplayer
realplayer_sp 		mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of servic… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1904 2024-11-21 10:38 2012-03-28 Show GitHub Exploit DB Packet Storm
294439 - opera opera_browser Opera before 11.62 on UNIX, when used in conjunction with an unspecified printing application, allows local users to overwrite arbitrary files via a symlink attack on a temporary file during printing. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1931 2024-11-21 10:38 2012-03-28 Show GitHub Exploit DB Packet Storm
294440 - opera opera_browser Opera before 11.62 on UNIX uses world-readable permissions for temporary files during printing, which allows local users to obtain sensitive information by reading these files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1930 2024-11-21 10:38 2012-03-28 Show GitHub Exploit DB Packet Storm