Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217011 5.5 警告 シスコシステムズ - Cisco Unified Communications Manager の Real Time Monitoring Tool の実装における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3292 2014-06-11 17:10 2014-06-10 Show GitHub Exploit DB Packet Storm
217012 4 警告 シスコシステムズ - Cisco Unified Communications Domain Manager の Java インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3287 2014-06-11 17:09 2014-06-9 Show GitHub Exploit DB Packet Storm
217013 4.3 警告 シスコシステムズ - Cisco AsyncOS 製品にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3289 2014-06-11 16:37 2014-06-10 Show GitHub Exploit DB Packet Storm
217014 6 警告 (複数のベンダ) - 複数製品の UEFI ファームウェアの実装に脆弱性 - CVE-2014-2961 2014-06-11 16:19 2014-06-9 Show GitHub Exploit DB Packet Storm
217015 4.3 警告 Misery Project - Drupal 用 Misery モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4599 2014-06-11 15:55 2013-11-13 Show GitHub Exploit DB Packet Storm
217016 4 警告 Rik de Boer - Drupal 用 Revisioning モジュールにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4597 2014-06-11 15:54 2013-11-13 Show GitHub Exploit DB Packet Storm
217017 5 警告 Gordon Heydon - Drupal 用 Secure Pages モジュールにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-4595 2014-06-11 15:54 2013-11-6 Show GitHub Exploit DB Packet Storm
217018 4 警告 Marc Ferran - Drupal 用 Autocomplete Widgets for Text and Number Fields モジュールにおける重要なフィールドの値を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1973 2014-06-11 15:53 2013-04-17 Show GitHub Exploit DB Packet Storm
217019 4.3 警告 Jojo Open Source Content Management System - Jojo CMS の plugins/jojo_core/forgot_password.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3082 2014-06-11 15:32 2013-05-7 Show GitHub Exploit DB Packet Storm
217020 7.5 危険 Jojo Open Source Content Management System - Jojo CMS の plugins/jojo_core/classes/Jojo.php の checkEmailFormat 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3081 2014-06-11 15:32 2013-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292171 - trustwave
opensuse
fedoraproject 		modsecurity
opensuse
fedora 		The mod_security2 module before 2.7.0 for the Apache HTTP Server allows remote attackers to bypass rules, and deliver arbitrary POST data to a PHP application, via a multipart request in which an inv… NVD-CWE-noinfo
CVE-2012-4528 2024-11-21 10:43 2012-12-28 Show GitHub Exploit DB Packet Storm
292172 - emc data_protection_advisor Directory traversal vulnerability in the Web UI in EMC Data Protection Advisor (DPA) 5.6 through SP1, 5.7 through SP1, and 5.8 through SP4 allows remote attackers to read arbitrary files via unspecif… CWE-22
Path Traversal 		CVE-2012-4616 2024-11-21 10:43 2012-12-27 Show GitHub Exploit DB Packet Storm
292173 - ibm rational_automation_framework IBM Rational Automation Framework (RAF) 3.x through 3.0.0.5 allows remote attackers to bypass intended Env Gen Wizard (aka Environment Generation Wizard) access restrictions by visiting context roots… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4816 2024-11-21 10:43 2012-12-27 Show GitHub Exploit DB Packet Storm
292174 - siemens ros
rox_i_os
rox_ii_os
ruggedmax_os 		Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH commun… CWE-200
Information Exposure 		CVE-2012-4698 2024-11-21 10:43 2012-12-24 Show GitHub Exploit DB Packet Storm
292175 - ibm tivoli_storage_manager_for_space_management Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management (aka TSM HSM) before 6.2.5.0 and 6.3.x before 6.3.1.0 allows local users to read or modify file system objects via unknown… NVD-CWE-noinfo
CVE-2012-4859 2024-11-21 10:43 2012-12-21 Show GitHub Exploit DB Packet Storm
292176 - linux linux_kernel The tcp_illinois_info function in net/ipv4/tcp_illinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcp_congestion_control illinois setting is enabled, allows local users to cause a denial… CWE-189
Numeric Errors 		CVE-2012-4565 2024-11-21 10:43 2012-12-21 Show GitHub Exploit DB Packet Storm
292177 - linux linux_kernel Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as unini… CWE-362
Race Condition 		CVE-2012-4508 2024-11-21 10:43 2012-12-21 Show GitHub Exploit DB Packet Storm
292178 - ibm power_5_system_firmware
power_5 		The Service Processor in the IBM Power 5 91##-### and 940#-### before SF240_418_382 does not ensure that firewall code is executed, which allows remote attackers to execute arbitrary code via unspeci… CWE-255
Credentials Management 		CVE-2012-4856 2024-11-21 10:43 2012-12-20 Show GitHub Exploit DB Packet Storm
292179 - ibm rational_clearquest The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element. NVD-CWE-noinfo
CVE-2012-4839 2024-11-21 10:43 2012-12-20 Show GitHub Exploit DB Packet Storm
292180 - ibm lotus_foundations_start Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a Webconfig Users user-att… CWE-79
Cross-site Scripting 		CVE-2012-4848 2024-11-21 10:43 2012-12-19 Show GitHub Exploit DB Packet Storm