Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217031 6.8 警告 SimpleRisk - SimpleRisk の management/prioritize_planning.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5748 2014-05-14 12:20 2013-09-16 Show GitHub Exploit DB Packet Storm
217032 6.4 警告 Microweber - Microweber の userfiles/modules/admin/backup/delete.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5984 2014-05-14 11:53 2013-09-26 Show GitHub Exploit DB Packet Storm
217033 7.5 危険 Mark Evans - Ruby 用 fog-dragonfly gem の lib/dragonfly/imagemagickutils.rb における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2013-5671 2014-05-14 11:46 2013-08-16 Show GitHub Exploit DB Packet Storm
217034 6.8 警告 MediaWiki - MediaWiki 用 SemanticForms 拡張機能の特別ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3455 2014-05-14 11:45 2013-11-13 Show GitHub Exploit DB Packet Storm
217035 6.8 警告 MediaWiki - MediaWiki 用 SemanticForms 拡張機能の Special:CreateCategory におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3454 2014-05-14 11:44 2013-11-13 Show GitHub Exploit DB Packet Storm
217036 5 警告 MediaWiki - MediaWiki における削除されたページについての情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-6472 2014-05-14 11:44 2013-12-19 Show GitHub Exploit DB Packet Storm
217037 4.3 警告 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6454 2014-05-14 11:43 2013-12-13 Show GitHub Exploit DB Packet Storm
217038 7.5 危険 MediaWiki - MediaWiki における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6453 2014-05-14 11:43 2013-12-16 Show GitHub Exploit DB Packet Storm
217039 4.3 警告 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6452 2014-05-14 11:42 2013-11-25 Show GitHub Exploit DB Packet Storm
217040 4.3 警告 SpringSource - Spring Framework の Spring MVC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1904 2014-05-14 10:35 2014-02-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294761 - apple mac_os_x Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or networked home directories are enabled, does not properly restrict what is written to the system log for network logins, which allows … CWE-200
Information Exposure 		CVE-2012-0652 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
294762 - apple mac_os_x
mac_os_x_server 		The directory server in Directory Service in Apple Mac OS X 10.6.8 allows remote attackers to obtain sensitive information from process memory via a crafted message. CWE-200
Information Exposure 		CVE-2012-0651 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
294763 - apple mac_os_x
mac_os_x_server 		Race condition in the initialization routine in blued in Bluetooth in Apple Mac OS X before 10.7.4 allows local users to gain privileges via vectors involving a temporary file. CWE-362
Race Condition 		CVE-2012-0649 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
294764 - xnview xnview Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684. CWE-189
Numeric Errors 		CVE-2012-0685 2024-11-21 10:35 2012-05-9 Show GitHub Exploit DB Packet Storm
294765 - xnview xnview Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0685. CWE-189
Numeric Errors 		CVE-2012-0684 2024-11-21 10:35 2012-05-9 Show GitHub Exploit DB Packet Storm
294766 - adobe illustrator
illustrator_cs5.5 		Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2023, CVE-201… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0780 2024-11-21 10:35 2012-05-9 Show GitHub Exploit DB Packet Storm
294767 - adobe flash_cs3
flash_cs4
flash_cs5.5 		Buffer overflow in Adobe Flash Professional before CS6 allows attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0778 2024-11-21 10:35 2012-05-9 Show GitHub Exploit DB Packet Storm
294768 - apple iphone_os Safari in Apple iOS before 5.1.1 allows remote attackers to spoof the location bar's URL via a crafted web site. CWE-20
 Improper Input Validation  		CVE-2012-0674 2024-11-21 10:35 2012-05-8 Show GitHub Exploit DB Packet Storm
294769 - apple iphone_os WebKit in Apple iOS before 5.1.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0672 2024-11-21 10:35 2012-05-8 Show GitHub Exploit DB Packet Storm
294770 - adobe flash_player Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attack… NVD-CWE-noinfo
CVE-2012-0779 2024-11-21 10:35 2012-05-5 Show GitHub Exploit DB Packet Storm