Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217061	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/dsputil.c における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2013-7010	2014-04-8 09:42	2013-08-30	Show	GitHub Exploit DB Packet Storm

217062	2.6	注意	オラクル	-	Oracle Java SE および JavaFX における脆弱性	CWE-noinfo 情報不足	CVE-2013-5854	2014-04-7 18:06	2013-10-15	Show	GitHub Exploit DB Packet Storm

217063	5	警告	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player におけるクリップボードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-0504	2014-04-7 18:06	2014-03-11	Show	GitHub Exploit DB Packet Storm

217064	6.9	警告	freedesktop.org Canonical	-	udisks におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0004	2014-04-7 18:05	2014-03-10	Show	GitHub Exploit DB Packet Storm

217065	6.4	警告	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0503	2014-04-7 18:04	2014-03-11	Show	GitHub Exploit DB Packet Storm

217066	7.6	危険	サン・マイクロシステムズオラクル	-	Oracle Java SE および Java SE Embedded における Deployment に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5852	2014-04-7 18:03	2013-10-15	Show	GitHub Exploit DB Packet Storm

217067	5	警告	Mutt	-	Mutt の copy.c におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0467	2014-04-7 18:02	2014-03-12	Show	GitHub Exploit DB Packet Storm

217068	9.3	危険	オラクル	-	Oracle Java SE および JavaFX における JavaFX に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5846	2014-04-7 18:02	2013-10-15	Show	GitHub Exploit DB Packet Storm

217069	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-6671	2014-04-7 18:01	2013-12-10	Show	GitHub Exploit DB Packet Storm

217070	6.4	警告	Apache Software Foundation	-	Apache Solr の DocumentAnalysisRequestHandler における脆弱性	CWE-noinfo 情報不足	CVE-2013-6408	2014-04-7 17:57	2013-05-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295151	-	sitracker	support_incident_tracker	Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) 3.65 allow remote attackers to hijack the authentication of user for requests that delete a user via …	CWE-352 Origin Validation Error	CVE-2011-5068	2024-11-21 10:33	2012-01-29	Show	GitHub Exploit DB Packet Storm

295152	-	sitracker	support_incident_tracker	move_uploaded_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error…	CWE-200 Information Exposure	CVE-2011-5067	2024-11-21 10:33	2012-01-29	Show	GitHub Exploit DB Packet Storm

295153	-	tencent	qqpphoto	The Tencent QQPhoto (com.tencent.qqphoto) application 0.97 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a password hash via a cr…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-4867	2024-11-21 10:33	2012-01-25	Show	GitHub Exploit DB Packet Storm

295154	-	kaixin001	kaixin001	The Kaixin001 (com.kaixin001.activity) application 1.3.1 and 1.3.3 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a cleartext pass…	CWE-200 Information Exposure	CVE-2011-4866	2024-11-21 10:33	2012-01-25	Show	GitHub Exploit DB Packet Storm

295155	-	tencent	microblogpad wblog	The Tencent WBlog (com.tencent.WBlog) 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search key…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-4865	2024-11-21 10:33	2012-01-25	Show	GitHub Exploit DB Packet Storm

295156	-	tencent	mobileqq	The Tencent MobileQQ (com.tencent.mobileqq) application 2.2 for Android does not properly protect data, which allows remote attackers to read or modify messages and a friends list via a crafted appli…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-4864	2024-11-21 10:33	2012-01-25	Show	GitHub Exploit DB Packet Storm

295157	-	tencent	qqpimsecure	The Tencent QQPimSecure (com.tencent.qqpimsecure) application 3.0.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS/MMS messages and a contact list via…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-4863	2024-11-21 10:33	2012-01-25	Show	GitHub Exploit DB Packet Storm

295158	-	atvise	atvise	Unspecified vulnerability in the server in Certec EDV atvise before 2.1 allows remote attackers to cause a denial of service (daemon crash) via crafted requests to TCP port 4840.	NVD-CWE-noinfo	CVE-2011-4873	2024-11-21 10:33	2012-01-20	Show	GitHub Exploit DB Packet Storm

295159	-	ibm	websphere_application_server	The SibRaRecoverableSiXaResource class in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.41 does not properly handle a Service Integration Bus (SIB) dump o…	CWE-200 Information Exposure	CVE-2011-5066	2024-11-21 10:33	2012-01-15	Show	GitHub Exploit DB Packet Storm

295160	-	ibm	websphere_application_server	Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.41 allows remote attackers to inject arbitrary web script or HTML via vectors related to web messag…	CWE-79 Cross-site Scripting	CVE-2011-5065	2024-11-21 10:33	2012-01-15	Show	GitHub Exploit DB Packet Storm