Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217071 4 警告 ownCloud - ownCloud Server における他のユーザのファイル名を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3838 2014-06-6 14:11 2014-04-29 Show GitHub Exploit DB Packet Storm
217072 4 警告 ownCloud - ownCloud Server の document アプリケーションにおける共有ファイルを列挙される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3837 2014-06-6 14:10 2014-04-29 Show GitHub Exploit DB Packet Storm
217073 6.8 警告 ownCloud - ownCloud Server におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3836 2014-06-6 14:10 2014-04-29 Show GitHub Exploit DB Packet Storm
217074 7.5 危険 ownCloud - ownCloud Server における LDAP インジェクション攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-2051 2014-06-6 14:09 2014-03-3 Show GitHub Exploit DB Packet Storm
217075 4 警告 ownCloud - ownCloud Server における任意のカレンダーを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0304 2014-06-6 14:08 2013-02-20 Show GitHub Exploit DB Packet Storm
217076 5 警告 ownCloud - ownCloud Server における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0302 2014-06-6 14:07 2013-02-17 Show GitHub Exploit DB Packet Storm
217077 7.5 危険 Php Scriptlerim. - Videos Tube における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3962 2014-06-6 12:20 2014-05-5 Show GitHub Exploit DB Packet Storm
217078 7.5 危険 xnau webdesign - WordPress 用 Participants Database プラグインの Export CSV ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3961 2014-06-6 12:15 2014-06-1 Show GitHub Exploit DB Packet Storm
217079 4.3 警告 OpenNMS - OpenNMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3960 2014-06-6 11:51 2014-06-2 Show GitHub Exploit DB Packet Storm
217080 4.3 警告 F5 Networks - 複数の F5 BIG-IP 製品の Configuration ユーティリティにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3959 2014-06-5 17:50 2014-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296131 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.43, 6.1 before 6.1.0.43, 7.0 before 7.0.0.23, and 8.0 before 8.0.0.3 computes hash values for form parameters without restricting the ability … CWE-20
 Improper Input Validation  		CVE-2012-0193 2024-11-21 10:34 2012-01-20 Show GitHub Exploit DB Packet Storm
296132 - openssl openssl OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NO… CWE-399
 Resource Management Errors 		CVE-2012-0050 2024-11-21 10:34 2012-01-20 Show GitHub Exploit DB Packet Storm
296133 - cisco digital_media_manager Cisco Digital Media Manager 5.2.2 and earlier, and 5.2.3, allows remote authenticated users to execute arbitrary code via vectors involving a URL and an administrative resource, aka Bug ID CSCts63878. CWE-94
Code Injection 		CVE-2012-0329 2024-11-21 10:34 2012-01-20 Show GitHub Exploit DB Packet Storm
296134 - yahoo messenger Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafte… CWE-189
Numeric Errors 		CVE-2012-0268 2024-11-21 10:34 2012-01-20 Show GitHub Exploit DB Packet Storm
296135 - gnu
eric_m_ludlam 		emacs
cedet 		Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project… NVD-CWE-Other
CVE-2012-0035 2024-11-21 10:34 2012-01-20 Show GitHub Exploit DB Packet Storm
296136 - apache tomcat Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consu… CWE-189
Numeric Errors 		CVE-2012-0022 2024-11-21 10:34 2012-01-19 Show GitHub Exploit DB Packet Storm
296137 - oracle
mysql 		mysql Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CV… NVD-CWE-noinfo
CVE-2012-0120 2024-11-21 10:34 2012-01-19 Show GitHub Exploit DB Packet Storm
296138 - oracle
mysql 		mysql Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CV… NVD-CWE-noinfo
CVE-2012-0119 2024-11-21 10:34 2012-01-19 Show GitHub Exploit DB Packet Storm
296139 - oracle
mysql 		mysql Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect confidentiality and availability via unknown vectors, a different v… NVD-CWE-noinfo
CVE-2012-0118 2024-11-21 10:34 2012-01-19 Show GitHub Exploit DB Packet Storm
296140 - oracle mysql Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-048… NVD-CWE-noinfo
CVE-2012-0117 2024-11-21 10:34 2012-01-19 Show GitHub Exploit DB Packet Storm