Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217071 5 警告 シスコシステムズ - Cisco Unified Communications Domain Manager Platform Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-3380 2014-09-25 19:16 2014-09-22 Show GitHub Exploit DB Packet Storm
217072 4.3 警告 シスコシステムズ - VMware 用 Cisco Nexus 1000V InterCloud の vCloud Director コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3367 2014-09-25 19:15 2014-09-22 Show GitHub Exploit DB Packet Storm
217073 3.5 注意 IBM - IBM Curam Social Program Management におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6091 2014-09-25 18:35 2014-09-19 Show GitHub Exploit DB Packet Storm
217074 5 警告 IBM - IBM Rational ClearQuest における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-3106 2014-09-25 18:35 2014-09-17 Show GitHub Exploit DB Packet Storm
217075 5 警告 IBM - IBM Rational ClearQuest の Web コンポーネントの OSLC 統合機能におけるアカウント名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2014-3105 2014-09-25 18:35 2014-09-17 Show GitHub Exploit DB Packet Storm
217076 5 警告 IBM - IBM Rational ClearQuest におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-3104 2014-09-25 18:35 2014-09-17 Show GitHub Exploit DB Packet Storm
217077 5 警告 IBM - IBM Rational ClearQuest の Web コンポーネントにおけるセッション Cookie をキャプチャされる脆弱性 CWE-200
情報漏えい 		CVE-2014-3103 2014-09-25 18:35 2014-09-17 Show GitHub Exploit DB Packet Storm
217078 5 警告 IBM - IBM Rational ClearQuest の Web コンポーネントのログインフォームにおけるアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2014-3101 2014-09-25 18:35 2014-09-17 Show GitHub Exploit DB Packet Storm
217079 5 警告 IBM - IBM Rational ClearCase におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-3090 2014-09-25 18:35 2014-09-17 Show GitHub Exploit DB Packet Storm
217080 10 危険 アドビシステムズ - Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-0560 2014-09-25 18:00 2014-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296881 - moodle moodle The question-bank functionality in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass intended capability requirements and save questions via a save_question… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2356 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
296882 - moodle moodle Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass question:use* capability requirements and add arbitrary questions to a quiz via the questions feature. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2355 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
296883 - moodle moodle Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/site:readallmessages capability requirement and read arbitrary messages by using the "Recent co… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2354 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
296884 - moodle moodle Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled u… CWE-200
Information Exposure 		CVE-2012-2353 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
296885 - florian_weber spaces The Spaces module 6.x-3.x before 6.x-3.4 for Drupal does not enforce permissions on non-object pages, which allows remote attackers to obtain sensitive information and possibly have other impacts via… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2303 2024-11-21 10:38 2012-07-19 Show GitHub Exploit DB Packet Storm
296886 - rubygems mail_gem The Mail gem before 2.4.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery. CWE-20
 Improper Input Validation  		CVE-2012-2140 2024-11-21 10:38 2012-07-19 Show GitHub Exploit DB Packet Storm
296887 - rubygems mail_gem Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. (dot dot) in the… CWE-22
Path Traversal 		CVE-2012-2139 2024-11-21 10:38 2012-07-19 Show GitHub Exploit DB Packet Storm
296888 - mozilla firefox
thunderbird
thunderbird_esr
seamonkey 		Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not properly implement the JavaScript … NVD-CWE-Other
CVE-2012-1967 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm
296889 - mozilla firefox Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cro… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1966 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm
296890 - mozilla firefox Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not properly establish the security context of a feed: URL, which allows remote attackers to bypass unspecified cross-site scrip… CWE-79
Cross-site Scripting 		CVE-2012-1965 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm