Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217081 6.8 警告 Tips and Tricks HQ - WordPress 用 WordPress Simple Paypal Shopping Cart プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2705 2014-05-16 12:11 2013-06-5 Show GitHub Exploit DB Packet Storm
217082 4.3 警告 NetWebLogic - WordPress 用 Events Manager プラグインおよび Events Manager Pro プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1407 2014-05-16 12:10 2013-01-22 Show GitHub Exploit DB Packet Storm
217083 7.5 危険 Drupalauth Project - simpleSAMLphp 用 drupalauth モジュールの lib/Auth/Source/External.php における任意のユーザとして認証される脆弱性 CWE-287
不適切な認証 		CVE-2013-4552 2014-05-16 11:16 2013-11-4 Show GitHub Exploit DB Packet Storm
217084 2.6 注意 Dan Wilga - Monster Menus モジュールにおける任意のノードコメントを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4504 2014-05-16 11:05 2013-10-29 Show GitHub Exploit DB Packet Storm
217085 2.1 注意 Alex Barth - Drupal 用 Feed Element Mapper モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4503 2014-05-16 11:03 2013-10-30 Show GitHub Exploit DB Packet Storm
217086 4 警告 Nathan Haug - Drupal 用 FileField Sources モジュールにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4502 2014-05-16 11:03 2013-10-30 Show GitHub Exploit DB Packet Storm
217087 5 警告 Quiz Module Project - Drupal 用 Quiz モジュールのデフォルトの View における重要なクイズ結果を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4501 2014-05-16 11:02 2013-10-30 Show GitHub Exploit DB Packet Storm
217088 4.9 警告 Quiz Module Project - Drupal 用 Quiz モジュールにおける任意のクイズ結果を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4500 2014-05-16 11:02 2013-10-30 Show GitHub Exploit DB Packet Storm
217089 6.8 警告 madeofcode - omniauth-facebook gem におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4562 2014-05-16 10:14 2013-11-12 Show GitHub Exploit DB Packet Storm
217090 6.8 警告 Atlassian - Atlassian Confluence の logout.action におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-6342 2014-05-15 17:17 2012-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294621 7.5 HIGH
Network 		cloudbees
jenkins 		jenkins Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote … CWE-400
 Uncontrolled Resource Consumption 		CVE-2012-0785 2024-11-21 10:35 2020-02-25 Show GitHub Exploit DB Packet Storm
294622 5.5 MEDIUM
Local 		netsurf-browser
debian 		netsurf
debian_linux 		Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar. CWE-200
Information Exposure 		CVE-2012-0844 2024-11-21 10:35 2020-02-22 Show GitHub Exploit DB Packet Storm
294623 9.8 CRITICAL
Network 		xchat-wdk
xchat
gnome 		xchat-wdk
xchat
gtk 		Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrar… CWE-787
 Out-of-bounds Write 		CVE-2012-0828 2024-11-21 10:35 2020-02-22 Show GitHub Exploit DB Packet Storm
294624 5.4 MEDIUM
Network 		ibm tivoli_endpoint_manager IBM Tivoli Endpoint Manager 8 does not set the HttpOnly flag on cookies. NVD-CWE-Other
CVE-2012-0718 2024-11-21 10:35 2020-02-19 Show GitHub Exploit DB Packet Storm
294625 5.5 MEDIUM
Local 		linux linux_kernel The int3 handler in the Linux kernel before 3.3 relies on a per-CPU debug stack, which allows local users to cause a denial of service (stack corruption and panic) via a crafted application that trig… CWE-400
 Uncontrolled Resource Consumption 		CVE-2012-0810 2024-11-21 10:35 2020-02-12 Show GitHub Exploit DB Packet Storm
294626 7.5 HIGH
Network 		python
redhat 		pyxml
enterprise_linux
enterprise_virtualization_hypervisor 		PyXML: Hash table collisions CPU usage Denial of Service CWE-400
 Uncontrolled Resource Consumption 		CVE-2012-0877 2024-11-21 10:35 2019-11-23 Show GitHub Exploit DB Packet Storm
294627 6.1 MEDIUM
Network 		postfix_admin_project
debian 		postfix_admin
debian_linux 		PostfixAdmin 2.3.4 has multiple XSS vulnerabilities CWE-79
Cross-site Scripting 		CVE-2012-0812 2024-11-21 10:35 2019-11-23 Show GitHub Exploit DB Packet Storm
294628 5.5 MEDIUM
Local 		uzbl
debian 		uzbl
debian_linux 		uzbl: Information disclosure via world-readable cookies storage file CWE-200
Information Exposure 		CVE-2012-0843 2024-11-21 10:35 2019-11-20 Show GitHub Exploit DB Packet Storm
294629 9.8 CRITICAL
Network 		gnu gnusound gnusound 0.7.5 has format string issue CWE-134
Use of Externally-Controlled Format String 		CVE-2012-0824 2024-11-21 10:35 2019-11-20 Show GitHub Exploit DB Packet Storm
294630 5.5 MEDIUM
Local 		suckless
debian 		surf
debian_linux 		surf: cookie jar has read access from other local user CWE-200
Information Exposure 		CVE-2012-0842 2024-11-21 10:35 2019-11-20 Show GitHub Exploit DB Packet Storm