Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217091 4.9 警告 シトリックス・システムズ - Citrix XenDesktop における他のユーザのデスクトップへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4700 2014-07-14 17:31 2014-07-10 Show GitHub Exploit DB Packet Storm
217092 3.5 注意 OpenStack
Canonical		 - OpenStack Neutron の L3-agent におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4167 2014-07-14 17:30 2014-06-7 Show GitHub Exploit DB Packet Storm
217093 5 警告 Apache Software Foundation - Apache Syncope におけるパスワードを推測される脆弱性 CWE-310
暗号の問題 		CVE-2014-3503 2014-07-14 17:29 2014-05-21 Show GitHub Exploit DB Packet Storm
217094 7.2 危険 Docker
Fedora Project		 - Docker における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3499 2014-07-14 17:28 2014-07-1 Show GitHub Exploit DB Packet Storm
217095 4.3 警告 PNP4Nagios - PNP4Nagios におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4908 2014-07-14 16:21 2014-06-12 Show GitHub Exploit DB Packet Storm
217096 4.3 警告 op5
PNP4Nagios		 - PNP4Nagios の share/pnp/application/views/kohana_error_page.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4907 2014-07-14 16:20 2014-04-6 Show GitHub Exploit DB Packet Storm
217097 4.3 警告 Polldaddy Polls & Ratings plugin project - WordPress 用 Polldaddy Polls & Ratings プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4856 2014-07-14 15:53 2014-07-2 Show GitHub Exploit DB Packet Storm
217098 4.3 警告 Polylang project - WordPress 用 Polylang プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4855 2014-07-14 15:50 2014-06-24 Show GitHub Exploit DB Packet Storm
217099 4.3 警告 Ottawa PC & Mobile - WordPress 用 WP Construction Mode プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4854 2014-07-14 15:50 2014-06-28 Show GitHub Exploit DB Packet Storm
217100 6.5 警告 Dolibarr ERP & CRM - Dolibarr ERP/CRM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3992 2014-07-14 14:02 2014-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296531 - oracle siebel_crm Unspecified vulnerability in the Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Portal Framework. NVD-CWE-noinfo
CVE-2012-1728 2024-11-21 10:37 2012-07-18 Show GitHub Exploit DB Packet Storm
296532 - oracle e-business_suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote authenticated users to affe… NVD-CWE-noinfo
CVE-2012-1727 2024-11-21 10:37 2012-07-18 Show GitHub Exploit DB Packet Storm
296533 - oracle e-business_suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity, related to HTML Page… NVD-CWE-noinfo
CVE-2012-1715 2024-11-21 10:37 2012-07-18 Show GitHub Exploit DB Packet Storm
296534 - oracle
mariadb
redhat 		mysql
mariadb
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_eus 		Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.22 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. NVD-CWE-noinfo
CVE-2012-1689 2024-11-21 10:37 2012-07-18 Show GitHub Exploit DB Packet Storm
296535 - sun sunos Unspecified vulnerability in Oracle Solaris 10 and 11 allows local users to affect integrity and availability, related to Logical Domains (LDOM). NVD-CWE-noinfo
CVE-2012-1687 2024-11-21 10:37 2012-07-18 Show GitHub Exploit DB Packet Storm
296536 - christos_zoulas
tim_robbins 		file
libmagic 		file before 5.11 and libmagic allow remote attackers to cause a denial of service (crash) via a crafted Composite Document File (CDF) file that triggers (1) an out-of-bounds read or (2) an invalid po… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1571 2024-11-21 10:37 2012-07-18 Show GitHub Exploit DB Packet Storm
296537 - esri arcmap ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a c… CWE-94
Code Injection 		CVE-2012-1661 2024-11-21 10:37 2012-07-13 Show GitHub Exploit DB Packet Storm
296538 - suckless slock slock 0.9 does not properly handle the XRaiseWindow event when the screen is locked, which might allow physically proximate attackers to obtain sensitive information by pressing a button, which revea… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1620 2024-11-21 10:37 2012-07-13 Show GitHub Exploit DB Packet Storm
296539 - microsoft office Microsoft Office for Mac 2011 uses world-writable permissions for the "Applications/Microsoft Office 2011/" directory and certain other directories, which allows local users to gain privileges by pla… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1894 2024-11-21 10:37 2012-07-11 Show GitHub Exploit DB Packet Storm
296540 - microsoft windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not pro… CWE-20
 Improper Input Validation  		CVE-2012-1893 2024-11-21 10:37 2012-07-11 Show GitHub Exploit DB Packet Storm