Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217111 4.3 警告 dotCMS - dotCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3484 2014-04-4 18:53 2013-06-18 Show GitHub Exploit DB Packet Storm
217112 6.8 警告 GNU Project - a2ps の fixps スクリプトにおける任意のファイルを削除される脆弱性 CWE-noinfo
情報不足 		CVE-2014-0466 2014-04-4 18:24 2014-04-1 Show GitHub Exploit DB Packet Storm
217113 4.3 警告 Trojita team - Trojita の Imap/Tasks/OpenConnectionTask.cpp の OpenConnectionTask::handleStateHelper 関数における平文の使用を誘発される脆弱性 CWE-200
情報漏えい 		CVE-2014-2567 2014-04-4 18:12 2014-03-20 Show GitHub Exploit DB Packet Storm
217114 10 危険 Linux - Linux Kernel の net/netfilter/nf_conntrack_proto_dccp.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2523 2014-04-4 18:09 2014-01-6 Show GitHub Exploit DB Packet Storm
217115 6.8 警告 b2evolution - b2evolution の blogs/admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-7352 2014-04-4 16:19 2013-04-29 Show GitHub Exploit DB Packet Storm
217116 6.5 警告 b2evolution - b2evolution の blogs/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2945 2014-04-4 16:18 2013-04-29 Show GitHub Exploit DB Packet Storm
217117 7.5 危険 Cartpauj.com - WordPress 用 Mingle Forum プラグインの wpf.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0735 2014-04-4 16:08 2013-02-7 Show GitHub Exploit DB Packet Storm
217118 6.8 警告 XCloner - WordPress 用 XCloner プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2340 2014-04-4 16:07 2014-03-13 Show GitHub Exploit DB Packet Storm
217119 5.8 警告 レッドハット - Red Hat JBoss Enterprise Application Platform におけるアプリケーションに java.security.AllPermission パーミッションを付与される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0093 2014-04-4 14:45 2014-03-31 Show GitHub Exploit DB Packet Storm
217120 9.3 危険 Tracker Software Products - Tracker Software PDF-XChange におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0729 2014-04-4 14:27 2013-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293241 - pkp open_journal_systems Incomplete blacklist vulnerability in Open Journal Systems before 2.3.7 allows remote authenticated users with the Author Role permission to execute arbitrary code by uploading a file with an executa… NVD-CWE-Other
CVE-2012-1468 2024-11-21 10:37 2012-09-7 Show GitHub Exploit DB Packet Storm
293242 - pkp open_journal_systems Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to (1) delete or (2) rename arbitrary files… CWE-22
Path Traversal 		CVE-2012-1467 2024-11-21 10:37 2012-09-7 Show GitHub Exploit DB Packet Storm
293243 - scott_wheeler taglib Integer overflow in the mid function in toolkit/tbytevector.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted file header… CWE-189
Numeric Errors 		CVE-2012-1584 2024-11-21 10:37 2012-09-7 Show GitHub Exploit DB Packet Storm
293244 - coppermine-gallery coppermine_photo_gallery Coppermine Photo Gallery before 1.5.20 allows remote attackers to obtain sensitive information via (1) a direct request to plugins/visiblehookpoints/index.php, an invalid (2) page or (3) cat paramete… CWE-200
Information Exposure 		CVE-2012-1614 2024-11-21 10:37 2012-09-5 Show GitHub Exploit DB Packet Storm
293245 - coppermine-gallery coppermine_photo_gallery Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery before 1.5.20 allows remote authenticated users with certain privileges to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2012-1613 2024-11-21 10:37 2012-09-5 Show GitHub Exploit DB Packet Storm
293246 - typo3 typo3 The t3lib_div::RemoveXSS API method in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allows remote attackers to bypass the cross-site scripting (XSS) protection … CWE-20
 Improper Input Validation  		CVE-2012-1608 2024-11-21 10:37 2012-09-5 Show GitHub Exploit DB Packet Storm
293247 - typo3 typo3 The Command Line Interface (CLI) script in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allows remote attackers to obtain the database name via a direct request. CWE-200
Information Exposure 		CVE-2012-1607 2024-11-21 10:37 2012-09-5 Show GitHub Exploit DB Packet Storm
293248 - typo3 typo3 Multiple cross-site scripting (XSS) vulnerabilities in the Backend component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allow remote authenticated backend … CWE-79
Cross-site Scripting 		CVE-2012-1606 2024-11-21 10:37 2012-09-5 Show GitHub Exploit DB Packet Storm
293249 - typo3 typo3 The Extbase Framework in TYPO3 4.6.x through 4.6.6, 4.7, and 6.0 unserializes untrusted data, which allows remote attackers to unserialize arbitrary objects and possibly execute arbitrary code via ve… NVD-CWE-Other
CVE-2012-1605 2024-11-21 10:37 2012-09-5 Show GitHub Exploit DB Packet Storm
293250 - oracle jdk
jre 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via u… NVD-CWE-noinfo
CVE-2012-1682 2024-11-21 10:37 2012-08-31 Show GitHub Exploit DB Packet Storm