Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217151 8.3 危険 Linux Foundation - cups-filters の cups-browsed における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2014-2707 2014-05-13 16:46 2014-04-1 Show GitHub Exploit DB Packet Storm
217152 5 警告 DELL EMC (旧 EMC Corporation)
日立		 - EMC RSA BSAFE SSL-J の SSLEngine API 実装における脆弱な暗号スイートの選択を誘発される脆弱性 CWE-310
CWE-DesignError
CVE-2014-0627 2014-05-13 16:44 2014-02-14 Show GitHub Exploit DB Packet Storm
217153 5 警告 DELL EMC (旧 EMC Corporation)
日立		 - EMC RSA BSAFE SSL-J の API における暗号保護メカニズムを回避される脆弱性 CWE-310
CWE-DesignError
CVE-2014-0626 2014-05-13 16:44 2014-02-14 Show GitHub Exploit DB Packet Storm
217154 1.7 注意 ヒューレット・パッカード - 複数の HP 製品における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2603 2014-05-13 15:37 2014-05-9 Show GitHub Exploit DB Packet Storm
217155 4.3 警告 ヒューレット・パッカード - HP Network Node Manager i におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6220 2014-05-13 15:36 2013-10-21 Show GitHub Exploit DB Packet Storm
217156 4.9 警告 Linux - Linux Kernel の net/core/filter.c の sk_run_filter 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2014-3145 2014-05-13 15:26 2014-04-14 Show GitHub Exploit DB Packet Storm
217157 4.9 警告 Linux - Linux Kernel の net/core/filter.c の sk_run_filter 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2014-3144 2014-05-13 15:25 2014-04-14 Show GitHub Exploit DB Packet Storm
217158 4.9 警告 Linux - Linux Kernel の mm/rmap.c の try_to_unmap_cluster 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3122 2014-05-13 15:25 2014-05-6 Show GitHub Exploit DB Packet Storm
217159 9.3 危険 D-Link Systems, Inc. - D-Link DIR-505L SharePort Mobile Companion および DIR-826L Wireless N600 Cloud Router における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-4772 2014-05-13 14:30 2013-07-8 Show GitHub Exploit DB Packet Storm
217160 6.8 警告 GitLab.org - GitLab および gitlab-shell における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4581 2014-05-13 14:09 2013-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293821 - xarrow xarrow The server in xArrow before 3.4.1 performs an invalid read operation, which allows remote attackers to execute arbitrary code via unspecified vectors. CWE-189
Numeric Errors 		CVE-2012-2429 2024-11-21 10:39 2012-05-26 Show GitHub Exploit DB Packet Storm
293822 - xarrow xarrow Integer overflow in the server in xArrow before 3.4.1 allows remote attackers to execute arbitrary code via a crafted packet that triggers an out-of-bounds read operation. CWE-189
Numeric Errors 		CVE-2012-2428 2024-11-21 10:39 2012-05-26 Show GitHub Exploit DB Packet Storm
293823 - xarrow xarrow Heap-based buffer overflow in the server in xArrow before 3.4.1 allows remote attackers to execute arbitrary code via packets that trigger an invalid free operation. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2427 2024-11-21 10:39 2012-05-26 Show GitHub Exploit DB Packet Storm
293824 - xarrow xarrow The server in xArrow before 3.4.1 does not properly allocate memory, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via unspecified vectors. CWE-399
 Resource Management Errors 		CVE-2012-2426 2024-11-21 10:39 2012-05-26 Show GitHub Exploit DB Packet Storm
293825 - netweblogic login_with_ajax Cross-site scripting (XSS) vulnerability in login-with-ajax.php in the Login With Ajax (aka login-with-ajax) plugin before 3.0.4.1 for WordPress allows remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2012-2759 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
293826 - atlassian
gliffy 		jira
gliffy
confluence_server 		The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to re… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2928 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
293827 - tm_software tempo
tempo6.3.0
tempo6.3.2 		The TM Software Tempo plugin before 6.4.3.1, 6.5.x before 6.5.0.2, and 7.x before 7.0.3 for Atlassian JIRA does not properly restrict the capabilities of third-party XML parsers, which allows remote … CWE-399
 Resource Management Errors 		CVE-2012-2927 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
293828 - xelex mobiletrack The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted (1) FTP or (2) HTTP sessio… CWE-255
Credentials Management 		CVE-2012-2567 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
293829 - xelex mobiletrack The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a (1) LOCATE, (2) TRACK, (3) UPDATECFG, (4) UPDATE… CWE-287
CWE-20
Improper Authentication
 Improper Input Validation  		CVE-2012-2562 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
293830 - simple_php_agenda simple_php_agenda SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action. CWE-89
SQL Injection 		CVE-2012-2925 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm