Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217211 2.1 注意 レッドハット - Red Hat Enterprise Virtualization Manager データウェアハウスパッケージで使用される ovirt-engine-dwh における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-0202 2014-06-3 15:47 2014-05-27 Show GitHub Exploit DB Packet Storm
217212 4.3 警告 IBM - IBM WebSphere Service Registry and Repository の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3010 2014-06-3 15:43 2014-05-19 Show GitHub Exploit DB Packet Storm
217213 3.5 注意 IBM - IBM Sterling Control Center におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-0925 2014-06-3 15:42 2014-05-16 Show GitHub Exploit DB Packet Storm
217214 6.5 警告 IBM - Windows 上で稼働する IBM DB2 のストアドプロシージャのインフラストラクチャにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6744 2014-06-3 15:39 2013-11-8 Show GitHub Exploit DB Packet Storm
217215 9 危険 VMware - VMware vCenter Server Appliance の Ruby vSphere Console における任意のコマンドを root として実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3790 2014-06-3 15:20 2014-05-30 Show GitHub Exploit DB Packet Storm
217216 7.5 危険 シトリックス・システムズ - Citrix VDI-In-A-Box における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-3780 2014-06-3 14:55 2014-05-27 Show GitHub Exploit DB Packet Storm
217217 7.5 危険 Bitrix - Bitrix Site Manager 用 Bitrix e-Store モジュールにおける Cookie の値を推測される脆弱 CWE-287
不適切な認証 		CVE-2013-6788 2014-06-3 14:09 2013-11-12 Show GitHub Exploit DB Packet Storm
217218 5 警告 Open Information Security Foundation - Suricata におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5919 2014-06-3 13:57 2013-09-24 Show GitHub Exploit DB Packet Storm
217219 2.1 注意 David Bagley - xlockmore の checkPasswd および checkGroupXlockPasswds 関数におけるスクリーンロックを回避される脆弱性 CWE-Other
その他 		CVE-2013-4143 2014-06-3 13:52 2013-07-14 Show GitHub Exploit DB Packet Storm
217220 5 警告 Nero - Nero MediaHome におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-5877 2014-06-3 12:09 2012-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291891 - simon_brown pebble Open redirect vulnerability in Pebble before 2.6.4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2012-5170 2024-11-21 10:44 2012-11-5 Show GitHub Exploit DB Packet Storm
291892 - cisco prime_data_center_network_manager Cisco Prime Data Center Network Manager (DCNM) before 6.1(1) does not properly restrict access to certain JBoss MainDeployer functionality, which allows remote attackers to execute arbitrary commands… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5417 2024-11-21 10:44 2012-11-2 Show GitHub Exploit DB Packet Storm
291893 - cisco unified_meetingplace Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 allows remote attackers to cause a denial of service (daemon han… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5416 2024-11-21 10:44 2012-11-2 Show GitHub Exploit DB Packet Storm
291894 - siemens sipass_integrated AscoServer.exe in the server in Siemens SiPass integrated MP2.6 and earlier does not properly handle IOCP RPC messages received over an Ethernet network, which allows remote attackers to write data t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5409 2024-11-21 10:44 2012-11-1 Show GitHub Exploit DB Packet Storm
291895 - videolan vlc_media_player libpng_plugin in VideoLAN VLC media player 2.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted PNG file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5470 2024-11-21 10:44 2012-10-26 Show GitHub Exploit DB Packet Storm
291896 - phpmyadmin phpmyadmin phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained through an HTTP session to phpmyadmin.net without SSL, which allows man-in-the-middle attackers to conduct cross-site scripting (XS… CWE-79
Cross-site Scripting 		CVE-2012-5368 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
291897 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.3 allow remote authenticated users to inject arbitrary web script or HTML via a crafted name of (1) an event, (2) a … CWE-79
Cross-site Scripting 		CVE-2012-5339 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
291898 - zoner zoner_antivirus_free The Zoner AntiVirus Free application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field of the X.509 certificate, which allows man-in-t… CWE-310
Cryptographic Issues 		CVE-2012-5456 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
291899 - videousermanuals white-label-cms Cross-site scripting (XSS) vulnerability in wlcms-plugin.php in the White Label CMS plugin 1.5 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting 		CVE-2012-5388 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
291900 - videousermanuals white-label-cms Cross-site request forgery (CSRF) vulnerability in wlcms-plugin.php in the White Label CMS plugin before 1.5.1 for WordPress allows remote attackers to hijack the authentication of administrators for… CWE-352
 Origin Validation Error 		CVE-2012-5387 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm