Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217211	2.1	注意	レッドハット	-	Red Hat Enterprise Virtualization Manager データウェアハウスパッケージで使用される ovirt-engine-dwh における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0202	2014-06-3 15:47	2014-05-27	Show	GitHub Exploit DB Packet Storm

217212	4.3	警告	IBM	-	IBM WebSphere Service Registry and Repository の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3010	2014-06-3 15:43	2014-05-19	Show	GitHub Exploit DB Packet Storm

217213	3.5	注意	IBM	-	IBM Sterling Control Center におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-0925	2014-06-3 15:42	2014-05-16	Show	GitHub Exploit DB Packet Storm

217214	6.5	警告	IBM	-	Windows 上で稼働する IBM DB2 のストアドプロシージャのインフラストラクチャにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6744	2014-06-3 15:39	2013-11-8	Show	GitHub Exploit DB Packet Storm

217215	9	危険	VMware	-	VMware vCenter Server Appliance の Ruby vSphere Console における任意のコマンドを root として実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3790	2014-06-3 15:20	2014-05-30	Show	GitHub Exploit DB Packet Storm

217216	7.5	危険	シトリックス・システムズ	-	Citrix VDI-In-A-Box における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-3780	2014-06-3 14:55	2014-05-27	Show	GitHub Exploit DB Packet Storm

217217	7.5	危険	Bitrix	-	Bitrix Site Manager 用 Bitrix e-Store モジュールにおける Cookie の値を推測される脆弱	CWE-287 不適切な認証	CVE-2013-6788	2014-06-3 14:09	2013-11-12	Show	GitHub Exploit DB Packet Storm

217218	5	警告	Open Information Security Foundation	-	Suricata におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5919	2014-06-3 13:57	2013-09-24	Show	GitHub Exploit DB Packet Storm

217219	2.1	注意	David Bagley	-	xlockmore の checkPasswd および checkGroupXlockPasswds 関数におけるスクリーンロックを回避される脆弱性	CWE-Other その他	CVE-2013-4143	2014-06-3 13:52	2013-07-14	Show	GitHub Exploit DB Packet Storm

217220	5	警告	Nero	-	Nero MediaHome におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2012-5877	2014-06-3 12:09	2012-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296311	-	mozilla debian suse opensuse canonical	thunderbird seamonkey firefox debian_linux linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0444	2024-11-21 10:34	2012-02-2	Show	GitHub Exploit DB Packet Storm

296312	-	mozilla	firefox thunderbird seamonkey	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to cause a denial of servic…	NVD-CWE-noinfo	CVE-2012-0443	2024-11-21 10:34	2012-02-2	Show	GitHub Exploit DB Packet Storm

296313	-	mozilla debian suse opensuse	thunderbird seamonkey firefox debian_linux linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 allow remote a…	NVD-CWE-noinfo	CVE-2012-0442	2024-11-21 10:34	2012-02-2	Show	GitHub Exploit DB Packet Storm

296314	-	apache debian opensuse suse redhat	http_server debian_linux opensuse linux_enterprise_software_development_kit linux_enterprise_server enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation<…	protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to …	NVD-CWE-noinfo	CVE-2012-0053	2024-11-21 10:34	2012-01-28	Show	GitHub Exploit DB Packet Storm

296315	-	apache	http_server	The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not properly handle a %{}C format string, w…	CWE-20 Improper Input Validation	CVE-2012-0021	2024-11-21 10:34	2012-01-28	Show	GitHub Exploit DB Packet Storm

296316	-	linux	linux_kernel	The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by mod…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0056	2024-11-21 10:34	2012-01-28	Show	GitHub Exploit DB Packet Storm

296317	-	kvm_group	qemu-kvm	Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0029	2024-11-21 10:34	2012-01-28	Show	GitHub Exploit DB Packet Storm

296318	-	emc	networker	Buffer overflow in the server in EMC NetWorker 7.5.x and 7.6.x before 7.6.3 SP1 Cumulative Release build 851 allows remote attackers to cause a denial of service (daemon crash) or possibly execute ar…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0395	2024-11-21 10:34	2012-01-27	Show	GitHub Exploit DB Packet Storm

296319	-	oscommerce	online_merchant oscommerce	Cross-site scripting (XSS) vulnerability in osCommerce 2.2MS1J before R9, and osCommerce Online Merchant before 2.3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified v…	CWE-79 Cross-site Scripting	CVE-2012-0312	2024-11-21 10:34	2012-01-27	Show	GitHub Exploit DB Packet Storm

296320	-	oscommerce	oscommerce	Cross-site scripting (XSS) vulnerability in osCommerce 2.2MS1J before R9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-0311	2024-11-21 10:34	2012-01-27	Show	GitHub Exploit DB Packet Storm