Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217211 7.8 危険 AlienVault - AlienVault OSSIM の av-centerd SOAP サービスにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2014-4153 2014-06-20 18:42 2014-06-3 Show GitHub Exploit DB Packet Storm
217212 10 危険 AlienVault - AlienVault OSSIM の av-centerd SOAP サービスにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-4152 2014-06-20 18:41 2014-06-3 Show GitHub Exploit DB Packet Storm
217213 10 危険 AlienVault - AlienVault OSSIM の av-centerd SOAP サービスにおける任意のファイルを作成される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-4151 2014-06-20 18:41 2014-06-3 Show GitHub Exploit DB Packet Storm
217214 5 警告 DELL EMC (旧 EMC Corporation) - EMC RSA BSAFE-Java Toolkits の TLS の実装における TLS セッションから平文を取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-4193 2014-06-20 18:24 2014-04-7 Show GitHub Exploit DB Packet Storm
217215 5 警告 DELL EMC (旧 EMC Corporation) - EMC RSA BSAFE-C Toolkits の TLS の実装における TLS セッションから平文を取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-4191 2014-06-20 18:23 2014-04-7 Show GitHub Exploit DB Packet Storm
217216 5.8 警告 DELL EMC (旧 EMC Corporation) - EMC RSA BSAFE Toolkits および RSA Data Protection Manager のデフォルト設定における暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2013-6078 2014-06-20 18:22 2013-09-20 Show GitHub Exploit DB Packet Storm
217217 4.3 警告 Openfiler - Openfiler におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4309 2014-06-20 16:52 2014-06-11 Show GitHub Exploit DB Packet Storm
217218 4.3 警告 NICE Systems - NICE Recording eXpress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4308 2014-06-20 16:38 2014-05-28 Show GitHub Exploit DB Packet Storm
217219 7.5 危険 NICE Systems - NICE Recording eXpress における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4305 2014-06-20 16:38 2014-05-28 Show GitHub Exploit DB Packet Storm
217220 9 危険 ヒューレット・パッカード - HP Executive Scorecard の fndwar Web アプリケーションにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2611 2014-06-20 15:58 2014-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296461 5.5 MEDIUM
Local 		linux
redhat
suse 		linux_kernel
enterprise_mrg
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_high_availability_extension 		The cifs_lookup function in fs/cifs/dir.c in the Linux kernel before 3.2.10 allows local users to cause a denial of service (OOPS) via attempted access to a special file, as demonstrated by a FIFO. CWE-20
 Improper Input Validation  		CVE-2012-1090 2024-11-21 10:36 2012-05-17 Show GitHub Exploit DB Packet Storm
296462 5.5 MEDIUM
Local 		linux
fedoraproject
suse 		linux_kernel
fedora
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_high_availability_extension 		The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local … CWE-476
 NULL Pointer Dereference 		CVE-2012-1146 2024-11-21 10:36 2012-05-17 Show GitHub Exploit DB Packet Storm
296463 - basercms basercms app/config/core.php in baserCMS 1.6.15 and earlier does not properly handle installations in shared-hosting environments, which allows remote attackers to hijack sessions by leveraging administrative… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1248 2024-11-21 10:36 2012-05-16 Show GitHub Exploit DB Packet Storm
296464 - webcreate web_mart Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and earlier, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML by leveraging support for… CWE-79
Cross-site Scripting 		CVE-2012-1247 2024-11-21 10:36 2012-05-16 Show GitHub Exploit DB Packet Storm
296465 - webcreate web_mart Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and earlier might allow remote attackers to inject arbitrary web script or HTML via a crafted cookie. CWE-79
Cross-site Scripting 		CVE-2012-1246 2024-11-21 10:36 2012-05-16 Show GitHub Exploit DB Packet Storm
296466 - cisco unified_ip_phone_firmware
unified_ip_phone 		Cisco Unified IP Phones 9900 series devices with firmware 9.1 and 9.2 do not properly handle downloads of configuration information to an RT phone, which allows local users to gain privileges via uns… CWE-94
Code Injection 		CVE-2012-1328 2024-11-21 10:36 2012-05-4 Show GitHub Exploit DB Packet Storm
296467 - cisco ios dot11t/t_if_dot11_hal_ath.c in Cisco IOS 12.3, 12.4, 15.0, and 15.1 allows remote attackers to cause a denial of service (assertion failure and reboot) via 802.11 wireless traffic, as demonstrated by… CWE-284
Improper Access Control 		CVE-2012-1327 2024-11-21 10:36 2012-05-4 Show GitHub Exploit DB Packet Storm
296468 - cisco ios Race condition in the Zone-Based Firewall in Cisco IOS 15.1 and 15.2, when IPS policies are configured, allows remote attackers to cause a denial of service (device crash) by sending IPv6 packets, ak… CWE-362
Race Condition 		CVE-2012-1324 2024-11-21 10:36 2012-05-4 Show GitHub Exploit DB Packet Storm
296469 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the replication-setup functionality in js/replication.js in phpMyAdmin 3.4.x before 3.4.10.1 allows user-assisted remote attackers to inject arbitrary web … CWE-79
Cross-site Scripting 		CVE-2012-1190 2024-11-21 10:36 2012-05-3 Show GitHub Exploit DB Packet Storm
296470 - nttdocomo spmode_mail_android The NTT DOCOMO sp mode mail application 5400 and earlier for Android does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain… CWE-310
Cryptographic Issues 		CVE-2012-1244 2024-11-21 10:36 2012-04-28 Show GitHub Exploit DB Packet Storm