Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217211 6.8 警告 エンバカデロ・テクノロジーズ - Embarcadero ER/Studio Data Architect の TSVisualization ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-4647 2014-08-8 18:32 2014-07-9 Show GitHub Exploit DB Packet Storm
217212 10 危険 Rocket Software - Rocket Servergraph の Tivoli Storage Manager 用 Admin Center におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-3914 2014-08-8 18:31 2014-06-2 Show GitHub Exploit DB Packet Storm
217213 5 警告 Steve Breuning - Pyplate の download.py におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-3855 2014-08-8 18:31 2014-05-14 Show GitHub Exploit DB Packet Storm
217214 6.8 警告 Steve Breuning - Pyplate の admin/addScript.py におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3854 2014-08-8 18:31 2014-05-14 Show GitHub Exploit DB Packet Storm
217215 5 警告 Steve Breuning - Pyplate における id Cookie をキャプチャされる脆弱性 CWE-200
情報漏えい 		CVE-2014-3853 2014-08-8 18:30 2014-05-14 Show GitHub Exploit DB Packet Storm
217216 5 警告 Steve Breuning - Pyplate における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-3852 2014-08-8 18:30 2014-05-14 Show GitHub Exploit DB Packet Storm
217217 2.1 注意 Steve Breuning - Pyplate の usr/lib/cgi-bin/create_passwd_file.py における管理者パスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-3851 2014-08-8 18:30 2014-05-14 Show GitHub Exploit DB Packet Storm
217218 2.1 注意 XBMC Foundation - XBMC におけるユーザ名およびパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3800 2014-08-8 18:29 2014-05-8 Show GitHub Exploit DB Packet Storm
217219 4.3 警告 EFS Software - Easy File Sharing Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5178 2014-08-8 18:25 2014-07-25 Show GitHub Exploit DB Packet Storm
217220 6.5 警告 Status2K.com - Status2k の admin/options/logs.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-5090 2014-08-8 18:15 2014-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296801 - socialcms socialcms SQL injection vulnerability in search.php in SocialCMS 1.0.5 allows remote attackers to execute arbitrary SQL commands via the category parameter. CWE-89
SQL Injection 		CVE-2012-1780 2024-11-21 10:37 2012-03-20 Show GitHub Exploit DB Packet Storm
296802 - idevspot idev-businessdirectory Cross-site scripting (XSS) vulnerability in IDevSpot idev-BusinessDirectory 3.0 allows remote attackers to inject arbitrary web script or HTML via the SEARCH parameter to index.php. CWE-79
Cross-site Scripting 		CVE-2012-1779 2024-11-21 10:37 2012-03-20 Show GitHub Exploit DB Packet Storm
296803 - createvision createvision_cms SQL injection vulnerability in artykul_print.php in CreateVision CMS allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2012-1778 2024-11-21 10:37 2012-03-20 Show GitHub Exploit DB Packet Storm
296804 - videolan vlc_media_player Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1776 2024-11-21 10:37 2012-03-20 Show GitHub Exploit DB Packet Storm
296805 - videolan vlc_media_player Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 allows remote attackers to execute arbitrary code via a crafted MMS:// stream. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1775 2024-11-21 10:37 2012-03-20 Show GitHub Exploit DB Packet Storm
296806 - gomlab gom_media_player Unspecified vulnerability in the Open URL feature in Gretech GOM Media Player before 2.1.39.5101 has unknown impact and attack vectors, a different vulnerability than CVE-2007-5779 and CVE-2012-1264. NVD-CWE-noinfo
CVE-2012-1774 2024-11-21 10:37 2012-03-18 Show GitHub Exploit DB Packet Storm
296807 - vmware vshield_manager Cross-site request forgery (CSRF) vulnerability in VMware vShield Manager (vSM) 1.0.1 before Update 2 and 4.1.0 before Update 2 allows remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error 		CVE-2012-1514 2024-11-21 10:37 2012-03-17 Show GitHub Exploit DB Packet Storm
296808 - vmware vcenter_orchestrator The Web Configuration tool in VMware vCenter Orchestrator (vCO) 4.0 before Update 4, 4.1 before Update 2, and 4.2 before Update 1 places the vCenter Server password in an HTML document, which allows … CWE-200
Information Exposure 		CVE-2012-1513 2024-11-21 10:37 2012-03-17 Show GitHub Exploit DB Packet Storm
296809 - vmware vsphere Cross-site scripting (XSS) vulnerability in the internal browser in vSphere Client in VMware vSphere 4.1 before Update 2 and 5.0 before Update 1 allows remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2012-1512 2024-11-21 10:37 2012-03-17 Show GitHub Exploit DB Packet Storm
296810 - vmware view Cross-site scripting (XSS) vulnerability in View Manager Portal in VMware View before 4.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. CWE-79
Cross-site Scripting 		CVE-2012-1511 2024-11-21 10:37 2012-03-17 Show GitHub Exploit DB Packet Storm