Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217231 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4728 2014-06-10 13:29 2013-08-26 Show GitHub Exploit DB Packet Storm
217232 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4727 2014-06-10 13:29 2013-08-26 Show GitHub Exploit DB Packet Storm
217233 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における Cookie をキャプチャされる脆弱性 CWE-200
情報漏えい 		CVE-2013-4725 2014-06-10 13:29 2013-08-26 Show GitHub Exploit DB Packet Storm
217234 5 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4724 2014-06-10 13:28 2013-08-26 Show GitHub Exploit DB Packet Storm
217235 9.3 危険 MyHeritage - MyHeritage SEQueryObject ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2013-2602 2014-06-10 11:51 2013-05-20 Show GitHub Exploit DB Packet Storm
217236 5 警告 Corosync - Corosync の exec/totemcrypto.c の init_nss_hash 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-0250 2014-06-10 11:40 2013-01-14 Show GitHub Exploit DB Packet Storm
217237 5.8 警告 Jasig - phpCAS における SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2012-5583 2014-06-10 11:35 2012-12-15 Show GitHub Exploit DB Packet Storm
217238 10 危険 Condor Project - Condor の standard universe shadow コンポーネントにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5390 2014-06-10 11:28 2012-10-22 Show GitHub Exploit DB Packet Storm
217239 7.4 危険 Xen プロジェクト - Xen における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3969 2014-06-9 18:38 2014-06-4 Show GitHub Exploit DB Packet Storm
217240 5.5 警告 Xen プロジェクト - Xen の HVMOP_inject_msi 関数におけるサービス運用妨害 (DoS) の脆弱性脆弱性 CWE-noinfo
情報不足 		CVE-2014-3968 2014-06-9 18:37 2014-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291821 - bcron_project bcron_exec bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6110 2024-11-21 10:45 2014-09-30 Show GitHub Exploit DB Packet Storm
291822 - apache apache_axis2\/c Apache Axis2/C does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attack… CWE-310
Cryptographic Issues 		CVE-2012-6107 2024-11-21 10:45 2014-09-30 Show GitHub Exploit DB Packet Storm
291823 - babygekko baby_gekko Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko before 1.2.2f allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/index.php or the (2) us… CWE-79
Cross-site Scripting 		CVE-2012-5700 2024-11-21 10:45 2014-09-23 Show GitHub Exploit DB Packet Storm
291824 - apache commons-httpclient http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltNa… CWE-20
 Improper Input Validation  		CVE-2012-6153 2024-11-21 10:45 2014-09-5 Show GitHub Exploit DB Packet Storm
291825 - zpanelcp zpanel SQL injection vulnerability in ZPanel 10.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the inEmailAddress parameter in an UpdateClient action in the manage_clients mod… CWE-89
SQL Injection 		CVE-2012-5685 2024-11-21 10:45 2014-08-14 Show GitHub Exploit DB Packet Storm
291826 - zpanelcp zpanel Cross-site scripting (XSS) vulnerability in ZPanel 10.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the inFullname parameter in an UpdateAccountSettings action in… CWE-79
Cross-site Scripting 		CVE-2012-5684 2024-11-21 10:45 2014-08-14 Show GitHub Exploit DB Packet Storm
291827 - zpanelcp zpanel Multiple cross-site request forgery (CSRF) vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) create new FTP user… CWE-352
 Origin Validation Error 		CVE-2012-5683 2024-11-21 10:45 2014-08-14 Show GitHub Exploit DB Packet Storm
291828 - ingy spoon Spoon::Cookie in the Spoon module 0.24 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly… CWE-94
Code Injection 		CVE-2012-6143 2024-11-21 10:45 2014-06-5 Show GitHub Exploit DB Packet Storm
291829 - jochen_wiedmann html\ Session::Cookie in the HTML::EP module 0.2011 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request, which is not p… CWE-94
Code Injection 		CVE-2012-6142 2024-11-21 10:45 2014-06-5 Show GitHub Exploit DB Packet Storm
291830 - stephen_adkins app\ The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to (1) App::Sessio… CWE-94
Code Injection 		CVE-2012-6141 2024-11-21 10:45 2014-06-5 Show GitHub Exploit DB Packet Storm