Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217241 6.8 警告 Frederic Guillot - Kanboard におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3920 2014-07-8 14:06 2014-06-30 Show GitHub Exploit DB Packet Storm
217242 6.5 警告 Kerio Technologies - Kerio Control の Kerio Control Statistics における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3857 2014-07-8 14:01 2014-06-30 Show GitHub Exploit DB Packet Storm
217243 4.3 警告 Invision Power Services, Inc - Invision Power IP.Board または IP.Nexus におけるクロスサイトスクリプティングの脆弱性 "Reflected Cross-Site Scripting (XSS)" (CWE-79) vulnerability in "Invision Power IP.Board" product
CWE-79
CVE-2014-3149 2014-07-8 13:40 2014-04-24 Show GitHub Exploit DB Packet Storm
217244 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-0325 2014-07-8 12:32 2014-04-8 Show GitHub Exploit DB Packet Storm
217245 5 警告 サイレックス・テクノロジー株式会社 - SX-2000WG におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3890 2014-07-7 18:35 2014-07-2 Show GitHub Exploit DB Packet Storm
217246 5 警告 サイレックス・テクノロジー株式会社 - SX-2000WG におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3889 2014-07-7 18:34 2014-07-2 Show GitHub Exploit DB Packet Storm
217247 4.3 警告 Verification Code for Comments project - WordPress 用 Verification Code for Comments プラグインの vcc.js.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4565 2014-07-7 18:26 2014-06-12 Show GitHub Exploit DB Packet Storm
217248 4.3 警告 WP-Picasa-Image project - WordPress 用 WP-Picasa-Image プラグインの picasa_upload.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4591 2014-07-7 18:26 2014-06-12 Show GitHub Exploit DB Packet Storm
217249 4.3 警告 LetsFX - WordPress 用 URL Cloak & Encrypt プラグインの go.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4563 2014-07-7 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
217250 4.3 警告 VN-Calendar project - WordPress 用 VN-Calendar プラグインの vncal.js.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4571 2014-07-7 18:26 2014-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296701 6.1 MEDIUM
Network 		php-form-builder-class_project php-form-builder-class A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.p… - CVE-2012-10005 2024-11-21 10:36 2023-01-13 Show GitHub Exploit DB Packet Storm
296702 6.1 MEDIUM
Network 		backdropcms basic_cart A vulnerability was found in backdrop-contrib Basic Cart on Drupal. It has been classified as problematic. Affected is the function basic_cart_checkout_form_submit of the file basic_cart.cart.inc. Th… - CVE-2012-10004 2024-11-21 10:36 2023-01-11 Show GitHub Exploit DB Packet Storm
296703 6.1 MEDIUM
Network 		rivettracker_project rivettracker A vulnerability, which was classified as problematic, has been found in ahmyi RivetTracker. This issue affects some unknown processing. The manipulation of the argument $_SERVER['PHP_SELF'] leads to … - CVE-2012-10003 2024-11-21 10:36 2023-01-3 Show GitHub Exploit DB Packet Storm
296704 6.1 MEDIUM
Network 		rivettracker_project rivettracker A vulnerability was found in ahmyi RivetTracker. It has been declared as problematic. Affected by this vulnerability is the function changeColor of the file css.php. The manipulation of the argument … - CVE-2012-10002 2024-11-21 10:36 2023-01-3 Show GitHub Exploit DB Packet Storm
296705 7.5 HIGH
Network 		xml\ \ It was discovered that the XML::Atom Perl module before version 0.39 did not disable external entities when parsing XML from potentially untrusted sources. This may allow attackers to gain read acces… - CVE-2012-1102 2024-11-21 10:36 2021-07-9 Show GitHub Exploit DB Packet Storm
296706 9.8 CRITICAL
Network 		limit_login_attempts_project limit_login_attempts The Limit Login Attempts plugin before 1.7.1 for WordPress does not clear auth cookies upon a lockout, which might make it easier for remote attackers to conduct brute-force authentication attempts. CWE-287
Improper Authentication 		CVE-2012-10001 2024-11-21 10:36 2021-01-7 Show GitHub Exploit DB Packet Storm
296707 7.4 HIGH
Network 		canonical software-properties software-properties was vulnerable to a person-in-the-middle attack due to incorrect TLS certificate validation in softwareproperties/ppa.py. software-properties didn't check TLS certificates under p… CWE-295
Improper Certificate Validation  		CVE-2012-0955 2024-11-21 10:36 2020-12-2 Show GitHub Exploit DB Packet Storm
296708 5.0 MEDIUM
Local 		nvidia display_driver A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53. CWE-362
Race Condition 		CVE-2012-0953 2024-11-21 10:36 2020-05-8 Show GitHub Exploit DB Packet Storm
296709 5.0 MEDIUM
Local 		nvidia display_driver A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.… CWE-787
 Out-of-bounds Write 		CVE-2012-0952 2024-11-21 10:36 2020-05-8 Show GitHub Exploit DB Packet Storm
296710 5.5 MEDIUM
Local 		systemd_project systemd systemd 37-1 does not properly handle non-existent services, which causes a denial of service (failure of login procedure). NVD-CWE-Other
CVE-2012-1101 2024-11-21 10:36 2020-03-12 Show GitHub Exploit DB Packet Storm