Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217251 4.3 警告 Digium - Asterisk Open Source の PJSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2014-4045 2014-06-19 10:59 2014-06-12 Show GitHub Exploit DB Packet Storm
217252 4.3 警告 Beanbag - Django 用 Djblets の gravatars/templatetags/gravatars.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3995 2014-06-18 15:52 2014-06-6 Show GitHub Exploit DB Packet Storm
217253 4.3 警告 Beanbag - Review Board で使用される Django 用 Djblets におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3994 2014-06-18 15:52 2014-06-6 Show GitHub Exploit DB Packet Storm
217254 6.8 警告 ZyXEL - Zyxel P-660HW-T1 ワイヤレスルータにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-4162 2014-06-18 14:57 2014-06-10 Show GitHub Exploit DB Packet Storm
217255 4.3 警告 Yealink - Yealink VoIP Phone のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3428 2014-06-18 14:56 2014-06-12 Show GitHub Exploit DB Packet Storm
217256 6.8 警告 echoping project - echoping の readline.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-5111 2014-06-18 14:56 2010-12-11 Show GitHub Exploit DB Packet Storm
217257 4.3 警告 Nullsoft - SHOUTcast DNAS の歌曲の履歴におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4166 2014-06-18 13:58 2014-06-11 Show GitHub Exploit DB Packet Storm
217258 4.3 警告 AlgoSec - AlgoSec FireFlow におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4164 2014-06-18 12:29 2014-06-9 Show GitHub Exploit DB Packet Storm
217259 6.8 警告 Pippin's Plugins - WordPress 用 Featured Comments プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-4163 2014-06-18 12:16 2014-06-10 Show GitHub Exploit DB Packet Storm
217260 7.1 危険 Debian - Debian squeeze および wheezy 用 dpkg におけるディレクトリトラバーサル攻撃を実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-3127 2014-06-17 17:19 2014-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291721 - microsoft .net_framework
management_odata_iis_extension 		The WCF Replace function in the Open Data (aka OData) protocol implementation in Microsoft .NET Framework 3.5, 3.5 SP1, 3.5.1, and 4, and the Management OData IIS Extension on Windows Server 2012, al… CWE-20
 Improper Input Validation  		CVE-2013-0005 2024-11-21 10:46 2013-01-10 Show GitHub Exploit DB Packet Storm
291722 - microsoft .net_framework Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate the permissions of objects in memory, which allows remote attackers to execute arbitrary… CWE-20
 Improper Input Validation  		CVE-2013-0004 2024-11-21 10:46 2013-01-10 Show GitHub Exploit DB Packet Storm
291723 - microsoft .net_framework Buffer overflow in a System.DirectoryServices.Protocols (S.DS.P) namespace method in Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary cod… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0003 2024-11-21 10:46 2013-01-10 Show GitHub Exploit DB Packet Storm
291724 - microsoft .net_framework Buffer overflow in the Windows Forms (aka WinForms) component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary code … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0002 2024-11-21 10:46 2013-01-10 Show GitHub Exploit DB Packet Storm
291725 - microsoft .net_framework The Windows Forms (aka WinForms) component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obta… CWE-200
Information Exposure 		CVE-2013-0001 2024-11-21 10:46 2013-01-10 Show GitHub Exploit DB Packet Storm
291726 - maxtom atomymaxsite Unrestricted file upload vulnerability in index.php in Atomymaxsite 2.5 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing … NVD-CWE-Other
CVE-2012-6498 2024-11-21 10:46 2013-01-9 Show GitHub Exploit DB Packet Storm
291727 - centrify centrify_deployment_manager
centrify_suite 		Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows local users to (1) overwrite arbitrary files via a symlink attack on the adcheckDMoutput temporary file, … CWE-59
Link Following 		CVE-2012-6348 2024-11-21 10:46 2013-01-5 Show GitHub Exploit DB Packet Storm
291728 - twiki
foswiki 		twiki
foswiki 		The localization functionality in TWiki before 5.1.3, and Foswiki 1.0.x through 1.0.10 and 1.1.x through 1.1.6, allows remote attackers to cause a denial of service (memory consumption) via a large i… CWE-189
Numeric Errors 		CVE-2012-6330 2024-11-21 10:46 2013-01-5 Show GitHub Exploit DB Packet Storm
291729 - perl perl The _compile function in Maketext.pm in the Locale::Maketext implementation in Perl before 5.17.7 does not properly handle backslashes and fully qualified method names during compilation of bracket n… CWE-94
Code Injection 		CVE-2012-6329 2024-11-21 10:46 2013-01-5 Show GitHub Exploit DB Packet Storm
291730 - rubyonrails rails The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentially unsafe find_by_id method calls, which might allow remote attackers to conduct CVE-2012-6496 SQL i… CWE-89
SQL Injection 		CVE-2012-6497 2024-11-21 10:46 2013-01-4 Show GitHub Exploit DB Packet Storm