Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217251 1.2 注意 Novell
レッドハット		 - libvirt における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-5177 2014-08-5 16:31 2014-05-6 Show GitHub Exploit DB Packet Storm
217252 1.9 注意 Novell
レッドハット		 - libvirt におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0179 2014-08-5 16:30 2014-05-6 Show GitHub Exploit DB Packet Storm
217253 9 危険 Yealink - Yealink VoIP Phone SIP-T38G の cgi-bin/cgiServer.exx における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-5758 2014-08-5 14:09 2013-09-18 Show GitHub Exploit DB Packet Storm
217254 4 警告 Yealink - Yealink VoIP Phone SIP-T38G における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5757 2014-08-5 14:08 2013-09-18 Show GitHub Exploit DB Packet Storm
217255 4 警告 Yealink - Yealink VoIP Phone SIP-T38G におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5756 2014-08-5 14:08 2013-09-18 Show GitHub Exploit DB Packet Storm
217256 5.8 警告 Caucho Technology - Resin Pro に Unicode 文字を適切に変換しない問題 CWE-20
CWE-264
CVE-2014-2966 2014-08-5 09:27 2014-07-23 Show GitHub Exploit DB Packet Storm
217257 2.1 注意 Linux - Linux Kernel の fs/aio.c 内の aio_read_events_ring 関数におけるカーネルメモリから重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-0206 2014-08-5 09:27 2014-06-24 Show GitHub Exploit DB Packet Storm
217258 6.8 警告 シーメンス - Siemens SIMATIC PCS 7 などの製品で使用される SIMATIC WinCC のプロジェクト管理アプリケーションにおける重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-4686 2014-08-5 09:26 2014-07-23 Show GitHub Exploit DB Packet Storm
217259 4.6 警告 シーメンス - Siemens SIMATIC PCS 7 などの製品で使用される SIMATIC WinCC における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4685 2014-08-5 09:25 2014-07-23 Show GitHub Exploit DB Packet Storm
217260 6 警告 シーメンス - Siemens SIMATIC PCS 7 などの製品で使用される SIMATIC WinCC の データベースサーバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4684 2014-08-5 09:25 2014-07-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296861 4.9 MEDIUM
Network 		whoopsie-daisy_project whoopsie-daisy whoopsie-daisy before 0.1.26: Root user can remove arbitrary files CWE-428
 Unquoted Search Path or Element 		CVE-2012-0945 2024-11-21 10:36 2020-01-15 Show GitHub Exploit DB Packet Storm
296862 6.1 MEDIUM
Network 		plixer scrutinizer_netflow_\&_sflow_analyzer Cross-site scripting (XSS) vulnerability in cgi-bin/scrut_fa_exclusions.cgi in Plixer International Scrutinizer NetFlow and sFlow Analyzer 8.6.2.16204 and other versions before 9.0.1.19899 allows rem… CWE-79
Cross-site Scripting 		CVE-2012-1261 2024-11-21 10:36 2020-01-10 Show GitHub Exploit DB Packet Storm
296863 6.1 MEDIUM
Network 		plixer scrutinizer_netflow_\&_sflow_analyzer Cross-site scripting (XSS) vulnerability in cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allows remo… CWE-79
Cross-site Scripting 		CVE-2012-1260 2024-11-21 10:36 2020-01-10 Show GitHub Exploit DB Packet Storm
296864 9.8 CRITICAL
Network 		plixer scrutinizer_netflow_\&_sflow_analyzer Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allow remote attackers to execute arbi… CWE-89
SQL Injection 		CVE-2012-1259 2024-11-21 10:36 2020-01-10 Show GitHub Exploit DB Packet Storm
296865 6.5 MEDIUM
Network 		plixer scrutinizer_netflow_\&_sflow_analyzer cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer before 9.0.1.19899 does not validate user permissions, which allow remote attackers to add user accounts with admini… CWE-287
Improper Authentication 		CVE-2012-1258 2024-11-21 10:36 2020-01-10 Show GitHub Exploit DB Packet Storm
296866 6.1 MEDIUM
Network 		ldap-account-manager
fedoraproject
debian 		ldap_account_manager
fedora
debian_linux 		A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php. CWE-79
Cross-site Scripting 		CVE-2012-1115 2024-11-21 10:36 2019-12-6 Show GitHub Exploit DB Packet Storm
296867 6.1 MEDIUM
Network 		ldap-account-manager
fedoraproject
debian 		ldap_account_manager
fedora
debian_linux 		A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. and the filteruid parameter to list.php. CWE-79
Cross-site Scripting 		CVE-2012-1114 2024-11-21 10:36 2019-12-6 Show GitHub Exploit DB Packet Storm
296868 5.5 MEDIUM
Local 		apereo
fedoraproject
debian 		phpcas
fedora
debian_linux 		An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file… CWE-200
Information Exposure 		CVE-2012-1105 2024-11-21 10:36 2019-12-6 Show GitHub Exploit DB Packet Storm
296869 5.3 MEDIUM
Network 		apereo
debian 		phpcas
debian_linux 		A Security Bypass vulnerability exists in the phpCAS 1.2.2 library from the jasig project due to the way proxying of services are managed. CWE-269
 Improper Privilege Management 		CVE-2012-1104 2024-11-21 10:36 2019-12-6 Show GitHub Exploit DB Packet Storm
296870 6.1 MEDIUM
Network 		chyrp chyrp Multiple cross-site scripting (XSS) vulnerabilities in Chyrp before 2.1.2 and before 2.5 Beta 2 allow remote attackers to inject arbitrary web script or HTML via the (1) content parameter to includes… CWE-79
Cross-site Scripting 		CVE-2012-1001 2024-11-21 10:36 2019-11-22 Show GitHub Exploit DB Packet Storm