Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217281 6.8 警告 KrisonAV - KrisonAV CMS の users_maint.html におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2713 2014-05-28 11:57 2013-04-17 Show GitHub Exploit DB Packet Storm
217282 4.3 警告 KrisonAV - KrisonAV CMS の services/get_article.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2712 2014-05-28 11:57 2013-04-17 Show GitHub Exploit DB Packet Storm
217283 4.3 警告 DELL EMC (旧 EMC Corporation) - EMC RSA Archer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0639 2014-05-28 11:50 2014-05-23 Show GitHub Exploit DB Packet Storm
217284 9 危険 DELL EMC (旧 EMC Corporation) - EMC Documentum D2 におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2504 2014-05-28 11:47 2014-05-22 Show GitHub Exploit DB Packet Storm
217285 9.3 危険 シスコシステムズ - Cisco Wide Area Application Services における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-2196 2014-05-28 11:41 2014-05-21 Show GitHub Exploit DB Packet Storm
217286 8.5 危険 CosCMS - CosCMS の upload/index.php 内の uploadFile 関数における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-1668 2014-05-28 11:41 2013-02-19 Show GitHub Exploit DB Packet Storm
217287 6.1 警告 シスコシステムズ - ASR 1000 シリーズのデバイス上で稼働する Cisco IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3284 2014-05-28 11:37 2014-05-27 Show GitHub Exploit DB Packet Storm
217288 7.1 危険 IBM - IBM WebSphere Commerce におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0943 2014-05-28 11:24 2014-05-12 Show GitHub Exploit DB Packet Storm
217289 4.3 警告 isync-devel - Isync における SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2013-0289 2014-05-28 10:38 2013-02-3 Show GitHub Exploit DB Packet Storm
217290 6.8 警告 Apache Software Foundation - Apache CouchDB における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5649 2014-05-28 10:25 2012-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296311 - mozilla
debian
suse
opensuse
canonical 		thunderbird
seamonkey
firefox
debian_linux
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
ubuntu_linux 		Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0444 2024-11-21 10:34 2012-02-2 Show GitHub Exploit DB Packet Storm
296312 - mozilla firefox
thunderbird
seamonkey 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to cause a denial of servic… NVD-CWE-noinfo
CVE-2012-0443 2024-11-21 10:34 2012-02-2 Show GitHub Exploit DB Packet Storm
296313 - mozilla
debian
suse
opensuse 		thunderbird
seamonkey
firefox
debian_linux
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 allow remote a… NVD-CWE-noinfo
CVE-2012-0442 2024-11-21 10:34 2012-02-2 Show GitHub Exploit DB Packet Storm
296314 - apache
debian
opensuse
suse
redhat 		http_server
debian_linux
opensuse
linux_enterprise_software_development_kit
linux_enterprise_server
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation<… 		protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to … NVD-CWE-noinfo
CVE-2012-0053 2024-11-21 10:34 2012-01-28 Show GitHub Exploit DB Packet Storm
296315 - apache http_server The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not properly handle a %{}C format string, w… CWE-20
 Improper Input Validation  		CVE-2012-0021 2024-11-21 10:34 2012-01-28 Show GitHub Exploit DB Packet Storm
296316 - linux linux_kernel The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by mod… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0056 2024-11-21 10:34 2012-01-28 Show GitHub Exploit DB Packet Storm
296317 - kvm_group qemu-kvm Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0029 2024-11-21 10:34 2012-01-28 Show GitHub Exploit DB Packet Storm
296318 - emc networker Buffer overflow in the server in EMC NetWorker 7.5.x and 7.6.x before 7.6.3 SP1 Cumulative Release build 851 allows remote attackers to cause a denial of service (daemon crash) or possibly execute ar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0395 2024-11-21 10:34 2012-01-27 Show GitHub Exploit DB Packet Storm
296319 - oscommerce online_merchant
oscommerce 		Cross-site scripting (XSS) vulnerability in osCommerce 2.2MS1J before R9, and osCommerce Online Merchant before 2.3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified v… CWE-79
Cross-site Scripting 		CVE-2012-0312 2024-11-21 10:34 2012-01-27 Show GitHub Exploit DB Packet Storm
296320 - oscommerce oscommerce Cross-site scripting (XSS) vulnerability in osCommerce 2.2MS1J before R9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-0311 2024-11-21 10:34 2012-01-27 Show GitHub Exploit DB Packet Storm