Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 12:06 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217331	6.8	警告	MediaWiki	-	MediaWiki の Special:UserLogin における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2012-5391	2014-06-4 12:08	2012-11-30	Show	GitHub Exploit DB Packet Storm

217332	7.5	危険	CoSoSys Ltd	-	CoSoSys Endpoint Protector 4 の wsf/webservice.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3932 SEC Consult Vulnerability Lab Security Advisory < 20140521-0 >	2014-06-4 11:38	2014-05-21	Show	GitHub Exploit DB Packet Storm

217333	5.8	警告	Daniel Korte	-	Drupal 用 Node Access Keys モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4596	2014-06-4 11:08	2013-11-1	Show	GitHub Exploit DB Packet Storm

217334	3.5	注意	New Signature	-	Drupal 用 AddressField Tokens モジュールの address コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3933	2014-06-4 11:08	2014-05-14	Show	GitHub Exploit DB Packet Storm

217335	5	警告	Cogent Real-Time Systems Inc.	-	Cogent DataHub における平文のパスワードを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-2354	2014-06-3 18:18	2014-04-29	Show	GitHub Exploit DB Packet Storm

217336	4.3	警告	Cogent Real-Time Systems Inc.	-	Cogent DataHub におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2353	2014-06-3 18:17	2014-04-29	Show	GitHub Exploit DB Packet Storm

217337	6.4	警告	Cogent Real-Time Systems Inc.	-	Cogent DataHub におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2352	2014-06-3 18:17	2014-04-29	Show	GitHub Exploit DB Packet Storm

217338	2.1	注意	Triangle MicroWorks	-	Triangle MicroWorks SCADA Data Gateway におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2343	2014-06-3 17:51	2014-05-29	Show	GitHub Exploit DB Packet Storm

217339	5	警告	Triangle MicroWorks	-	Triangle MicroWorks SCADA Data Gateway におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2342	2014-06-3 17:51	2014-05-29	Show	GitHub Exploit DB Packet Storm

217340	4.3	警告	トレンドマイクロ	-	Trend Micro InterScan Messaging Security Virtual Appliance におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3922	2014-06-3 17:48	2014-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296471	-	irfanview	irfanview	Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QC…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0897	2024-11-21 10:35	2012-01-21	Show	GitHub Exploit DB Packet Storm

296472	-	count_per_day_project tom_braider	count_per_day	Absolute path traversal vulnerability in download.php in the Count Per Day module before 3.1.1 for WordPress allows remote attackers to read arbitrary files via the f parameter.	CWE-22 Path Traversal	CVE-2012-0896	2024-11-21 10:35	2012-01-21	Show	GitHub Exploit DB Packet Storm

296473	-	tom_braider	count_per_day	Cross-site scripting (XSS) vulnerability in map/map.php in the Count Per Day module before 3.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map parameter.	CWE-79 Cross-site Scripting	CVE-2012-0895	2024-11-21 10:35	2012-01-21	Show	GitHub Exploit DB Packet Storm

296474	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect confidentiality and integrity via unknown vectors.	NVD-CWE-noinfo	CVE-2012-0496	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296475	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0495	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296476	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows local users to affect availability via unknown vectors.	NVD-CWE-noinfo	CVE-2012-0494	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296477	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0493	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296478	-	oracle mysql	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CV…	NVD-CWE-noinfo	CVE-2012-0492	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296479	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0491	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296480	-	oracle mysql	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect availability via unknown vectors.	NVD-CWE-noinfo	CVE-2012-0490	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm