Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217351	2.1	注意	レッドハット	-	Red Hat Enterprise Virtualization Manager データウェアハウスパッケージで使用される ovirt-engine-dwh における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0202	2014-06-3 15:47	2014-05-27	Show	GitHub Exploit DB Packet Storm

217352	4.3	警告	IBM	-	IBM WebSphere Service Registry and Repository の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3010	2014-06-3 15:43	2014-05-19	Show	GitHub Exploit DB Packet Storm

217353	3.5	注意	IBM	-	IBM Sterling Control Center におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-0925	2014-06-3 15:42	2014-05-16	Show	GitHub Exploit DB Packet Storm

217354	6.5	警告	IBM	-	Windows 上で稼働する IBM DB2 のストアドプロシージャのインフラストラクチャにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6744	2014-06-3 15:39	2013-11-8	Show	GitHub Exploit DB Packet Storm

217355	9	危険	VMware	-	VMware vCenter Server Appliance の Ruby vSphere Console における任意のコマンドを root として実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3790	2014-06-3 15:20	2014-05-30	Show	GitHub Exploit DB Packet Storm

217356	7.5	危険	シトリックス・システムズ	-	Citrix VDI-In-A-Box における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-3780	2014-06-3 14:55	2014-05-27	Show	GitHub Exploit DB Packet Storm

217357	7.5	危険	Bitrix	-	Bitrix Site Manager 用 Bitrix e-Store モジュールにおける Cookie の値を推測される脆弱	CWE-287 不適切な認証	CVE-2013-6788	2014-06-3 14:09	2013-11-12	Show	GitHub Exploit DB Packet Storm

217358	5	警告	Open Information Security Foundation	-	Suricata におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5919	2014-06-3 13:57	2013-09-24	Show	GitHub Exploit DB Packet Storm

217359	2.1	注意	David Bagley	-	xlockmore の checkPasswd および checkGroupXlockPasswds 関数におけるスクリーンロックを回避される脆弱性	CWE-Other その他	CVE-2013-4143	2014-06-3 13:52	2013-07-14	Show	GitHub Exploit DB Packet Storm

217360	5	警告	Nero	-	Nero MediaHome におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2012-5877	2014-06-3 12:09	2012-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291941	-	dell	openmanage_server_administrator	Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic p…	CWE-79 Cross-site Scripting	CVE-2012-6272	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

291942	-	isc redhat canonical	bind enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation ubuntu_linux	ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a d…	CWE-20 Improper Input Validation	CVE-2012-5689	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

291943	-	proftpd	proftpd	ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the (1) MKD or (2) XMKD command…	CWE-362 Race Condition	CVE-2012-6095	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

291944	-	freetype	freetype	The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODI…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5670	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

291945	-	freetype	freetype	The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5669	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

291946	-	freetype	freetype	FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocatio…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5668	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

291947	-	gnupg	gnupg	The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and 2.0.x through 2.0.19, when importing a key, allows remote attackers to corrupt the public keyring database or cause a denial o…	CWE-20 Improper Input Validation	CVE-2012-6085	2024-11-21 10:45	2013-01-24	Show	GitHub Exploit DB Packet Storm

291948	-	nagios icinga	nagios icinga	Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core before 3.4.4, and Icinga 1.6.x before 1.6.2, 1.7.x before 1.7.4, and 1.8.x before 1.8.4, might allow re…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-6096	2024-11-21 10:45	2013-01-23	Show	GitHub Exploit DB Packet Storm

291949	-	3s-software	codesys_runtime_system	Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a reques…	CWE-22 Path Traversal	CVE-2012-6069	2024-11-21 10:45	2013-01-22	Show	GitHub Exploit DB Packet Storm

291950	-	3s-software	codesys_runtime_system	The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6068	2024-11-21 10:45	2013-01-22	Show	GitHub Exploit DB Packet Storm