Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217421	6.8	警告	Debian Canonical Fedora Project Linux Foundation	-	CUPS および cups-filters の pdftoopvp フィルタにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-6474	2014-03-18 11:52	2013-11-6	Show	GitHub Exploit DB Packet Storm

217422	6.8	警告	Canonical Linux Foundation	-	cups-filters の urftopdf フィルタにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-6473	2014-03-18 11:51	2013-11-6	Show	GitHub Exploit DB Packet Storm

217423	4.3	警告	Open Source Technologies	-	WordPress 用 Responsive Logo Slideshow プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1759	2014-03-17 18:17	2013-02-18	Show	GitHub Exploit DB Packet Storm

217424	4.3	警告	Ulysses Ronquillo	-	WordPress 用 Marekkis Watermark プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1758	2014-03-17 18:17	2013-02-18	Show	GitHub Exploit DB Packet Storm

217425	7.5	危険	アップル	-	Apple Pages における脆弱性に対するアップデート	CWE-399 リソース管理の問題	CVE-2014-1252	2014-03-17 16:39	2014-01-23	Show	GitHub Exploit DB Packet Storm

217426	7.5	危険	アップル LibTIFF	-	libtiff の tif_dirread.c における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2012-2088	2014-03-17 16:34	2012-07-22	Show	GitHub Exploit DB Packet Storm

217427	7.2	危険	アップル	-	Apple iOS および Apple TV の USB ホストにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-1287	2014-03-17 16:14	2014-03-10	Show	GitHub Exploit DB Packet Storm

217428	5	警告	アップル	-	Apple iOS の SpringBoard ロック画面におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-1286	2014-03-17 16:14	2014-03-10	Show	GitHub Exploit DB Packet Storm

217429	5.8	警告	アップル	-	Apple iOS の Springboard におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1285	2014-03-17 16:14	2014-03-10	Show	GitHub Exploit DB Packet Storm

217430	1.9	注意	アップル	-	Apple iOS および Apple TV のプロファイルコンポーネントにおける構成プロファイルの表示要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1282	2014-03-17 16:13	2014-03-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292601	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and S…	NVD-CWE-noinfo	CVE-2012-1948	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

292602	-	emc	celerra_network_server vnx vnxe	EMC Celerra Network Server 6.x before 6.0.61.0, VNX 7.x before 7.0.53.2, and VNXe 2.0 and 2.1 before 2.1.3.19077 (aka MR1 SP3.2) and 2.2 before 2.2.0.19078 (aka MR2 SP0.2) do not properly implement N…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2282	2024-11-21 10:38	2012-07-17	Show	GitHub Exploit DB Packet Storm

292603	-	hp	assetmanager	Multiple cross-site scripting (XSS) vulnerabilities in HP AssetManager 5.20, 5.21, 5.22, and 9.30 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-2021	2024-11-21 10:38	2012-07-17	Show	GitHub Exploit DB Packet Storm

292604	-	rsa emc	authentication_manager rsa_authentication_manager securid_appliance	EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 do not properly use frames, which allows remote attackers to inject arbitrary web script or HTML via uns…	NVD-CWE-Other	CVE-2012-2280	2024-11-21 10:38	2012-07-14	Show	GitHub Exploit DB Packet Storm

292605	-	rsa emc	authentication_manager rsa_authentication_manager securid_appliance	Open redirect vulnerability in the Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 allows remote attackers to redirect users to arbi…	CWE-20 Improper Input Validation	CVE-2012-2279	2024-11-21 10:38	2012-07-14	Show	GitHub Exploit DB Packet Storm

292606	-	rsa emc	authentication_manager rsa_authentication_manager securid_appliance	Multiple cross-site scripting (XSS) vulnerabilities in the (1) Self-Service Console and (2) Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before …	CWE-79 Cross-site Scripting	CVE-2012-2278	2024-11-21 10:38	2012-07-14	Show	GitHub Exploit DB Packet Storm

292607	-	debian mahara	debian_linux mahara	The default configuration of the auth/saml plugin in Mahara before 1.4.2 sets the "Match username attribute to Remote username" option to false, which allows remote SAML IdP servers to spoof users of…	CWE-287 CWE-16 CWE-284 Improper Authentication Configuration Improper Access Control	CVE-2012-2351	2024-11-21 10:38	2012-07-13	Show	GitHub Exploit DB Packet Storm

292608	-	hp	operations_agent	Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1326.	NVD-CWE-noinfo	CVE-2012-2020	2024-11-21 10:38	2012-07-11	Show	GitHub Exploit DB Packet Storm

292609	-	hp	operations_agent	Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1325.	NVD-CWE-noinfo	CVE-2012-2019	2024-11-21 10:38	2012-07-11	Show	GitHub Exploit DB Packet Storm

292610	-	apache	org.apache.sling.servlets.post	The @CopyFrom operation in the POST servlet in the org.apache.sling.servlets.post bundle before 2.1.2 in Apache Sling does not prevent attempts to copy an ancestor node to a descendant node, which al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2138	2024-11-21 10:38	2012-07-10	Show	GitHub Exploit DB Packet Storm