Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217421 6.8 警告 Debian
Canonical
Fedora Project
Linux Foundation		 - CUPS および cups-filters の pdftoopvp フィルタにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6474 2014-03-18 11:52 2013-11-6 Show GitHub Exploit DB Packet Storm
217422 6.8 警告 Canonical
Linux Foundation		 - cups-filters の urftopdf フィルタにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6473 2014-03-18 11:51 2013-11-6 Show GitHub Exploit DB Packet Storm
217423 4.3 警告 Open Source Technologies - WordPress 用 Responsive Logo Slideshow プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1759 2014-03-17 18:17 2013-02-18 Show GitHub Exploit DB Packet Storm
217424 4.3 警告 Ulysses Ronquillo - WordPress 用 Marekkis Watermark プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1758 2014-03-17 18:17 2013-02-18 Show GitHub Exploit DB Packet Storm
217425 7.5 危険 アップル - Apple Pages における脆弱性に対するアップデート CWE-399
リソース管理の問題 		CVE-2014-1252 2014-03-17 16:39 2014-01-23 Show GitHub Exploit DB Packet Storm
217426 7.5 危険 アップル
LibTIFF		 - libtiff の tif_dirread.c における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2088 2014-03-17 16:34 2012-07-22 Show GitHub Exploit DB Packet Storm
217427 7.2 危険 アップル - Apple iOS および Apple TV の USB ホストにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1287 2014-03-17 16:14 2014-03-10 Show GitHub Exploit DB Packet Storm
217428 5 警告 アップル - Apple iOS の SpringBoard ロック画面におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-1286 2014-03-17 16:14 2014-03-10 Show GitHub Exploit DB Packet Storm
217429 5.8 警告 アップル - Apple iOS の Springboard におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1285 2014-03-17 16:14 2014-03-10 Show GitHub Exploit DB Packet Storm
217430 1.9 注意 アップル - Apple iOS および Apple TV のプロファイルコンポーネントにおける構成プロファイルの表示要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1282 2014-03-17 16:13 2014-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294681 - microsoft windows_server_2008
windows_7
windows_xp
windows_server_2003
windows_vista 		Unspecified vulnerability in winmm.dll in Windows Multimedia Library in Windows Media Player (WMP) in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote a… NVD-CWE-noinfo
CVE-2012-0003 2024-11-21 10:34 2012-01-11 Show GitHub Exploit DB Packet Storm
294682 - microsoft windows_server_2008
windows_7
windows_xp
windows_server_2003
windows_vista 		The kernel in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly load structured exception han… NVD-CWE-Other
CVE-2012-0001 2024-11-21 10:34 2012-01-11 Show GitHub Exploit DB Packet Storm
294683 - apache struts The DebuggingInterceptor component in Apache Struts before 2.3.1.1, when developer mode is used, allows remote attackers to execute arbitrary commands via unspecified vectors. NOTE: the vendor chara… CWE-94
Code Injection 		CVE-2012-0394 2024-11-21 10:34 2012-01-9 Show GitHub Exploit DB Packet Storm
294684 - apache struts The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public constructors, which allows remote attackers to create or overwrite arbitrary files via a crafted p… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0393 2024-11-21 10:34 2012-01-9 Show GitHub Exploit DB Packet Storm
294685 - apache struts The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whitelist, which allows remote attackers to execute arbitrary commands via a crafted HTTP Cookie header… NVD-CWE-noinfo
CVE-2012-0392 2024-11-21 10:34 2012-01-9 Show GitHub Exploit DB Packet Storm
294686 - maradns maradns MaraDNS before 1.3.07.12 and 1.4.x before 1.4.08 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a den… CWE-400
 Uncontrolled Resource Consumption 		CVE-2012-0024 2024-11-21 10:34 2012-01-8 Show GitHub Exploit DB Packet Storm
294687 - wordpress wordpress Cross-site scripting (XSS) vulnerability in wp-comments-post.php in WordPress 3.3.x before 3.3.1, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via th… CWE-79
Cross-site Scripting 		CVE-2012-0287 2024-11-21 10:34 2012-01-6 Show GitHub Exploit DB Packet Storm
294688 - gnu gnutls The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it eas… CWE-310
Cryptographic Issues 		CVE-2012-0390 2024-11-21 10:34 2012-01-6 Show GitHub Exploit DB Packet Storm
294689 - openssl openssl The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted d… CWE-399
 Resource Management Errors 		CVE-2012-0027 2024-11-21 10:34 2012-01-6 Show GitHub Exploit DB Packet Storm
294690 4.3 MEDIUM
Network 		ibm rational_asset_manager IBM Rational Asset Manager 7.5 could allow a remote attacker to bypass security restrictions. An attacker could exploit this vulnerability using the UID parameter to modify another user's preferences. NVD-CWE-Other
CVE-2011-4820 2024-11-21 10:33 2022-09-29 Show GitHub Exploit DB Packet Storm