Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217461 4.6 警告 Catfish Project - Catfish における権限を取得される脆弱性 CWE-Other
その他 		CVE-2014-2096 2014-03-14 17:22 2014-02-24 Show GitHub Exploit DB Packet Storm
217462 6.5 警告 Procentia - Procentia IntelliPen の Resources/System/Templates/Data.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2043 2014-03-14 16:55 2014-03-7 Show GitHub Exploit DB Packet Storm
217463 4.3 警告 Dokeos - Dokeos におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1877 2014-03-14 16:54 2014-02-5 Show GitHub Exploit DB Packet Storm
217464 6.8 警告 KASSELER CMS - Kasseler CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3729 2014-03-14 16:19 2013-06-28 Show GitHub Exploit DB Packet Storm
217465 3.5 注意 KASSELER CMS - Kasseler CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3728 2014-03-14 16:17 2013-06-28 Show GitHub Exploit DB Packet Storm
217466 7.5 危険 KASSELER CMS - Kasseler CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3727 2014-03-14 16:15 2013-06-28 Show GitHub Exploit DB Packet Storm
217467 7.5 危険 ZLDNN.COM - DotNetNuke 用 ZLDNN DNNArticle モジュールの RSS ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5117 2014-03-14 15:06 2013-09-12 Show GitHub Exploit DB Packet Storm
217468 4.3 警告 DNN - DotNetNuke におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7335 2014-03-14 15:05 2013-08-13 Show GitHub Exploit DB Packet Storm
217469 4.3 警告 DNN - DotNetNuke におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4649 2014-03-14 15:05 2013-08-13 Show GitHub Exploit DB Packet Storm
217470 3.5 注意 DNN - DotNetNuke におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3943 2014-03-14 14:39 2013-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292211 - hp integrated_lights-out_3_firmware
integrated_lights-out_4_firmware 		Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) with firmware before 1.50 and Integrated Lights-Out 4 (aka iLO4) with firmware before 1.13 allows remote attackers to obtain sen… NVD-CWE-noinfo
CVE-2012-3271 2024-11-21 10:40 2012-11-29 Show GitHub Exploit DB Packet Storm
292212 - xen xen Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of service (domain 0 VCPU hang and kernel panic) by modifying the physical address space in a way that triggers excessive shared pa… CWE-399
 Resource Management Errors 		CVE-2012-3433 2024-11-21 10:40 2012-11-25 Show GitHub Exploit DB Packet Storm
292213 - xen xen (1) TMEMC_SAVE_GET_CLIENT_WEIGHT, (2) TMEMC_SAVE_GET_CLIENT_CAP, (3) TMEMC_SAVE_GET_CLIENT_FLAGS and (4) TMEMC_SAVE_END in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest OS… CWE-20
 Improper Input Validation  		CVE-2012-3497 2024-11-21 10:40 2012-11-24 Show GitHub Exploit DB Packet Storm
292214 - citrix
xen 		xenserver
xen 		XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when translating paging mode is not used, allows local PV OS guest kernels to cause a denial of service (BUG … CWE-16
Configuration 		CVE-2012-3496 2024-11-21 10:40 2012-11-24 Show GitHub Exploit DB Packet Storm
292215 - xen
citrix 		xen
xenserver 		The physdev_get_free_pirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix XenServer 6.0.2 and earlier uses the return value of the get_free_pirq function as an array index without checking th… CWE-20
 Improper Input Validation  		CVE-2012-3495 2024-11-21 10:40 2012-11-24 Show GitHub Exploit DB Packet Storm
292216 - xen
citrix 		xen
xenserver 		The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denia… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3494 2024-11-21 10:40 2012-11-24 Show GitHub Exploit DB Packet Storm
292217 - redhat jboss_enterprise_data_services_platform The Teiid Java Database Connectivity (JDBC) socket, as used in JBoss Enterprise Data Services Platform before 5.3.0, does not encrypt login messages by default contrary to documentation and specifica… CWE-310
Cryptographic Issues 		CVE-2012-3431 2024-11-21 10:40 2012-11-24 Show GitHub Exploit DB Packet Storm
292218 - fedoraproject
dokuwiki 		fedora
dokuwiki 		doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote attackers to obtain sensitive information via the prefix parameter, which reveals the inst… CWE-200
Information Exposure 		CVE-2012-3354 2024-11-21 10:40 2012-11-20 Show GitHub Exploit DB Packet Storm
292219 - ibm websphere_application_server The proxy server in IBM WebSphere Application Server 7.0 before 7.0.0.27, 8.0 before 8.0.0.5, and 8.5 before 8.5.0.1, and WebSphere Virtual Enterprise, allows remote attackers to cause a denial of se… NVD-CWE-noinfo
CVE-2012-3330 2024-11-21 10:40 2012-11-14 Show GitHub Exploit DB Packet Storm
292220 - ibm tivoli_federated_identity_manager
tivoli_federated_identity_manager_business_gateway 		The Java servlets in the management console in IBM Tivoli Federated Identity Manager (TFIM) through 6.2.2 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) before 6.2.2 do not require a… CWE-287
Improper Authentication 		CVE-2012-3315 2024-11-21 10:40 2012-11-8 Show GitHub Exploit DB Packet Storm