Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217491	10	危険	OpenJPEG project	-	OpenJPEG におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4290	2014-04-23 17:22	2013-09-11	Show	GitHub Exploit DB Packet Storm

217492	10	危険	OpenJPEG project	-	OpenJPEG の lib/openjp3d/jp3d.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2013-4289	2014-04-23 17:22	2013-09-11	Show	GitHub Exploit DB Packet Storm

217493	3.8	注意	ヒューレット・パッカード	-	HP-UX 上で稼動する HP-UX Whitelisting におけるアクセス制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-6219	2014-04-23 16:41	2013-10-21	Show	GitHub Exploit DB Packet Storm

217494	10	危険	ヒューレット・パッカード	-	HP Network Node Manager i における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-6218	2014-04-23 16:40	2013-10-21	Show	GitHub Exploit DB Packet Storm

217495	8.5	危険	ヒューレット・パッカード	-	HP Universal Configuration Management Database の Integration Service における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-6215	2014-04-23 16:40	2013-10-21	Show	GitHub Exploit DB Packet Storm

217496	4	警告	ヒューレット・パッカード	-	HP Universal Configuration Management Database の Integration Service における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-6214	2014-04-23 16:39	2013-10-21	Show	GitHub Exploit DB Packet Storm

217497	10	危険	ヒューレット・パッカード	-	HP LoadRunner の Virtual User Generator における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-6213	2014-04-23 16:38	2013-10-30	Show	GitHub Exploit DB Packet Storm

217498	6.5	警告	ヒューレット・パッカード	-	HP Database and Middleware Automation における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-6212	2014-04-23 16:37	2013-10-21	Show	GitHub Exploit DB Packet Storm

217499	3.5	注意	Fedora Project Digium	-	Asterisk Open Source の PJSIP チャネルドライバの res/res_pjsip_exten_state.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2289	2014-04-23 15:53	2014-03-10	Show	GitHub Exploit DB Packet Storm

217500	4.3	警告	Fedora Project Digium	-	Asterisk Open Source の PJSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2288	2014-04-23 15:52	2014-03-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291871	9.8	CRITICAL Network	ezhometech	ezserver	A Code Execution vulnerability exists in the memcpy function when processing AMF requests in Ezhometech EzServer 7.0, which could let a remote malicious user execute arbitrary code or cause a Denial …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4750	2024-11-21 10:43	2020-01-14	Show	GitHub Exploit DB Packet Storm

291872	6.1	MEDIUM Local	safend	data_protector_agent	An issue exists in Safend Data Protector Agent 3.4.5586.9772 in the securitylayer.log file in the logs.9972 directory, which could let a malicious user decrypt and potentially change the Safend secur…	CWE-269 Improper Privilege Management	CVE-2012-4767	2024-11-21 10:43	2020-01-14	Show	GitHub Exploit DB Packet Storm

291873	7.8	HIGH Local	citrix	receiver xenapp_online	Citrix XenApp Online Plug-in for Windows 12.1 and earlier, and Citrix Receiver for Windows 3.2 and earlier could allow remote attackers to execute arbitrary code by convincing a target to open a spec…	CWE-20 Improper Input Validation	CVE-2012-4603	2024-11-21 10:43	2020-01-11	Show	GitHub Exploit DB Packet Storm

291874	7.8	HIGH Local	toshiba	configfree_utility	Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code.	CWE-787 Out-of-bounds Write	CVE-2012-4980	2024-11-21 10:43	2019-12-28	Show	GitHub Exploit DB Packet Storm

291875	7.8	HIGH Local	freebsd debian	freebsd debian_linux	FreeBSD: Input Validation Flaw allows local users to gain elevated privileges	CWE-20 Improper Input Validation	CVE-2012-4576	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

291876	6.1	MEDIUM Network	piwigo	piwigo	piwigo has XSS in password.php (incomplete fix for CVE-2012-4525)	CWE-79 Cross-site Scripting	CVE-2012-4526	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

291877	6.1	MEDIUM Network	piwigo	piwigo	piwigo has XSS in password.php	CWE-79 Cross-site Scripting	CVE-2012-4525	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

291878	7.5	HIGH Network	sillycycle fedoraproject	xlockmore fedora	xlockmore before 5.43 'dclock' security bypass vulnerability	CWE-20 Improper Input Validation	CVE-2012-4524	2024-11-21 10:43	2019-11-22	Show	GitHub Exploit DB Packet Storm

291879	9.8	CRITICAL Network	letodms_project	letodms	SQL injection vulnerability in LetoDMS_Core/Core/inc.ClassDMS.php in LetoDMS (formerly MyDMS) before 3.3.8 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2012-4570	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

291880	6.1	MEDIUM Network	letodms_project	letodms	Multiple cross-site scripting (XSS) vulnerabilities in out/out.UsrMgr.php in LetoDMS (formerly MyDMS) before 3.3.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2012-4569	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm