Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217491 6.4 警告 Apache Software Foundation - Apache Solr の DocumentAnalysisRequestHandler における脆弱性 CWE-noinfo
情報不足 		CVE-2013-6408 2014-04-7 17:57 2013-05-30 Show GitHub Exploit DB Packet Storm
217492 6.4 警告 Apache Software Foundation - Apache Solr の XML 用 UpdateRequestHandler における脆弱性 CWE-noinfo
情報不足 		CVE-2013-6407 2014-04-7 17:56 2013-12-9 Show GitHub Exploit DB Packet Storm
217493 4.3 警告 Apache Software Foundation - Apache Solr の SolrResourceLoader におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-6397 2014-04-7 17:55 2013-09-21 Show GitHub Exploit DB Packet Storm
217494 5.7 警告 Linux
レッドハット		 - Linux Kernel の KVM サブシステムの arch/x86/kvm/lapic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2013-6367 2014-04-7 17:54 2013-12-12 Show GitHub Exploit DB Packet Storm
217495 1.9 注意 LIGHTTPD - Debian GNU/Linux 上の lighthttpd における PHP 制御ソケットを乗っ取られる脆弱性 CWE-DesignError
CVE-2013-1427 2014-04-7 17:49 2013-03-15 Show GitHub Exploit DB Packet Storm
217496 5 警告 LIGHTTPD
オラクル		 - lighttpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0295 2014-04-7 17:47 2010-02-3 Show GitHub Exploit DB Packet Storm
217497 5 警告 The PHP Group - PHP の SQLite における open_basedir 保護機能を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3365 2014-04-7 17:46 2012-07-19 Show GitHub Exploit DB Packet Storm
217498 10 危険 The PHP Group
アップル		 - PHP の stream の実装における脆弱性 - CVE-2012-2688 2014-04-7 17:45 2012-07-19 Show GitHub Exploit DB Packet Storm
217499 4.3 警告 The PHP Group - PHP の Fileinfo コンポーネントの libmagic/softmagic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4636 2014-04-7 17:44 2013-06-20 Show GitHub Exploit DB Packet Storm
217500 5 警告 The PHP Group - PHP の Calendar コンポーネントの jewish.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-4635 2014-04-7 17:43 2013-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292131 5.4 MEDIUM
Network 		ibm infosphere_guardium IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a… CWE-79
Cross-site Scripting 		CVE-2012-3341 2024-11-21 10:40 2020-09-2 Show GitHub Exploit DB Packet Storm
292132 4.3 MEDIUM
Network 		ibm infosphere_guardium IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to XML external entity injection, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vul… CWE-776
XML Entity Expansion 		CVE-2012-3340 2024-11-21 10:40 2020-09-2 Show GitHub Exploit DB Packet Storm
292133 5.3 MEDIUM
Network 		ibm infosphere_guardium IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to bypass security restrictions, caused by improper restrictions on the create new user account functionality. An attacker cou… CWE-20
 Improper Input Validation  		CVE-2012-3338 2024-11-21 10:40 2020-09-2 Show GitHub Exploit DB Packet Storm
292134 5.3 MEDIUM
Network 		ibm infosphere_guardium IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" s… CWE-22
Path Traversal 		CVE-2012-3337 2024-11-21 10:40 2020-09-2 Show GitHub Exploit DB Packet Storm
292135 8.8 HIGH
Network 		ibm infosphere_guardium IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to multiple scripts, which could allow the attac… CWE-89
SQL Injection 		CVE-2012-3336 2024-11-21 10:40 2020-09-2 Show GitHub Exploit DB Packet Storm
292136 6.1 MEDIUM
Network 		longtailvideo jw_player Multiple cross-site scripting (XSS) vulnerabilities in LongTail Video JW Player through 5.10.2295 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) logo.link, or (3)… CWE-79
Cross-site Scripting 		CVE-2012-3351 2024-11-21 10:40 2020-02-21 Show GitHub Exploit DB Packet Storm
292137 8.1 HIGH
Network 		gatewaygeomatics mapserver Gateway Geomatics MapServer for Windows before 3.0.6 contains a Local File Include Vulnerability which allows remote attackers to execute local PHP code and obtain sensitive information. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2012-2950 2024-11-21 10:40 2020-01-10 Show GitHub Exploit DB Packet Storm
292138 8.8 HIGH
Network 		wisc htcondor The (1) my_popenv_impl and (2) my_spawnv functions in src/condor_utils/my_popen.cpp and the (3) systemCommand function in condor_vm-gahp/vmgahp_common.cpp in Condor 7.6.x before 7.6.10 and 7.8.x befo… NVD-CWE-noinfo
CVE-2012-3490 2024-11-21 10:40 2020-01-10 Show GitHub Exploit DB Packet Storm
292139 8.8 HIGH
Network 		fedoraproject sssd A flaw was found in SSSD version 1.9.0. The SSSD's access-provider logic causes the result of the HBAC rule processing to be ignored in the event that the access-provider is also handling the setup o… CWE-287
Improper Authentication 		CVE-2012-3462 2024-11-21 10:40 2019-12-27 Show GitHub Exploit DB Packet Storm
292140 7.8 HIGH
Local 		ecryptfs
debian 		ecryptfs-utils
debian_linux 		ecryptfs-utils: suid helper does not restrict mounting filesystems with nosuid,nodev which creates a possible privilege escalation CWE-20
 Improper Input Validation  		CVE-2012-3409 2024-11-21 10:40 2019-12-20 Show GitHub Exploit DB Packet Storm