Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217531	10	危険	PaperThin	-	PaperThin CommonSpot における任意のコードを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-2874	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217532	5	警告	PaperThin	-	PaperThin CommonSpot における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2873	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217533	5	警告	PaperThin	-	PaperThin CommonSpot におけるディレクトリ一覧から重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2872	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217534	6.5	警告	PaperThin	-	PaperThin CommonSpot におけるアクションを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2862	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217535	5	警告	PaperThin	-	PaperThin CommonSpot における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2871	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217536	4.3	警告	PaperThin	-	PaperThin CommonSpot におけるクロスサイトスクリプティングの脆弱性	CWE-Other その他	CVE-2014-2861	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217537	4.3	警告	PaperThin	-	PaperThin CommonSpot におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2860	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217538	7.5	危険	PaperThin	-	PaperThin CommonSpot におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2859	2014-04-21 19:01	2014-04-14	Show	GitHub Exploit DB Packet Storm

217539	4	警告	コクヨS&T株式会社	-	Android 版 CamiApp における Content Provider のアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1986	2014-04-21 18:31	2014-04-14	Show	GitHub Exploit DB Packet Storm

217540	2.1	注意	PackageKit Project	-	PackageKit の Zypper バックエンドにおけるパッケージをダウングレードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1764	2014-04-21 18:28	2013-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291911	-	xen	xen	The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service (Xen crash) via a crafted pirq value that triggers an o…	NVD-CWE-noinfo	CVE-2012-4536	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

291912	-	xen	xen	Xen 3.4 through 4.2, and possibly earlier versions, allows local guest OS administrators to cause a denial of service (Xen infinite loop and physical CPU consumption) by setting a VCPU with an "inapp…	CWE-399 Resource Management Errors	CVE-2012-4535	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

291913	-	mcrypt	mcrypt	Stack-based buffer overflow in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name. NOTE: it …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4527	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

291914	-	uninett	radsecproxy	The DTLS support in radsecproxy before 1.6.2 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the ce…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4566	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

291915	-	google	web_toolkit	Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 Beta and release candidates before 2.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2012-4563	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

291916	-	uninett	radsecproxy	radsecproxy before 1.6.1 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, whi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4523	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

291917	-	cups-pk-helper_project	cups-pk-helper	cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4510	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

291918	-	matomo	matomo	Cross-site scripting (XSS) vulnerability in Piwik before 1.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-4541	2024-11-21 10:43	2012-11-19	Show	GitHub Exploit DB Packet Storm

291919	-	viewvc debian	viewvc debian_linux	Cross-site scripting (XSS) vulnerability in the "extra" details in the DiffSource._get_row function in lib/viewvc.py in ViewVC 1.0.x before 1.0.13 and 1.1.x before 1.1.16 allows remote authenticated …	CWE-79 Cross-site Scripting	CVE-2012-4533	2024-11-21 10:43	2012-11-19	Show	GitHub Exploit DB Packet Storm

291920	-	steve_j_baker	plib	Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4552	2024-11-21 10:43	2012-11-19	Show	GitHub Exploit DB Packet Storm