Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217701 7.2 危険 Little Kernel project - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで配布される Little Kernel ブートローダにおけるデバイスロックおよびカーネルの署名の制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-4325 2014-08-26 15:45 2014-08-5 Show GitHub Exploit DB Packet Storm
217702 1.9 注意 Little Kernel project - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで配布される Little Kernel ブートローダにおける制御可能なメモリ領域にデータを書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0974 2014-08-26 15:39 2014-07-23 Show GitHub Exploit DB Packet Storm
217703 7.2 危険 Little Kernel project - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで配布される Little Kernel ブートローダにおけるブートイメージの認証要件を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-0973 2014-08-26 15:37 2014-06-13 Show GitHub Exploit DB Packet Storm
217704 4.6 警告 SaltStack - Salt における脆弱性 CWE-59
リンク解釈の問題 		CVE-2014-3563 2014-08-26 15:16 2014-08-1 Show GitHub Exploit DB Packet Storm
217705 9.4 危険 ヒューレット・パッカード - HP Service Manager におけるアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2634 2014-08-26 14:55 2014-08-22 Show GitHub Exploit DB Packet Storm
217706 6.8 警告 ヒューレット・パッカード - HP Service Manager のサーバにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2633 2014-08-26 14:54 2014-08-22 Show GitHub Exploit DB Packet Storm
217707 10 危険 ヒューレット・パッカード - HP Service Manager の WebTier コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2632 2014-08-26 14:54 2014-08-22 Show GitHub Exploit DB Packet Storm
217708 4.3 警告 ヒューレット・パッカード - HP Service Manager の Mobility Web Client および Service Request Catalog コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6222 2014-08-26 14:53 2013-10-21 Show GitHub Exploit DB Packet Storm
217709 4.6 警告 IBM - IBM Power 7 システムにおける Service Processor 特権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6306 2014-08-26 12:27 2014-08-19 Show GitHub Exploit DB Packet Storm
217710 10 危険 Shenzhen Tenda Technology Co.,Ltd. - Shenzhen Tenda Technology Tenda A5s ルータのファームウェアにおける認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5246 2014-08-26 11:43 2014-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297051 - netsweeper netsweeper Cross-site scripting (XSS) vulnerability in tools/local_lookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a loo… CWE-79
Cross-site Scripting 		CVE-2012-2446 2024-11-21 10:39 2012-07-10 Show GitHub Exploit DB Packet Storm
297052 - hazama mt4i Cross-site scripting (XSS) vulnerability in the MT4i plugin 3.1 beta 4 and earlier for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different… CWE-79
Cross-site Scripting 		CVE-2012-2644 2024-11-21 10:39 2012-07-7 Show GitHub Exploit DB Packet Storm
297053 - kent-web yy-board Cross-site scripting (XSS) vulnerability in KENT-WEB YY-BOARD before 6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted form entry. CWE-79
Cross-site Scripting 		CVE-2012-2643 2024-11-21 10:39 2012-07-7 Show GitHub Exploit DB Packet Storm
297054 - hazama mt4i Cross-site scripting (XSS) vulnerability in the MT4i plugin 3.1 beta 4 and earlier for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different… CWE-79
Cross-site Scripting 		CVE-2012-2642 2024-11-21 10:39 2012-07-7 Show GitHub Exploit DB Packet Storm
297055 - zenphoto zenphoto Cross-site scripting (XSS) vulnerability in Zenphoto before 1.4.3 allows remote attackers to inject arbitrary web script or HTML by triggering improper interaction with an unspecified library. CWE-79
Cross-site Scripting 		CVE-2012-2641 2024-11-21 10:39 2012-07-6 Show GitHub Exploit DB Packet Storm
297056 - yomecolle nec_biglobe_yome_collection The NEC BIGLOBE Yome Collection application 1.8.3 and earlier for Android allows remote attackers to read the IMEI value from an SD card via a crafted application that lacks the READ_PHONE_STATE perm… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2640 2024-11-21 10:39 2012-07-6 Show GitHub Exploit DB Packet Storm
297057 - wellintech kingview Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001. CWE-22
Path Traversal 		CVE-2012-2560 2024-11-21 10:39 2012-07-5 Show GitHub Exploit DB Packet Storm
297058 - wellintech kinghistorian WellinTech KingHistorian 3.0 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer write) via a crafted packet to TCP port 5678. CWE-399
 Resource Management Errors 		CVE-2012-2559 2024-11-21 10:39 2012-07-5 Show GitHub Exploit DB Packet Storm
297059 - ge intelligent_platforms_si7_i\/o_driver
intelligent_platforms_proficy_batch_execution
intelligent_platforms_proficy_historian
intelligent_platforms_proficy_hmi\/scada_ifix
intelligent_platf… 		An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; Proficy HMI/SCADA iFIX 5.0 an… CWE-78
OS Command  		CVE-2012-2516 2024-11-21 10:39 2012-07-5 Show GitHub Exploit DB Packet Storm
297060 - emc
ge 		captiva_quickscan_pro
intelligent_platforms_si7_i\/o_driver
intelligent_platforms_proficy_batch_execution
intelligent_platforms_proficy_historian
documentum_applicationxtender_desktop
 Multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control in KeyHelp.ocx 1.2.312 in KeyWorks KeyHelp Module (aka the HTML Help component), as used in EMC Documentum ApplicationXt… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2515 2024-11-21 10:39 2012-07-5 Show GitHub Exploit DB Packet Storm