Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217721 6.8 警告 Qian Qin - WordPress 用 qTranslate プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3251 2014-04-14 18:26 2013-06-4 Show GitHub Exploit DB Packet Storm
217722 6.8 警告 Jeremy Massel - WordPress 用 underConstruction プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2699 2014-04-14 18:26 2013-06-3 Show GitHub Exploit DB Packet Storm
217723 6.8 警告 Lester Chan - WordPress 用 WP-Print プラグインのオプションにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2693 2014-04-14 18:25 2013-04-5 Show GitHub Exploit DB Packet Storm
217724 6.8 警告 Dean Adjie Minwarie - WordPress 用 DVS Custom Notification プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4921 2014-04-14 18:24 2012-09-14 Show GitHub Exploit DB Packet Storm
217725 5.8 警告 kernel.org - Linux-PAM 用 pam_timestamp モジュールの pam_timestamp.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2583 2014-04-14 18:04 2014-03-26 Show GitHub Exploit DB Packet Storm
217726 7.5 危険 Pearson Education, Inc. - Pearson eSIS Enterprise Student Information System のパスワードリセット機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-1455 2014-04-14 17:52 2014-04-6 Show GitHub Exploit DB Packet Storm
217727 2.1 注意 CloudBees - CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2033 2014-04-14 17:38 2013-05-2 Show GitHub Exploit DB Packet Storm
217728 6.5 警告 レッドハット (KIE Group)
レッドハット		 - 複数の Red Hat Jboss 製品における任意の Java コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-6468 2014-04-14 17:23 2013-11-4 Show GitHub Exploit DB Packet Storm
217729 7.5 危険 SAP - SAP Business Object Processing Framework for ABAP におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-2752 2014-04-14 17:23 2014-03-9 Show GitHub Exploit DB Packet Storm
217730 7.5 危険 SAP - SAP Print and Output Management におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-2751 2014-04-14 17:22 2014-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291911 - xen xen The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service (Xen crash) via a crafted pirq value that triggers an o… NVD-CWE-noinfo
CVE-2012-4536 2024-11-21 10:43 2012-11-22 Show GitHub Exploit DB Packet Storm
291912 - xen xen Xen 3.4 through 4.2, and possibly earlier versions, allows local guest OS administrators to cause a denial of service (Xen infinite loop and physical CPU consumption) by setting a VCPU with an "inapp… CWE-399
 Resource Management Errors 		CVE-2012-4535 2024-11-21 10:43 2012-11-22 Show GitHub Exploit DB Packet Storm
291913 - mcrypt mcrypt Stack-based buffer overflow in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name. NOTE: it … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4527 2024-11-21 10:43 2012-11-22 Show GitHub Exploit DB Packet Storm
291914 - uninett radsecproxy The DTLS support in radsecproxy before 1.6.2 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the ce… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4566 2024-11-21 10:43 2012-11-20 Show GitHub Exploit DB Packet Storm
291915 - google web_toolkit Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 Beta and release candidates before 2.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vector… CWE-79
Cross-site Scripting 		CVE-2012-4563 2024-11-21 10:43 2012-11-20 Show GitHub Exploit DB Packet Storm
291916 - uninett radsecproxy radsecproxy before 1.6.1 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, whi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4523 2024-11-21 10:43 2012-11-20 Show GitHub Exploit DB Packet Storm
291917 - cups-pk-helper_project cups-pk-helper cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4510 2024-11-21 10:43 2012-11-20 Show GitHub Exploit DB Packet Storm
291918 - matomo matomo Cross-site scripting (XSS) vulnerability in Piwik before 1.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-4541 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
291919 - viewvc
debian 		viewvc
debian_linux 		Cross-site scripting (XSS) vulnerability in the "extra" details in the DiffSource._get_row function in lib/viewvc.py in ViewVC 1.0.x before 1.0.13 and 1.1.x before 1.1.16 allows remote authenticated … CWE-79
Cross-site Scripting 		CVE-2012-4533 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm
291920 - steve_j_baker plib Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4552 2024-11-21 10:43 2012-11-19 Show GitHub Exploit DB Packet Storm