Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217811 7.5 危険 Free Document Management Software - OpenDocMan の ajax_udf.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-1945 2014-03-11 14:39 2014-02-24 Show GitHub Exploit DB Packet Storm
217812 4.3 警告 ilch.de - Ilch CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1944 2014-03-11 14:38 2014-02-19 Show GitHub Exploit DB Packet Storm
217813 4.3 警告 Engineering Ingegneria Informatica - SpagoBI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6233 2014-03-11 14:37 2013-12-16 Show GitHub Exploit DB Packet Storm
217814 3.5 注意 Engineering Ingegneria Informatica - SpagoBI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6232 2014-03-11 14:36 2013-12-16 Show GitHub Exploit DB Packet Storm
217815 4.3 警告 Sprint
Airvana LP		 - Airvana HubBub C1-600-RT および Sprint AIRAVE の管理ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2270 2014-03-11 14:19 2013-02-27 Show GitHub Exploit DB Packet Storm
217816 5 警告 IBM - IBM Cognos Business Intelligence のサーバにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0854 2014-03-10 18:40 2014-02-14 Show GitHub Exploit DB Packet Storm
217817 7.1 危険 シスコシステムズ - Cisco IPS ソフトウェアの produce-verbose-alert 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0718 2014-03-10 18:40 2014-02-19 Show GitHub Exploit DB Packet Storm
217818 7.1 危険 シスコシステムズ - Cisco IPS ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0720 2014-03-10 18:39 2014-02-19 Show GitHub Exploit DB Packet Storm
217819 4 警告 MySQL AB
オラクル		 - Oracle MySQL の MySQL Server における Optimizer に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0386 2014-03-10 17:11 2014-01-14 Show GitHub Exploit DB Packet Storm
217820 4.3 警告 OpenStack - OpenStack Object Storage の TempURL ミドルウェアにおける秘密の URL を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-0006 2014-03-10 17:06 2014-01-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294221 - mozilla firefox
firefox_esr
thunderbird
thunderbird_esr
seamonkey 		Use-after-free vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 on 32-bit … CWE-399
 Resource Management Errors 		CVE-2012-0454 2024-11-21 10:35 2012-03-15 Show GitHub Exploit DB Packet Storm
294222 - adobe coldfusion Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a d… NVD-CWE-Other
CVE-2012-0770 2024-11-21 10:35 2012-03-14 Show GitHub Exploit DB Packet Storm
294223 - tibco spotfire_server
spotfire_analytics_server
web_player_automation_services
spotfire_professional 		TIBCO Spotfire Web Application, Web Player Application, Automation Services Application, and Analytics Client Application in Spotfire Analytics Server before 10.1.2; Server before 3.3.3; and Web Play… CWE-200
Information Exposure 		CVE-2012-0690 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294224 - tibco activematrix_bpm
activematrix_service_grid
activematrix_service_bus
silver_fabric_activematrix_service_grid_distribution
activematrix_businessworks_service_engine 		The server in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x before 3.1.5, BusinessWorks Service Engine 5.9.x before… CWE-200
Information Exposure 		CVE-2012-0689 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294225 - tibco silver_fabric_activematrix_service_grid_distribution
activematrix_service_grid
activematrix_service_bus
activematrix_businessworks_service_engine
activematrix_bpm 		Cross-site scripting (XSS) vulnerability in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x before 3.1.5, BusinessWor… CWE-79
Cross-site Scripting 		CVE-2012-0688 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294226 - tibco activematrix_service_grid
activematrix_service_bus
activematrix_businessworks_service_engine
silver_fabric_activematrix_service_grid_distribution
activematrix_bpm
businessevents
act… 		TIBCO ActiveMatrix Runtime Platform in Service Grid and Service Bus 2.x before 2.3.2 and BusinessWorks Service Engine before 5.8.2; TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Ser… CWE-200
Information Exposure 		CVE-2012-0687 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294227 - openssl openssl The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for conte… CWE-310
Cryptographic Issues 		CVE-2012-0884 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294228 - apple safari WebKit in Apple Safari before 5.1.4 does not properly handle redirects in conjunction with HTTP authentication, which might allow remote web servers to capture credentials by logging the Authorizatio… CWE-200
Information Exposure 		CVE-2012-0647 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294229 - apple safari WebKit in Apple Safari before 5.1.4 does not properly implement "From third parties and advertisers" cookie blocking, which makes it easier for remote web servers to track users via a cookie. CWE-200
Information Exposure 		CVE-2012-0640 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm
294230 - apple safari The Internationalized Domain Name (IDN) feature in Apple Safari before 5.1.4 on Windows does not properly restrict the characters in URLs, which allows remote attackers to spoof a domain name via uns… CWE-20
 Improper Input Validation  		CVE-2012-0584 2024-11-21 10:35 2012-03-13 Show GitHub Exploit DB Packet Storm