Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217831 10 危険 The PHP Group
アップル		 - PHP の stream の実装における脆弱性 - CVE-2012-2688 2014-04-7 17:45 2012-07-19 Show GitHub Exploit DB Packet Storm
217832 4.3 警告 The PHP Group - PHP の Fileinfo コンポーネントの libmagic/softmagic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4636 2014-04-7 17:44 2013-06-20 Show GitHub Exploit DB Packet Storm
217833 5 警告 The PHP Group - PHP の Calendar コンポーネントの jewish.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-4635 2014-04-7 17:43 2013-06-20 Show GitHub Exploit DB Packet Storm
217834 5 警告 The PHP Group
アップル		 - PHP の ext/standard/quot_print.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2110 2014-04-7 17:40 2013-06-20 Show GitHub Exploit DB Packet Storm
217835 9.3 危険 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5844 2014-04-7 17:39 2013-10-15 Show GitHub Exploit DB Packet Storm
217836 9.3 危険 IBM
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5838 2014-04-7 17:37 2013-10-15 Show GitHub Exploit DB Packet Storm
217837 6.8 警告 The PHP Group - PHP の Sessions サブシステムにおける Web セッションをハイジャックされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4718 2014-04-7 17:37 2011-12-2 Show GitHub Exploit DB Packet Storm
217838 6.8 警告 The PHP Group
アップル		 - PHP の ext/xml/xml.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4113 2014-04-7 17:36 2013-07-11 Show GitHub Exploit DB Packet Storm
217839 6.5 警告 X.Org Foundation - X.Org X11 の xorg-server モジュールの dix/dixfonts.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4396 2014-04-7 17:35 2013-10-8 Show GitHub Exploit DB Packet Storm
217840 2.6 注意 Quagga - Quagga の OSPFD API の new_msg_lsa_change_notify 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2236 2014-04-7 17:34 2013-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291861 - ibm rational_clearquest The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element. NVD-CWE-noinfo
CVE-2012-4839 2024-11-21 10:43 2012-12-20 Show GitHub Exploit DB Packet Storm
291862 - ibm lotus_foundations_start Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a Webconfig Users user-att… CWE-79
Cross-site Scripting 		CVE-2012-4848 2024-11-21 10:43 2012-12-19 Show GitHub Exploit DB Packet Storm
291863 - ibm lotus_notes IBM Lotus Notes 8.5.x before 8.5.3 FP3 does not include the HTTPOnly flag in a Set-Cookie header for a web-application cookie, which makes it easier for remote attackers to obtain potentially sensiti… CWE-200
Information Exposure 		CVE-2012-4846 2024-11-21 10:43 2012-12-19 Show GitHub Exploit DB Packet Storm
291864 - apache tomcat org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote attackers to… CWE-399
 Resource Management Errors 		CVE-2012-4534 2024-11-21 10:43 2012-12-19 Show GitHub Exploit DB Packet Storm
291865 - tropos mesh_os
1310_distrubution_automation_mesh_router
1410_mesh_router
1410_wireless_mesh_router
3310_indoor_mesh_router
3320_indoor_mesh_router
4310_mobile_mesh_router
6310_mesh_rout… 		Mesh OS before 7.9.1.1 on Tropos wireless mesh routers does not use a sufficient source of entropy for SSH keys, which makes it easier for man-in-the-middle attackers to spoof a device or modify a cl… CWE-310
Cryptographic Issues 		CVE-2012-4898 2024-11-21 10:43 2012-12-18 Show GitHub Exploit DB Packet Storm
291866 - invensys
siemens 		wonderware_intouch
processsuite 		Invensys Wonderware InTouch 2012 R2 and earlier and Siemens ProcessSuite use a weak encryption algorithm for data in Ps_security.ini, which makes it easier for local users to discover passwords by re… CWE-310
Cryptographic Issues 		CVE-2012-4693 2024-11-21 10:43 2012-12-18 Show GitHub Exploit DB Packet Storm
291867 - siemens automation_license_manager Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory consumption) via crafted packets. CWE-399
 Resource Management Errors 		CVE-2012-4691 2024-11-21 10:43 2012-12-18 Show GitHub Exploit DB Packet Storm
291868 - axway securetransport Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to (1) read, (2) delete, or (3) create files, or (4) list directories, via a… CWE-22
Path Traversal 		CVE-2012-4991 2024-11-21 10:43 2012-12-13 Show GitHub Exploit DB Packet Storm
291869 - layton_technology helpbox Layton Helpbox 4.4.0 allows remote attackers to discover cleartext credentials for the login page by sniffing the network. CWE-310
Cryptographic Issues 		CVE-2012-4977 2024-11-21 10:43 2012-12-12 Show GitHub Exploit DB Packet Storm
291870 - layton_technology helpbox selectawasset.asp in Layton Helpbox 4.4.0 allows remote attackers to discover ODBC database credentials via an element=sys_asset_id request, which is not properly handled during construction of an er… CWE-200
Information Exposure 		CVE-2012-4976 2024-11-21 10:43 2012-12-12 Show GitHub Exploit DB Packet Storm