Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217831	4.3	警告	Mozilla Foundation	-	Bugzilla の jsonrpc.cgi の WebService/Server/JSONRPC.pm の JSONP エンドポイント内の response 関数におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-1546	2014-08-15 15:33	2014-07-24	Show	GitHub Exploit DB Packet Storm

217832	4.3	警告	Piwigo	-	Piwigo におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1980	2014-08-15 13:35	2014-08-8	Show	GitHub Exploit DB Packet Storm

217833	3.5	注意	Compfight	-	WordPress 用 Compfight プラグインの compfight-search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5202	2014-08-15 12:36	2014-07-3	Show	GitHub Exploit DB Packet Storm

217834	6.5	警告	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco Unified Presence Server の管理 Web インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3339	2014-08-15 12:04	2014-08-12	Show	GitHub Exploit DB Packet Storm

217835	8.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の CTIManager モジュールにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2014-3338	2014-08-15 12:04	2014-08-11	Show	GitHub Exploit DB Packet Storm

217836	6.8	警告	シスコシステムズ	-	Cisco Unified Communications Manager の SIP の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3337	2014-08-15 12:03	2014-08-11	Show	GitHub Exploit DB Packet Storm

217837	4.4	警告	Puppet	-	Puppet Enterprise および Mcollective で使用される MCollective aes_security プラグインにおける許可されていない Mcollective 接続を確立される脆弱性	CWE-362 競合状態	CVE-2014-3251	2014-08-15 10:54	2014-07-15	Show	GitHub Exploit DB Packet Storm

217838	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2014-3167	2014-08-15 10:47	2014-08-12	Show	GitHub Exploit DB Packet Storm

217839	7.5	危険	Google	-	Google Chrome で使用される Blink の Web Sockets の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-3165	2014-08-15 10:46	2014-08-12	Show	GitHub Exploit DB Packet Storm

217840	6.8	警告	マイクロソフト	-	Microsoft Windows Media Center の MCPlayer.dll における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2014-4060	2014-08-15 10:33	2014-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
297161	-	hp	intelligent_management_center	Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent Management Center (IMC) before 5.1 E0101P01 allows remote attackers to execute arbitrary code via v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3274	2024-11-21 10:40	2012-12-6	Show	GitHub Exploit DB Packet Storm

297162	-	hp	laserjet_pro_mfp_m401 laserjet_pro_mfp_m425	Multiple unspecified vulnerabilities on the HP LaserJet Pro 400 MFP M425 with firmware 20120625 and LaserJet 400 M401 with firmware 20120621 allow remote attackers to obtain sensitive information via…	NVD-CWE-noinfo	CVE-2012-3273	2024-11-21 10:40	2012-12-6	Show	GitHub Exploit DB Packet Storm

297163	-	hp	laserjet_p4xxx color_laserjet_cm60xx color_laserjet_cp3525 color_laserjet_cm3530 color_laserjet_cp6015 color_laserjet_cp4xxx laserjet_p3015	Cross-site scripting (XSS) vulnerability on the HP Color LaserJet CM3530 with firmware before 53.190.9, Color LaserJet CM60xx with firmware before 52.210.9, Color LaserJet CP3525 with firmware before…	CWE-79 Cross-site Scripting	CVE-2012-3272	2024-11-21 10:40	2012-12-6	Show	GitHub Exploit DB Packet Storm

297164	-	ibm	websphere_message_broker	IBM WebSphere Message Broker 6.1 before 6.1.0.11, 7.0 before 7.0.0.5, and 8.0 before 8.0.0.2 has incorrect ownership of certain uninstaller Java Runtime Environment (JRE) files, which might allow loc…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3317	2024-11-21 10:40	2012-12-5	Show	GitHub Exploit DB Packet Storm

297165	-	xen	xen	The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information between emulation cycle…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3432	2024-11-21 10:40	2012-12-4	Show	GitHub Exploit DB Packet Storm

297166	-	hp	integrated_lights-out_3_firmware integrated_lights-out_4_firmware	Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) with firmware before 1.50 and Integrated Lights-Out 4 (aka iLO4) with firmware before 1.13 allows remote attackers to obtain sen…	NVD-CWE-noinfo	CVE-2012-3271	2024-11-21 10:40	2012-11-29	Show	GitHub Exploit DB Packet Storm

297167	-	xen	xen	Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of service (domain 0 VCPU hang and kernel panic) by modifying the physical address space in a way that triggers excessive shared pa…	CWE-399 Resource Management Errors	CVE-2012-3433	2024-11-21 10:40	2012-11-25	Show	GitHub Exploit DB Packet Storm

297168	-	xen	xen	(1) TMEMC_SAVE_GET_CLIENT_WEIGHT, (2) TMEMC_SAVE_GET_CLIENT_CAP, (3) TMEMC_SAVE_GET_CLIENT_FLAGS and (4) TMEMC_SAVE_END in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest OS…	CWE-20 Improper Input Validation	CVE-2012-3497	2024-11-21 10:40	2012-11-24	Show	GitHub Exploit DB Packet Storm

297169	-	citrix xen	xenserver xen	XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when translating paging mode is not used, allows local PV OS guest kernels to cause a denial of service (BUG …	CWE-16 Configuration	CVE-2012-3496	2024-11-21 10:40	2012-11-24	Show	GitHub Exploit DB Packet Storm

297170	-	xen citrix	xen xenserver	The physdev_get_free_pirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix XenServer 6.0.2 and earlier uses the return value of the get_free_pirq function as an array index without checking th…	CWE-20 Improper Input Validation	CVE-2012-3495	2024-11-21 10:40	2012-11-24	Show	GitHub Exploit DB Packet Storm