Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217831 5.4 警告 Gamegou Limited - Android 用 Perfect Kick アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5625 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217832 5.4 警告 Fun Games For Free - Android 用 Sniper Shooter Free - Fun Game アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5624 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217833 5.4 警告 MBT Limited - Android 用 Follow Mania for Instagram アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5622 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217834 5.4 警告 Fluik - Android 用 Office Zombie アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5621 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217835 5.4 警告 Fluik - Android 用 Office Jerk Free アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5620 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217836 5.4 警告 Fingersoft - Android 用 Cartoon Camera アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5618 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217837 5.4 警告 Exsoul-Ish - Android 用 Exsoul Web Browser アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5617 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217838 5.4 警告 Litter Penguin - Android 用 Web Browser & Explorer アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5616 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
217839 7.8 危険 Linux - Linux Kernel の include/linux/netdevice.h におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-3535 2014-09-30 16:23 2014-09-9 Show GitHub Exploit DB Packet Storm
217840 7.1 危険 Linux - Linux Kernel で使用される Ceph の net/ceph/auth_x.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-6418 2014-09-30 16:20 2014-09-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297331 - theforeman foreman The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5477 2024-11-21 10:44 2014-05-8 Show GitHub Exploit DB Packet Storm
297332 - cisco ios Cisco IOS Unified Border Element (CUBE) in Cisco IOS before 15.3(2)T allows remote authenticated users to cause a denial of service (input queue wedge) via a crafted series of RTCP packets, aka Bug I… CWE-20
 Improper Input Validation  		CVE-2012-5427 2024-11-21 10:44 2014-04-23 Show GitHub Exploit DB Packet Storm
297333 - cisco ios
as5400_universal_gateway
as5400hpx_universal_gateway
as5400xm_media_gateway
as5400xm_universal_gateway 		Unspecified vulnerability in Cisco IOS before 15.3(2)T on AS5400 devices allows remote authenticated users to cause a denial of service (spurious errors) via unknown vectors, aka Bug ID CSCub61009. NVD-CWE-noinfo
CVE-2012-5422 2024-11-21 10:44 2014-04-23 Show GitHub Exploit DB Packet Storm
297334 - horde groupware
kronolith_h4 		Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.18, as used in Horde Groupware Webmail Edition before 4.0.9, allow remote attackers to inject… CWE-79
Cross-site Scripting 		CVE-2012-5567 2024-11-21 10:44 2014-04-6 Show GitHub Exploit DB Packet Storm
297335 - horde kronolith_h4
groupware 		Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.17, as used in Horde Groupware Webmail Edition before 4.0.8, allow remote attackers to inject… CWE-79
Cross-site Scripting 		CVE-2012-5566 2024-11-21 10:44 2014-04-6 Show GitHub Exploit DB Packet Storm
297336 - horde imp
groupware 		Cross-site scripting (XSS) vulnerability in js/compose-dimp.js in Horde Internet Mail Program (IMP) before 5.0.24, as used in Horde Groupware Webmail Edition before 4.0.9, allows remote attackers to … CWE-79
Cross-site Scripting 		CVE-2012-5565 2024-11-21 10:44 2014-04-6 Show GitHub Exploit DB Packet Storm
297337 - puppetlabs
puppet 		puppet
puppet_enterprise 		Puppet Enterprise (PE) before 2.6.1 does not properly invalidate sessions when the session secret has changed, which allows remote authenticated users to retain access via unspecified vectors. CWE-287
Improper Authentication 		CVE-2012-5158 2024-11-21 10:44 2014-03-15 Show GitHub Exploit DB Packet Storm
297338 - gajim gajim The _ssl_verify_callback function in tls_nb.py in Gajim before 0.15.3 does not properly verify SSL certificates, which allows remote attackers to conduct man-in-the-middle (MITM) attacks and spoof se… CWE-20
 Improper Input Validation  		CVE-2012-5524 2024-11-21 10:44 2014-02-8 Show GitHub Exploit DB Packet Storm
297339 - bitweaver bitweaver Directory traversal vulnerability in gmap/view_overlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" (dot dot encoded slash) sequences in the overlay_… CWE-22
Path Traversal 		CVE-2012-5192 2024-11-21 10:44 2014-01-28 Show GitHub Exploit DB Packet Storm
297340 - mediawiki mediawiki Cross-site request forgery (CSRF) vulnerability in the CentralAuth extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to hijack the authenti… CWE-352
 Origin Validation Error 		CVE-2012-5394 2024-11-21 10:44 2013-12-14 Show GitHub Exploit DB Packet Storm