Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217851 5.8 警告 サイボウズ - サイボウズ リモートサービスマネージャーにおけるセッション固定の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1984 2014-04-28 17:58 2014-04-18 Show GitHub Exploit DB Packet Storm
217852 4.3 警告 Ushahidi - Ushahidi Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2025 2014-04-28 17:51 2013-05-1 Show GitHub Exploit DB Packet Storm
217853 3.5 注意 Episerver - Ektron CMS の content.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2729 2014-04-28 17:42 2014-04-16 Show GitHub Exploit DB Packet Storm
217854 9.3 危険 Power Software - Power Software の WinArchiver におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5660 2014-04-28 17:13 2013-04-29 Show GitHub Exploit DB Packet Storm
217855 4.3 警告 JoomlaBoat.com - Joomla! 用 YouTube Gallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5956 2014-04-28 16:17 2013-09-27 Show GitHub Exploit DB Packet Storm
217856 6.8 警告 OpenX - OpenX におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5954 2014-04-28 16:04 2013-09-27 Show GitHub Exploit DB Packet Storm
217857 4.3 警告 Moxiecode Systems AB - TinyMCE の bbcode プラグインにおけるクロスサイトスクリプティング攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4230 2014-04-28 15:49 2012-08-9 Show GitHub Exploit DB Packet Storm
217858 9.3 危険 3S-Smart Software Solutions
SoftMotion3D
Festo		 - Festo Modular controllers CECX-X-C1 および CECX-X-M1 における設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2014-0769 2014-04-28 15:40 2014-04-24 Show GitHub Exploit DB Packet Storm
217859 9.3 危険 3S-Smart Software Solutions
SoftMotion3D
Festo		 - Festo Modular controllers CECX-X-C1 および CECX-X-M1 における任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2014-0760 2014-04-28 15:40 2014-04-24 Show GitHub Exploit DB Packet Storm
217860 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2393 2014-04-28 15:07 2014-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291731 - cisco telepresence_video_communication_servers_software Cisco TelePresence Video Communication Server (VCS) X7.0.3 does not properly process certain search rules, which allows remote attackers to create conferences via an unspecified Conductor request, ak… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5444 2024-11-21 10:44 2013-01-18 Show GitHub Exploit DB Packet Storm
291732 - cisco adaptive_security_appliance_software
asa_1000v_cloud_firewall 		Cisco Adaptive Security Appliance (ASA) software 8.7.1 and 8.7.1.1 for the Cisco ASA 1000V Cloud Firewall allows remote attackers to cause a denial of service (device reload) via a malformed H.225 H.… CWE-399
 Resource Management Errors 		CVE-2012-5419 2024-11-21 10:44 2013-01-18 Show GitHub Exploit DB Packet Storm
291733 - oracle fusion_middleware Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3.0, 11.1.1.5.0, and 11.1.2.0.0 allows remote attackers to affect integrity, related to OAM Webgate. NVD-CWE-noinfo
CVE-2012-5097 2024-11-21 10:44 2013-01-17 Show GitHub Exploit DB Packet Storm
291734 - oracle
mariadb
canonical 		mysql
mariadb
ubuntu_linux 		Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users with Server Privileges to affect availability via unknown vectors. NVD-CWE-noinfo
CVE-2012-5096 2024-11-21 10:44 2013-01-17 Show GitHub Exploit DB Packet Storm
291735 - google chrome Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5157 2024-11-21 10:44 2013-01-16 Show GitHub Exploit DB Packet Storm
291736 - google chrome Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving PDF fields. CWE-399
 Resource Management Errors 		CVE-2012-5156 2024-11-21 10:44 2013-01-16 Show GitHub Exploit DB Packet Storm
291737 - google chrome Google Chrome before 24.0.1312.52 on Mac OS X does not use an appropriate sandboxing approach for worker processes, which makes it easier for remote attackers to bypass intended access restrictions v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5155 2024-11-21 10:44 2013-01-16 Show GitHub Exploit DB Packet Storm
291738 - opensuse
google 		opensuse
chrome 		Integer overflow in Google Chrome before 24.0.1312.52 on Windows allows attackers to cause a denial of service or possibly have unspecified other impact via vectors related to allocation of shared me… CWE-189
Numeric Errors 		CVE-2012-5154 2024-11-21 10:44 2013-01-16 Show GitHub Exploit DB Packet Storm
291739 - google
opensuse 		chrome
opensuse 		Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code tha… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5153 2024-11-21 10:44 2013-01-16 Show GitHub Exploit DB Packet Storm
291740 - opensuse
google 		opensuse
chrome 		Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving seek operations on video data. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5152 2024-11-21 10:44 2013-01-16 Show GitHub Exploit DB Packet Storm