Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217901	4.3	警告	IBM	-	IBM Algo One の複数のコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6318	2014-03-6 15:10	2013-10-31	Show	GitHub Exploit DB Packet Storm

217902	4	警告	IBM	-	IBM Algo One の複数のコンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-6303	2014-03-6 15:09	2013-10-31	Show	GitHub Exploit DB Packet Storm

217903	6.5	警告	IBM	-	IBM Algo One の複数のコンポーネントにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-6302	2014-03-6 15:08	2013-10-31	Show	GitHub Exploit DB Packet Storm

217904	3.5	注意	IBM	-	IBM Algo One の複数のコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6301	2014-03-6 15:07	2013-10-31	Show	GitHub Exploit DB Packet Storm

217905	3.5	注意	IBM	-	IBM Algo One の複数のコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6300	2014-03-6 15:06	2013-10-31	Show	GitHub Exploit DB Packet Storm

217906	3.5	注意	IBM	-	IBM Algo One の複数のコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6299	2014-03-6 15:05	2013-10-31	Show	GitHub Exploit DB Packet Storm

217907	5	警告	IBM	-	IBM Algo One の複数のコンポーネントにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-5468	2014-03-6 15:04	2013-08-22	Show	GitHub Exploit DB Packet Storm

217908	3.5	注意	IBM	-	IBM Rational Requirements Composer および Rational DOORS Next Generation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0846	2014-03-6 12:21	2014-02-28	Show	GitHub Exploit DB Packet Storm

217909	4.9	警告	IBM	-	IBM Rational Requirements Composer および Rational DOORS Next Generation におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2014-0845	2014-03-6 12:20	2014-02-28	Show	GitHub Exploit DB Packet Storm

217910	3.5	注意	IBM	-	IBM Rational Requirements Composer および Rational DOORS Next Generation における任意のデータを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2014-0844	2014-03-6 12:20	2014-02-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292831	-	ps_project_management_team	unity-firefox-extension	content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtai…	NVD-CWE-Other	CVE-2012-0958	2024-11-21 10:36	2012-12-27	Show	GitHub Exploit DB Packet Storm

292832	-	linux	linux_kernel	The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with…	CWE-16 Configuration	CVE-2012-0957	2024-11-21 10:36	2012-12-21	Show	GitHub Exploit DB Packet Storm

292833	-	ps_project_management_team	unity-firefox-extension	Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possi…	CWE-20 Improper Input Validation	CVE-2012-0960	2024-11-21 10:36	2012-11-25	Show	GitHub Exploit DB Packet Storm

292834	-	remote_login_service_hackers	remote_login_service	Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.	CWE-200 Information Exposure	CVE-2012-0959	2024-11-21 10:36	2012-11-25	Show	GitHub Exploit DB Packet Storm

292835	-	redhat	jboss_enterprise_application_platform jboss_enterprise_soa_platform jboss_enterprise_web_platform jboss_enterprise_brms_platform	The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the ser…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1167	2024-11-21 10:36	2012-11-24	Show	GitHub Exploit DB Packet Storm

292836	-	redhat	mod_cluster jboss_enterprise_application_platform	mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, w…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1154	2024-11-21 10:36	2012-10-23	Show	GitHub Exploit DB Packet Storm

292837	-	socialcms	socialcms	Multiple cross-site request forgery (CSRF) vulnerabilities in SocialCMS 1.0.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrator accounts vi…	CWE-352 Origin Validation Error	CVE-2012-1416	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

292838	-	dlink	dsl-2640b_firmware dsl-2640b	Cross-site request forgery (CSRF) vulnerability in redpass.cgi in D-Link DSL-2640B Firmware EU_4.00 allows remote attackers to hijack the authentication of administrators for requests that change the…	CWE-352 Origin Validation Error	CVE-2012-1308	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

292839	-	bernhard_wymann speed-dreams	torcs speed_dreams	Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary co…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-1189	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

292840	-	kishore_asokan	kish_guest_posting_plugin	Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin before 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a fi…	NVD-CWE-Other	CVE-2012-1125	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm