Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217921 2.1 注意 レッドハット - IcedTea-Web の plugin/icedteanp/IcedTeaNPPlugin.cc における Java アプレットと Web ブラウザ間のメッセージを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-6493 2014-03-5 18:25 2013-09-23 Show GitHub Exploit DB Packet Storm
217922 6.3 警告 OpenFabrics Alliance
レッドハット		 - OpenFabrics ibutils における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-2561 2014-03-5 17:35 2013-11-21 Show GitHub Exploit DB Packet Storm
217923 3.5 注意 MIT Kerberos - MIT Kerberos 5 の鍵配布センタの do_tgs_req.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1417 2014-03-5 17:34 2013-06-21 Show GitHub Exploit DB Packet Storm
217924 4.3 警告 MIT Kerberos - MIT Kerberos の鍵配布センタの main.c 内の setup_server_realm 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-1418 2014-03-5 17:33 2013-11-4 Show GitHub Exploit DB Packet Storm
217925 7.1 危険 David King
Canonical		 - GNOME Vino の vino-server.c の vino_server_client_data_pending 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5745 2014-03-5 17:26 2013-09-12 Show GitHub Exploit DB Packet Storm
217926 3.6 注意 Samba Project - Samba の nsswitch/pam_winbind.c の winbind_name_list_to_sid_string_list 関数におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6150 2014-03-5 17:22 2012-06-12 Show GitHub Exploit DB Packet Storm
217927 6.8 警告 Gentoo Linux - Xdg-utils における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0386 2014-03-5 17:22 2008-01-30 Show GitHub Exploit DB Packet Storm
217928 6.8 警告 Google - Android OS において任意の Java のメソッドが実行される脆弱性 CWE-DesignError
CVE-2013-4710 2014-03-5 17:21 2013-12-17 Show GitHub Exploit DB Packet Storm
217929 6 警告 シスコシステムズ - Cisco Unified Communications Manager における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0686 2014-03-5 17:20 2014-02-3 Show GitHub Exploit DB Packet Storm
217930 4.3 警告 AITpro - WordPress 用 BulletProof Security プラグインのセキュリティログにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3487 2014-03-5 17:14 2013-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292211 - cisco telepresence_multipoint_switch_software
telepresence_multipoint_switch
telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
tel… 		The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to… NVD-CWE-Other
CVE-2012-3073 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
292212 - astaro
sophos 		security_gateway_software
security_gateway
unified_threat_management_software
unified_threat_management 		Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Co… CWE-79
Cross-site Scripting 		CVE-2012-3238 2024-11-21 10:40 2012-07-10 Show GitHub Exploit DB Packet Storm
292213 - synel sy-780\/a_time_\&_attendance_terminal The Synel SY-780/A Time & Attendance terminal allows remote attackers to cause a denial of service (device hang) via network traffic to port (1) 1641, (2) 3734, or (3) 3735. CWE-399
 Resource Management Errors 		CVE-2012-2970 2024-11-21 10:40 2012-07-10 Show GitHub Exploit DB Packet Storm
292214 - elitecore cyberoam_unified_threat_management The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in… CWE-310
Cryptographic Issues 		CVE-2012-3372 2024-11-21 10:40 2012-07-9 Show GitHub Exploit DB Packet Storm
292215 - pidgin pidgin Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3374 2024-11-21 10:40 2012-07-7 Show GitHub Exploit DB Packet Storm
292216 - invensys wonderware_application_server
dasabcip
dassidirect
daserver_runtime_components
intouch\/wonderware_application_server 		Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10.5 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3007 2024-11-21 10:40 2012-07-5 Show GitHub Exploit DB Packet Storm
292217 - redhat dtach Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an … CWE-189
Numeric Errors 		CVE-2012-3368 2024-11-21 10:40 2012-07-4 Show GitHub Exploit DB Packet Storm
292218 - anl bcfg2 The Trigger plugin in bcfg2 1.2.x before 1.2.3 allows remote attackers with root access to the client to execute arbitrary commands via shell metacharacters in the UUID field to the server process (b… CWE-78
OS Command  		CVE-2012-3366 2024-11-21 10:40 2012-07-4 Show GitHub Exploit DB Packet Storm
292219 - webatall web\@all Cross-site scripting (XSS) vulnerability in search.php in web@all 2.0, as downloaded before May 30, 2012, allows remote attackers to inject arbitrary web script or HTML via the _text[title] parameter. CWE-79
Cross-site Scripting 		CVE-2012-3232 2024-11-21 10:40 2012-06-30 Show GitHub Exploit DB Packet Storm
292220 - cisco webex_recording_format_player Heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP11, T27 LD before SP32 CP2, and T28 L10N before SP1… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3057 2024-11-21 10:40 2012-06-29 Show GitHub Exploit DB Packet Storm