Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217931 4.3 警告 Andy Bailey - WordPress 用 CommentLuv プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1409 2014-03-5 17:13 2013-02-6 Show GitHub Exploit DB Packet Storm
217932 4.3 警告 アイファイ - Eye-Fi Helper におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4696 2014-03-5 16:56 2011-11-17 Show GitHub Exploit DB Packet Storm
217933 4.3 警告 DrinkedIn - Android 用 DrinkedIn BarFinder アプリケーションにおける任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1887 2014-03-5 16:42 2014-02-7 Show GitHub Exploit DB Packet Storm
217934 6.4 警告 HS Group - Android 用 ForzeArmate アプリケーションにおける任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1885 2014-03-5 16:40 2014-02-7 Show GitHub Exploit DB Packet Storm
217935 7.5 危険 Google - Android の java/android/webkit/BrowserFrame.java における任意の Java コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1939 2014-03-5 15:59 2014-02-10 Show GitHub Exploit DB Packet Storm
217936 9 危険 AVTECH - AVTECH AVN801 DVR のファームウェアの cgi-bin/user/Config.cgi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4981 2014-03-5 14:46 2013-08-28 Show GitHub Exploit DB Packet Storm
217937 9 危険 AVTECH - AVTECH AVN801 DVR のファームウェアの RTSP Packet Handler におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4980 2014-03-5 14:46 2013-08-28 Show GitHub Exploit DB Packet Storm
217938 10 危険 Hangzhou Hikvision Digital Technology - Hikvision DS-2CD7153-E IP カメラのファームウェアの RTSP Packet Handler におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4977 2014-03-5 14:31 2013-08-6 Show GitHub Exploit DB Packet Storm
217939 6.8 警告 Inmatrix - INMATRIX Zoom Player におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3260 2014-03-5 14:12 2013-06-7 Show GitHub Exploit DB Packet Storm
217940 6.8 警告 Inmatrix - INMATRIX Zoom Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3259 2014-03-5 14:12 2013-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294371 - symantec liveupdate_administrator Symantec LiveUpdate Administrator before 2.3.1 uses weak permissions (Everyone: Full Control) for the installation directory, which allows local users to gain privileges via a Trojan horse file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0304 2024-11-21 10:34 2012-06-22 Show GitHub Exploit DB Packet Storm
294372 - ibm lotus_expeditor The web container in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack does not properly perform access control for requests, which allows remote attackers to spoof a localhost request… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0191 2024-11-21 10:34 2012-06-22 Show GitHub Exploit DB Packet Storm
294373 - ibm lotus_expeditor Untrusted search path vulnerability in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows local users to gain privileges via a Trojan horse DLL in the current working directory. NVD-CWE-Other
CVE-2012-0187 2024-11-21 10:34 2012-06-22 Show GitHub Exploit DB Packet Storm
294374 - ibm lotus_expeditor Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a cr… CWE-22
Path Traversal 		CVE-2012-0186 2024-11-21 10:34 2012-06-22 Show GitHub Exploit DB Packet Storm
294375 - linux linux_kernel The robust futex implementation in the Linux kernel before 2.6.28 does not properly handle processes that make exec system calls, which allows local users to cause a denial of service or possibly gai… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0028 2024-11-21 10:34 2012-06-22 Show GitHub Exploit DB Packet Storm
294376 - dest-unreach socat Heap-based buffer overflow in the xioscan_readline function in xio-readline.c in socat 1.4.0.0 through 1.7.2.0 and 2.0.0-b1 through 2.0.0-b4 allows local users to execute arbitrary code via the READL… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0219 2024-11-21 10:34 2012-06-22 Show GitHub Exploit DB Packet Storm
294377 6.5 MEDIUM
Network 		librdf
libreoffice
apache
fedoraproject
redhat
debian 		raptor
libreoffice
openoffice
fedora
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_desktop
storage
storage_for_public_cl… 		Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read… CWE-611
XXE 		CVE-2012-0037 2024-11-21 10:34 2012-06-17 Show GitHub Exploit DB Packet Storm
294378 - devscripts_devel_team devscripts debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via shell metacharacters in the file name argument. CWE-20
 Improper Input Validation  		CVE-2012-0212 2024-11-21 10:34 2012-06-16 Show GitHub Exploit DB Packet Storm
294379 - devscripts_devel_team devscripts debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via a crafted tarball file name in the top-level directory of an original (.o… CWE-20
 Improper Input Validation  		CVE-2012-0211 2024-11-21 10:34 2012-06-16 Show GitHub Exploit DB Packet Storm
294380 - devscripts_devel_team devscripts debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to obtain system information and execute arbitrary code via the file name in a (1) .dsc or (2) .changes… CWE-20
 Improper Input Validation  		CVE-2012-0210 2024-11-21 10:34 2012-06-16 Show GitHub Exploit DB Packet Storm