Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217971	7.5	危険	アップル富士通 Ruby on Rails project	-	Ruby on Rails に複数の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0156	2014-03-28 15:31	2013-01-9	Show	GitHub Exploit DB Packet Storm

217972	4.3	警告	The Foreman	-	Foreman の app/views/common/500.html.erb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0089	2014-03-28 14:54	2014-03-24	Show	GitHub Exploit DB Packet Storm

217973	4.3	警告	RSAセキュリティ	-	EMC RSA Authentication Manager のセルフサービス・コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0623	2014-03-28 14:25	2014-03-26	Show	GitHub Exploit DB Packet Storm

217974	9.3	危険	Boris Eyrich Software	-	Artweaver Plus および Free におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3481	2014-03-28 13:48	2013-05-30	Show	GitHub Exploit DB Packet Storm

217975	9.3	危険	Nuance Communications	-	Nuance PDF Reader の PDFCore8.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0732	2014-03-28 13:47	2013-06-4	Show	GitHub Exploit DB Packet Storm

217976	10	危険	アドビシステムズ	-	Adobe Reader における PDF サンドボックス保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0512	2014-03-28 13:35	2014-03-13	Show	GitHub Exploit DB Packet Storm

217977	10	危険	アドビシステムズ	-	Adobe Reader におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0511	2014-03-28 13:34	2014-03-13	Show	GitHub Exploit DB Packet Storm

217978	6.8	警告	Symphony CMS	-	Symphony CMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-7346	2014-03-28 12:12	2013-03-13	Show	GitHub Exploit DB Packet Storm

217979	6.5	警告	Symphony CMS	-	Symphony CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-2559	2014-03-28 12:12	2013-03-20	Show	GitHub Exploit DB Packet Storm

217980	7.8	危険	シーメンス	-	Siemens SIMATIC S7-1200 マイクロ PLC におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-2780	2014-03-28 12:03	2012-12-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291901	-	samsung	printer_firmware	The Samsung printer firmware before 20121031 has a hardcoded read-write SNMP community, which makes it easier for remote attackers to obtain administrative access via an SNMP request.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4964	2024-11-21 10:43	2012-11-28	Show	GitHub Exploit DB Packet Storm

291902	-	emc	it_operations_intelligence	EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a hardcoded encryption key for the storage of credentials, which allows local users to obtain sensitive information via unspecified vect…	CWE-310 Cryptographic Issues	CVE-2012-4615	2024-11-21 10:43	2012-11-28	Show	GitHub Exploit DB Packet Storm

291903	-	emc	it_operations_intelligence	The default configuration of EMC Smarts Network Configuration Manager (NCM) before 9.1 does not require authentication for database access, which allows remote attackers to have an unspecified impact…	CWE-287 Improper Authentication	CVE-2012-4614	2024-11-21 10:43	2012-11-28	Show	GitHub Exploit DB Packet Storm

291904	-	emc	rsa_adaptive_authentication_on-premise	Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Adaptive Authentication On-Premise (AAOP) before 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vecto…	CWE-79 Cross-site Scripting	CVE-2012-4611	2024-11-21 10:43	2012-11-28	Show	GitHub Exploit DB Packet Storm

291905	-	xen	xen	The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does not properly check the pagetable state when running on shadow pagetables, which allows a local HVM guest OS to cause a denial of serv…	CWE-20 Improper Input Validation	CVE-2012-4538	2024-11-21 10:43	2012-11-25	Show	GitHub Exploit DB Packet Storm

291906	-	ruby-lang	ruby	The rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel 286 and Ruby 2.0.0 before r37163 allows context-dependent attackers to create files in unexpected locations or with unexpected…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4522	2024-11-21 10:43	2012-11-25	Show	GitHub Exploit DB Packet Storm

291907	-	tecnick	tcexam	Multiple cross-site scripting (XSS) vulnerabilities in admin/code/tce_select_users_popup.php in Nicola Asuni TCExam before 11.3.009 allow remote attackers to inject arbitrary web script or HTML via t…	CWE-79 Cross-site Scripting	CVE-2012-4602	2024-11-21 10:43	2012-11-24	Show	GitHub Exploit DB Packet Storm

291908	-	tecnick	tcexam	Multiple SQL injection vulnerabilities in Nicola Asuni TCExam before 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the (1) user_g…	CWE-89 SQL Injection	CVE-2012-4601	2024-11-21 10:43	2012-11-24	Show	GitHub Exploit DB Packet Storm

291909	-	xen	xen	Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service (infinite loop and hang or crash) via invalid arguments…	CWE-399 Resource Management Errors	CVE-2012-4539	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

291910	-	xen	xen	Xen 3.4 through 4.2, and possibly earlier versions, does not properly synchronize the p2m and m2p tables when the set_p2m_entry function fails, which allows local HVM guest OS administrators to cause…	CWE-16 Configuration	CVE-2012-4537	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm