Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218151	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における ASLR 保護メカニズムを破られる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0492	2014-02-21 13:40	2014-01-14	Show	GitHub Exploit DB Packet Storm

218152	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における不特定の保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0491	2014-02-21 13:40	2014-01-14	Show	GitHub Exploit DB Packet Storm

218153	3.5	注意	The phpMyAdmin Project	-	phpMyAdmin の import.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1879	2014-02-21 12:26	2014-02-15	Show	GitHub Exploit DB Packet Storm

218154	5.8	警告	feep.net	-	libtar の tar_extract_glob および tar_extract_all 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-4420	2014-02-21 12:25	2013-12-10	Show	GitHub Exploit DB Packet Storm

218155	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager の Enterprise License Manager コンポーネントにおける ELM ファイルを読まれる脆弱性	CWE-287 不適切な認証	CVE-2014-0733	2014-02-21 11:42	2014-02-19	Show	GitHub Exploit DB Packet Storm

218156	6.8	警告	シスコシステムズ	-	Cisco Unified Communications Manager の Call Detail Records Analysis and Reporting ページにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-0736	2014-02-21 11:37	2014-02-19	Show	GitHub Exploit DB Packet Storm

218157	4.3	警告	シスコシステムズ	-	Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0735	2014-02-21 11:14	2014-02-19	Show	GitHub Exploit DB Packet Storm

218158	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の Certificate Authority Proxy Function の実装における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0734	2014-02-21 11:13	2014-02-19	Show	GitHub Exploit DB Packet Storm

218159	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager の Real Time Monitoring Tool Web アプリケーションにおけるアプリケーションファイルを読まれる脆弱性	CWE-287 不適切な認証	CVE-2014-0732	2014-02-21 11:12	2014-02-19	Show	GitHub Exploit DB Packet Storm

218160	2.1	注意	Linux	-	Linux Kernel の net/key/af_key.c におけるカーネルヒープメモリから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-2234	2014-02-20 18:22	2013-06-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292211	-	cisco	telepresence_multipoint_switch_software telepresence_multipoint_switch telepresence_system_software telepresence_system_1300_65 telepresence_system_3000 telepresence_system_3010 tel…	The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to…	NVD-CWE-Other	CVE-2012-3073	2024-11-21 10:40	2012-07-12	Show	GitHub Exploit DB Packet Storm

292212	-	astaro sophos	security_gateway_software security_gateway unified_threat_management_software unified_threat_management	Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Co…	CWE-79 Cross-site Scripting	CVE-2012-3238	2024-11-21 10:40	2012-07-10	Show	GitHub Exploit DB Packet Storm

292213	-	synel	sy-780\/a_time_\&_attendance_terminal	The Synel SY-780/A Time & Attendance terminal allows remote attackers to cause a denial of service (device hang) via network traffic to port (1) 1641, (2) 3734, or (3) 3735.	CWE-399 Resource Management Errors	CVE-2012-2970	2024-11-21 10:40	2012-07-10	Show	GitHub Exploit DB Packet Storm

292214	-	elitecore	cyberoam_unified_threat_management	The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in…	CWE-310 Cryptographic Issues	CVE-2012-3372	2024-11-21 10:40	2012-07-9	Show	GitHub Exploit DB Packet Storm

292215	-	pidgin	pidgin	Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3374	2024-11-21 10:40	2012-07-7	Show	GitHub Exploit DB Packet Storm

292216	-	invensys	wonderware_application_server dasabcip dassidirect daserver_runtime_components intouch\/wonderware_application_server	Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10.5 …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3007	2024-11-21 10:40	2012-07-5	Show	GitHub Exploit DB Packet Storm

292217	-	redhat	dtach	Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an …	CWE-189 Numeric Errors	CVE-2012-3368	2024-11-21 10:40	2012-07-4	Show	GitHub Exploit DB Packet Storm

292218	-	anl	bcfg2	The Trigger plugin in bcfg2 1.2.x before 1.2.3 allows remote attackers with root access to the client to execute arbitrary commands via shell metacharacters in the UUID field to the server process (b…	CWE-78 OS Command	CVE-2012-3366	2024-11-21 10:40	2012-07-4	Show	GitHub Exploit DB Packet Storm

292219	-	webatall	web\@all	Cross-site scripting (XSS) vulnerability in search.php in web@all 2.0, as downloaded before May 30, 2012, allows remote attackers to inject arbitrary web script or HTML via the _text[title] parameter.	CWE-79 Cross-site Scripting	CVE-2012-3232	2024-11-21 10:40	2012-06-30	Show	GitHub Exploit DB Packet Storm

292220	-	cisco	webex_recording_format_player	Heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP11, T27 LD before SP32 CP2, and T28 L10N before SP1…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3057	2024-11-21 10:40	2012-06-29	Show	GitHub Exploit DB Packet Storm