Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218281 6.8 警告 ImageCMS - ImageCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-7334 2014-03-12 16:32 2013-01-23 Show GitHub Exploit DB Packet Storm
218282 6.5 警告 ImageCMS - ImageCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-6290 2014-03-12 16:27 2012-12-5 Show GitHub Exploit DB Packet Storm
218283 6.1 警告 Linux - Linux Kernel の net/ipv6/route.c 内の ip6_route_add 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2014-2309 2014-03-12 15:36 2014-03-6 Show GitHub Exploit DB Packet Storm
218284 5.2 警告 Linux - Linux Kernel の security/keys/keyring.c 内の keyring_detect_cycle_iterator 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2014-0102 2014-03-12 15:35 2014-03-4 Show GitHub Exploit DB Packet Storm
218285 9.3 危険 Linux - Linux Kernel の net/ipv4/inet_fragment.c 内の inet_frag_intern 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2014-0100 2014-03-12 15:35 2014-03-3 Show GitHub Exploit DB Packet Storm
218286 7.4 危険 Linux - Linux Kernel の arch/x86/kvm/x86.c におけるホスト OS 上で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-0049 2014-03-12 15:34 2014-03-6 Show GitHub Exploit DB Packet Storm
218287 4.3 警告 Aker Security Solutions - Aker Secure Mail Gateway にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6037 2014-03-12 15:25 2014-03-6 Show GitHub Exploit DB Packet Storm
218288 4.3 警告 Huawei - Huawei E355 に認証回避の脆弱性 CWE-287
CWE-Other
CVE-2013-6031 2014-03-12 15:23 2014-03-6 Show GitHub Exploit DB Packet Storm
218289 6.5 警告 IBM - IBM AIX の ftpd における権限設定を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0899 2014-03-12 14:59 2014-03-6 Show GitHub Exploit DB Packet Storm
218290 6.2 警告 ヒューレット・パッカード - HP-UX の m4 における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6200 2014-03-12 14:35 2013-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291991 - manageengine firewall_analyzer Cross-site scripting (XSS) vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector… CWE-79
Cross-site Scripting 		CVE-2012-4891 2024-11-21 10:43 2012-09-11 Show GitHub Exploit DB Packet Storm
291992 - flatnux flatnux Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a (1) comment to the news, (2) title to t… CWE-79
Cross-site Scripting 		CVE-2012-4890 2024-11-21 10:43 2012-09-11 Show GitHub Exploit DB Packet Storm
291993 - manageengine firewall_analyzer Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) subTab or (2) tab parameter to crea… CWE-79
Cross-site Scripting 		CVE-2012-4889 2024-11-21 10:43 2012-09-11 Show GitHub Exploit DB Packet Storm
291994 - mediawiki mediawiki The wikitext parser in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allows remote attackers to cause a denial of service (infinite loop) via certain input, as demonstrated by the padleft f… NVD-CWE-noinfo
CVE-2012-4885 2024-11-21 10:43 2012-09-10 Show GitHub Exploit DB Packet Storm
291995 - 3ds 3dvia_composer Multiple untrusted search path vulnerabilities in 3DVIA Composer V6R2012 HF1 Build 6.8.1.1652 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) ibfs32.dll file in the curr… NVD-CWE-Other
CVE-2012-4883 2024-11-21 10:43 2012-09-7 Show GitHub Exploit DB Packet Storm
291996 - 3ds 3d_xml_player Multiple untrusted search path vulnerabilities in 3D XML Player 6.212.13.12076 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) JT0DevPhase.dll file in the current workin… NVD-CWE-Other
CVE-2012-4882 2024-11-21 10:43 2012-09-7 Show GitHub Exploit DB Packet Storm
291997 - sony moviez_hd Untrusted search path vulnerability in moviEZ HD 1.0 Build 2554-29894-A allows local users to gain privileges via a Trojan horse avrt.dll file in the current working directory, as demonstrated by a d… NVD-CWE-Other
CVE-2012-4881 2024-11-21 10:43 2012-09-7 Show GitHub Exploit DB Packet Storm
291998 - sony dvd_architect_pro
dvd_architect_studio 		Multiple untrusted search path vulnerabilities in DVD Architect Pro 5.2 Build 133 and DVD Architect Studio 5.0 Build 156 allow local users to gain privileges via a Trojan horse (1) enc_mp2v.200 or (2… NVD-CWE-Other
CVE-2012-4880 2024-11-21 10:43 2012-09-7 Show GitHub Exploit DB Packet Storm
291999 - wago wago_i\/o_system_758_industrial_pc_device The Linux Console on the WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices has a default password of wago for the (1) root and (2) admin accounts, (3) a def… CWE-255
Credentials Management 		CVE-2012-4879 2024-11-21 10:43 2012-09-7 Show GitHub Exploit DB Packet Storm
292000 - flatnux flatnux Absolute path traversal vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 allows remote administrators to read arbitrary files via a full pathname in the dir parameter in a contents/File… CWE-22
Path Traversal 		CVE-2012-4878 2024-11-21 10:43 2012-09-7 Show GitHub Exploit DB Packet Storm