Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218491 6.5 警告 CiviCRM - CiviCRM の Quick Search API におけるレイヤの検証を回避される脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4662 2014-01-31 14:37 2013-06-10 Show GitHub Exploit DB Packet Storm
218492 6.5 警告 CiviCRM - CiviCRM におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4661 2014-01-31 14:36 2013-06-4 Show GitHub Exploit DB Packet Storm
218493 6.8 警告 Iconify.it - SkyBlueCanvas CMS の cms/data/skins/techjunkie/fragments/contacts/functions.php における任意のコマンドを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2014-1683 2014-01-31 14:23 2014-01-22 Show GitHub Exploit DB Packet Storm
218494 6.8 警告 Spring Signage - Digital Signage Xibo の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4889 2014-01-31 14:10 2013-07-22 Show GitHub Exploit DB Packet Storm
218495 4.3 警告 Spring Signage - Digital Signage Xibo の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4888 2014-01-31 14:10 2013-07-22 Show GitHub Exploit DB Packet Storm
218496 7.5 危険 Spring Signage - Digital Signage Xibo の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4887 2014-01-31 14:09 2013-07-1 Show GitHub Exploit DB Packet Storm
218497 4.3 警告 トリップワイヤ - Tripwire Enterprise の ajaxRequest/methodCall.do におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5005 2014-01-31 13:47 2013-07-29 Show GitHub Exploit DB Packet Storm
218498 6.5 警告 Courion - Courion Access Risk Management Suite のパスワードリセット機能における Internet Explorer の使用制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2747 2014-01-31 13:46 2013-08-15 Show GitHub Exploit DB Packet Storm
218499 5 警告 op5 - op5 Monitor における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2013-6141 2014-01-31 12:29 2013-09-3 Show GitHub Exploit DB Packet Storm
218500 4.3 警告 AlgoSec - AlgoSec Firewall Analyzer の BusinessFlow/login におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7318 2014-01-31 12:28 2013-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292461 - trustwave
opensuse
debian
oracle 		modsecurity
opensuse
debian_linux
http_server 		ModSecurity before 2.6.6, when used with PHP, does not properly handle single quotes not at the beginning of a request parameter value in the Content-Disposition field of a request with a multipart/f… NVD-CWE-Other
CVE-2012-2751 2024-11-21 10:39 2012-07-23 Show GitHub Exploit DB Packet Storm
292462 - nalin_dahyabhai vte The VteTerminal in gnome-terminal (vte) before 0.32.2 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count v… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2738 2024-11-21 10:39 2012-07-23 Show GitHub Exploit DB Packet Storm
292463 - php php Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "ove… NVD-CWE-noinfo
CVE-2012-2688 2024-11-21 10:39 2012-07-20 Show GitHub Exploit DB Packet Storm
292464 - postgresql postgresql PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURIT… CWE-399
 Resource Management Errors 		CVE-2012-2655 2024-11-21 10:39 2012-07-19 Show GitHub Exploit DB Packet Storm
292465 - yahoo yahoo\!_browser The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted ap… CWE-200
Information Exposure 		CVE-2012-2645 2024-11-21 10:39 2012-07-17 Show GitHub Exploit DB Packet Storm
292466 - johnsoncontrols network_controller
network_controller_firmware 		The Johnson Controls CK721-A controller with firmware before SSM4388_03.1.0.14_BB allows remote attackers to perform arbitrary actions via crafted packets to TCP port 41014 (aka the download port). CWE-78
OS Command  		CVE-2012-2607 2024-11-21 10:39 2012-07-17 Show GitHub Exploit DB Packet Storm
292467 - curtis_galloway exif Integer overflow in the jpeg_data_load_data function in jpeg-data.c in libjpeg in exif 0.6.20 allows remote attackers to cause a denial of service (buffer over-read and application crash) or obtain p… CWE-189
Numeric Errors 		CVE-2012-2845 2024-11-21 10:39 2012-07-13 Show GitHub Exploit DB Packet Storm
292468 - libexif_project libexif Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involvin… CWE-189
Numeric Errors 		CVE-2012-2841 2024-11-21 10:39 2012-07-13 Show GitHub Exploit DB Packet Storm
292469 - libexif_project libexif Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service or possibl… CWE-189
Numeric Errors 		CVE-2012-2840 2024-11-21 10:39 2012-07-13 Show GitHub Exploit DB Packet Storm
292470 - libexif_project libexif The mnote_olympus_entry_get_value function in olympus/mnote-olympus-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (divide-by… CWE-189
Numeric Errors 		CVE-2012-2837 2024-11-21 10:39 2012-07-13 Show GitHub Exploit DB Packet Storm