Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218491 6.5 警告 CiviCRM - CiviCRM の Quick Search API におけるレイヤの検証を回避される脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4662 2014-01-31 14:37 2013-06-10 Show GitHub Exploit DB Packet Storm
218492 6.5 警告 CiviCRM - CiviCRM におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4661 2014-01-31 14:36 2013-06-4 Show GitHub Exploit DB Packet Storm
218493 6.8 警告 Iconify.it - SkyBlueCanvas CMS の cms/data/skins/techjunkie/fragments/contacts/functions.php における任意のコマンドを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2014-1683 2014-01-31 14:23 2014-01-22 Show GitHub Exploit DB Packet Storm
218494 6.8 警告 Spring Signage - Digital Signage Xibo の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4889 2014-01-31 14:10 2013-07-22 Show GitHub Exploit DB Packet Storm
218495 4.3 警告 Spring Signage - Digital Signage Xibo の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4888 2014-01-31 14:10 2013-07-22 Show GitHub Exploit DB Packet Storm
218496 7.5 危険 Spring Signage - Digital Signage Xibo の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4887 2014-01-31 14:09 2013-07-1 Show GitHub Exploit DB Packet Storm
218497 4.3 警告 トリップワイヤ - Tripwire Enterprise の ajaxRequest/methodCall.do におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5005 2014-01-31 13:47 2013-07-29 Show GitHub Exploit DB Packet Storm
218498 6.5 警告 Courion - Courion Access Risk Management Suite のパスワードリセット機能における Internet Explorer の使用制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2747 2014-01-31 13:46 2013-08-15 Show GitHub Exploit DB Packet Storm
218499 5 警告 op5 - op5 Monitor における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2013-6141 2014-01-31 12:29 2013-09-3 Show GitHub Exploit DB Packet Storm
218500 4.3 警告 AlgoSec - AlgoSec Firewall Analyzer の BusinessFlow/login におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7318 2014-01-31 12:28 2013-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292771 - rsa access_manager_server
access_manager_agent 		EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via … CWE-287
Improper Authentication 		CVE-2012-2281 2024-11-21 10:38 2012-07-5 Show GitHub Exploit DB Packet Storm
292772 - postgresql
freebsd
php
debian 		postgresql
freebsd
php
debian_linux 		The crypt_des (aka DES-based crypt) function in FreeBSD before 9.0-RELEASE-p2, as used in PHP, PostgreSQL, and other products, does not process the complete cleartext password if this password contai… CWE-310
Cryptographic Issues 		CVE-2012-2143 2024-11-21 10:38 2012-07-5 Show GitHub Exploit DB Packet Storm
292773 - fedoraproject anaconda The bootloader configuration module (pyanaconda/bootloader.py) in Anaconda uses 755 permissions for /etc/grub.d, which allows local users to obtain password hashes and conduct brute force password gu… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2314 2024-11-21 10:38 2012-07-4 Show GitHub Exploit DB Packet Storm
292774 - ibm websphere_portal Directory traversal vulnerability in the Dojo module in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF14, and 8.0, allows remote attackers to read arbitrary files via a crafted URL. CWE-22
Path Traversal 		CVE-2012-2181 2024-11-21 10:38 2012-07-4 Show GitHub Exploit DB Packet Storm
292775 - pidgin pidgin msg.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.4 does not properly handle crafted characters, which allows remote servers to cause a denial of service (application crash) by plac… CWE-20
 Improper Input Validation  		CVE-2012-2318 2024-11-21 10:38 2012-07-4 Show GitHub Exploit DB Packet Storm
292776 - pidgin pidgin proxy.c in libpurple in Pidgin before 2.10.4 does not properly handle canceled SOCKS5 connection attempts, which allows user-assisted remote authenticated users to cause a denial of service (applicat… CWE-399
 Resource Management Errors 		CVE-2012-2214 2024-11-21 10:38 2012-07-4 Show GitHub Exploit DB Packet Storm
292777 - linux linux_kernel Use-after-free vulnerability in the Linux kernel before 3.3.6, when huge pages are enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges by interacting w… CWE-399
 Resource Management Errors 		CVE-2012-2133 2024-11-21 10:38 2012-07-4 Show GitHub Exploit DB Packet Storm
292778 - linux linux_kernel The ext4_fill_flex_info function in fs/ext4/super.c in the Linux kernel before 3.2.2, on the x86 platform and unspecified other platforms, allows user-assisted remote attackers to trigger inconsisten… CWE-189
Numeric Errors 		CVE-2012-2100 2024-11-21 10:38 2012-07-4 Show GitHub Exploit DB Packet Storm
292779 - hp photosmart_e-all-in-one_printer_series
photosmart_wireless_e-all-in-one_printer_series
photosmart_plus_e-all-in-one_printer_series
photosmart_premium_fax_e-all-in-one_printer_series
photo… 		Unspecified vulnerability on HP Photosmart Wireless e-All-in-One B110, e-All-in-One D110, Plus e-All-in-One B210, eStation All-in-One C510, Ink Advantage e-All-in-One K510, and Premium Fax e-All-in-O… NVD-CWE-noinfo
CVE-2012-2017 2024-11-21 10:38 2012-06-30 Show GitHub Exploit DB Packet Storm
292780 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows local users to obtain sensitive information via unknown vectors. NVD-CWE-noinfo
CVE-2012-2016 2024-11-21 10:38 2012-06-30 Show GitHub Exploit DB Packet Storm