Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218501 7.5 危険 Raoul Proenca - Gnew における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7349 2014-04-2 15:42 2013-10-2 Show GitHub Exploit DB Packet Storm
218502 7.5 危険 Raoul Proenca - Gnew における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5640 2014-04-2 15:42 2013-10-2 Show GitHub Exploit DB Packet Storm
218503 9.3 危険 Schneider Electric - Schneider Electric Modbus Serial Driver の ModbusDrv.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0662 2014-04-2 15:36 2013-09-13 Show GitHub Exploit DB Packet Storm
218504 7.5 危険 Sonatype Inc. - Sonatype Nexus OSS および Pro における任意のユーザアカウントを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2034 2014-04-2 15:03 2014-03-3 Show GitHub Exploit DB Packet Storm
218505 3.7 注意 レッドハット - Red Hat Conga の Luci におけるセッションへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-7347 2014-04-2 14:56 2013-01-8 Show GitHub Exploit DB Packet Storm
218506 3.7 注意 レッドハット - Red Hat Conga の Luci における権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-3359 2014-04-2 14:55 2012-09-6 Show GitHub Exploit DB Packet Storm
218507 10 危険 Jgaa - War FTP Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2278 2014-04-2 14:43 2013-02-25 Show GitHub Exploit DB Packet Storm
218508 4 警告 Jgaa - War FTP Daemon におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2009-5141 2014-04-2 14:43 2009-09-12 Show GitHub Exploit DB Packet Storm
218509 10 危険 アライドテレシス - 複数の Allied Telesis ルータ製品における権限を取得される脆弱性 CWE-287
CWE-78
CVE-2014-1982 2014-04-2 13:41 2014-03-26 Show GitHub Exploit DB Packet Storm
218510 10 危険 Chainfire - Android 用 Chainfire SuperSU パッケージにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6775 2014-04-2 12:19 2013-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294141 - google tunnelblick Race condition in the runScript function in Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by replacing a script file. CWE-362
Race Condition 		CVE-2012-3483 2024-11-21 10:40 2012-08-27 Show GitHub Exploit DB Packet Storm
294142 - thomas_hunter neoinvoice SQL injection vulnerability in signup_check.php in NeoInvoice allows remote attackers to execute arbitrary SQL commands via the value parameter in a username action. CWE-89
SQL Injection 		CVE-2012-3477 2024-11-21 10:40 2012-08-26 Show GitHub Exploit DB Packet Storm
294143 - gimp gimp Integer overflow in the ReadImage function in plug-ins/common/file-gif-load.c in the GIF image format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service (applicati… CWE-190
 Integer Overflow or Wraparound 		CVE-2012-3481 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294144 - gnu glibc Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users t… CWE-189
Numeric Errors 		CVE-2012-3480 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294145 - gnu emacs lisp/files.el in Emacs 23.2, 23.3, 23.4, and 24.1 automatically executes eval forms in local-variable sections when the enable-local-variables option is set to :safe, which allows user-assisted remot… NVD-CWE-noinfo
CVE-2012-3479 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294146 - icinga icinga The database creation script (module/idoutils/db/scripts/create_mysqldb.sh) in Icinga 1.7.1 grants access to all databases to the icinga user, which allows icinga users to access other databases via … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3441 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294147 - condor_project condor Condor before 7.8.2 allows remote attackers to bypass host-based authentication and execute actions such as ALLOW_ADMINISTRATOR or ALLOW_WRITE by connecting from a system with a spoofed reverse DNS h… CWE-287
Improper Authentication 		CVE-2012-3416 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294148 - gimp gimp Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS pa… CWE-787
 Out-of-bounds Write 		CVE-2012-3403 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294149 - gimp gimp Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin in GIMP 2.2.13 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a c… CWE-190
 Integer Overflow or Wraparound 		CVE-2012-3402 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm
294150 - samsung kies The MASetupCaller ActiveX control before 1.4.2012.508 in MASetupCaller.dll in MarkAny ContentSAFER, as distributed in Samsung KIES before 2.3.2.12074_13_13, does not properly implement unspecified me… CWE-94
Code Injection 		CVE-2012-2990 2024-11-21 10:40 2012-08-25 Show GitHub Exploit DB Packet Storm