Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218501	4.3	警告	AlgoSec	-	AlgoSec Firewall Analyzer の afa/php/Login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5092	2014-01-31 12:28	2013-08-7	Show	GitHub Exploit DB Packet Storm

218502	6.5	警告	WebHive	-	SocialEngine 用 Timeline プラグインのユーザプロファイルページ機能における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4898	2014-01-31 11:54	2013-07-25	Show	GitHub Exploit DB Packet Storm

218503	4.3	警告	Zabbix	-	Zabbix の libs/zbxmedia/eztexting.c における SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2012-6086	2014-01-31 11:27	2012-12-2	Show	GitHub Exploit DB Packet Storm

218504	5	警告	株式会社ロックオン	-	EC-CUBE における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2014-0808	2014-01-30 18:39	2014-01-22	Show	GitHub Exploit DB Packet Storm

218505	5	警告	株式会社ロックオン	-	EC-CUBE における情報改ざんの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0807	2014-01-30 18:37	2014-01-22	Show	GitHub Exploit DB Packet Storm

218506	2.6	注意	株式会社ロックオン	-	EC-CUBE におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5993	2014-01-30 18:36	2013-11-20	Show	GitHub Exploit DB Packet Storm

218507	4.3	警告	株式会社ロックオン	-	EC-CUBE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5996	2014-01-30 18:35	2013-11-20	Show	GitHub Exploit DB Packet Storm

218508	5.5	警告	株式会社ロックオン	-	EC-CUBE における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2013-5995	2014-01-30 18:34	2013-11-20	Show	GitHub Exploit DB Packet Storm

218509	5	警告	株式会社ロックオン	-	EC-CUBE における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2013-5994	2014-01-30 18:32	2013-11-20	Show	GitHub Exploit DB Packet Storm

218510	6.4	警告	株式会社ロックオン	-	EC-CUBE におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2314	2014-01-30 18:31	2013-05-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294771	-	microsoft	internet_explorer	Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "HTML Layout Remote Code…	CWE-94 Code Injection	CVE-2012-0011	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

294772	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 9 does not properly perform copy-and-paste operations, which allows user-assisted remote attackers to read content from a different (1) domain or (2) zone via a …	CWE-200 Information Exposure	CVE-2012-0010	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

294773	-	cisco	ironport_encryption_appliance	Cross-site scripting (XSS) vulnerability in the management interface on the Cisco IronPort Encryption Appliance with software before 6.5.3 allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2012-0340	2024-11-21 10:34	2012-02-14	Show	GitHub Exploit DB Packet Storm

294774	-	emc	documentum_xplore	EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0396	2024-11-21 10:34	2012-02-7	Show	GitHub Exploit DB Packet Storm

294775	-	ibm	aix	The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service (assertion failure and panic) via an unspecifi…	NVD-CWE-noinfo	CVE-2012-0194	2024-11-21 10:34	2012-02-7	Show	GitHub Exploit DB Packet Storm

294776	-	symantec	pcanywhere altiris_client_management_suite_pcanywhere_solution altiris_deployment_solution_remote_pcanywhere_solution	Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1…	NVD-CWE-noinfo	CVE-2012-0290	2024-11-21 10:34	2012-02-7	Show	GitHub Exploit DB Packet Storm

294777	-	emobile	pocket_wifi_firmware pocket_wifi	Multiple cross-site request forgery (CSRF) vulnerabilities on the eAccess Pocket WiFi (aka GP02) router before 2.00 with firmware 11.203.11.05.168 and earlier allow remote attackers to hijack the aut…	CWE-352 Origin Validation Error	CVE-2012-0314	2024-11-21 10:34	2012-02-3	Show	GitHub Exploit DB Packet Storm

294778	-	mozilla	bugzilla	Bugzilla 2.x and 3.x before 3.4.14, 3.5.x and 3.6.x before 3.6.8, 3.7.x and 4.0.x before 4.0.4, and 4.1.x and 4.2.x before 4.2rc2 does not reject non-ASCII characters in e-mail addresses of new user …	CWE-20 Improper Input Validation	CVE-2012-0448	2024-11-21 10:34	2012-02-3	Show	GitHub Exploit DB Packet Storm

294779	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in jsonrpc.cgi in Bugzilla 3.5.x and 3.6.x before 3.6.8, 3.7.x and 4.0.x before 4.0.4, and 4.1.x and 4.2.x before 4.2rc2 allows remote attackers to hij…	CWE-352 Origin Validation Error	CVE-2012-0440	2024-11-21 10:34	2012-02-3	Show	GitHub Exploit DB Packet Storm

294780	-	php	php	PHP before 5.3.9 has improper libxslt security settings, which allows remote attackers to create arbitrary files via a crafted XSLT stylesheet that uses the libxslt output extension.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0057	2024-11-21 10:34	2012-02-2	Show	GitHub Exploit DB Packet Storm