Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218501	4.3	警告	AlgoSec	-	AlgoSec Firewall Analyzer の afa/php/Login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5092	2014-01-31 12:28	2013-08-7	Show	GitHub Exploit DB Packet Storm

218502	6.5	警告	WebHive	-	SocialEngine 用 Timeline プラグインのユーザプロファイルページ機能における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4898	2014-01-31 11:54	2013-07-25	Show	GitHub Exploit DB Packet Storm

218503	4.3	警告	Zabbix	-	Zabbix の libs/zbxmedia/eztexting.c における SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2012-6086	2014-01-31 11:27	2012-12-2	Show	GitHub Exploit DB Packet Storm

218504	5	警告	株式会社ロックオン	-	EC-CUBE における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2014-0808	2014-01-30 18:39	2014-01-22	Show	GitHub Exploit DB Packet Storm

218505	5	警告	株式会社ロックオン	-	EC-CUBE における情報改ざんの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0807	2014-01-30 18:37	2014-01-22	Show	GitHub Exploit DB Packet Storm

218506	2.6	注意	株式会社ロックオン	-	EC-CUBE におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5993	2014-01-30 18:36	2013-11-20	Show	GitHub Exploit DB Packet Storm

218507	4.3	警告	株式会社ロックオン	-	EC-CUBE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5996	2014-01-30 18:35	2013-11-20	Show	GitHub Exploit DB Packet Storm

218508	5.5	警告	株式会社ロックオン	-	EC-CUBE における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2013-5995	2014-01-30 18:34	2013-11-20	Show	GitHub Exploit DB Packet Storm

218509	5	警告	株式会社ロックオン	-	EC-CUBE における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2013-5994	2014-01-30 18:32	2013-11-20	Show	GitHub Exploit DB Packet Storm

218510	6.4	警告	株式会社ロックオン	-	EC-CUBE におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2314	2014-01-30 18:31	2013-05-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295561	-		ffmpeg	ffmpeg	The dirac_unpack_idwt_params function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Dirac data.	NVD-CWE-noinfo	CVE-2011-3949	2024-11-21 10:31	2013-12-10	Show	GitHub Exploit DB Packet Storm

295562	-		ffmpeg	ffmpeg	The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Supplemental enhancement information (SEI) data, which…	CWE-399 Resource Management Errors	CVE-2011-3946	2024-11-21 10:31	2013-12-10	Show	GitHub Exploit DB Packet Storm

295563	-		ffmpeg	ffmpeg	The smacker_decode_header_tree function in libavcodec/smacker.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Smacker data.	NVD-CWE-noinfo	CVE-2011-3944	2024-11-21 10:31	2013-12-10	Show	GitHub Exploit DB Packet Storm

295564	-		ffmpeg	ffmpeg	The decode_mb function in libavcodec/error_resilience.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to an uninitialized block index, which triggers…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-3941	2024-11-21 10:31	2013-12-10	Show	GitHub Exploit DB Packet Storm

295565	-		ffmpeg	ffmpeg	The codec_get_buffer function in ffmpeg.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to a crafted image size.	NVD-CWE-noinfo	CVE-2011-3935	2024-11-21 10:31	2013-12-10	Show	GitHub Exploit DB Packet Storm

295566	-		ffmpeg	ffmpeg	Double free vulnerability in the vp3_update_thread_context function in libavcodec/vp3.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted vp3 data.	CWE-399 Resource Management Errors	CVE-2011-3934	2024-11-21 10:31	2013-12-10	Show	GitHub Exploit DB Packet Storm

295567	-		binarymoon	timthumb	TimThumb (timthumb.php) before 2.0 does not validate the entire source with the domain white list, which allows remote attackers to upload and execute arbitrary code via a URL containing a white-list…	CWE-20 Improper Input Validation	CVE-2011-4106	2024-11-21 10:31	2013-10-27	Show	GitHub Exploit DB Packet Storm

295568	-		linux	linux_kernel	The fallocate implementation in the GFS2 filesystem in the Linux kernel before 3.2 relies on the page cache, which might allow local users to cause a denial of service by preallocating blocks in cert…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4098	2024-11-21 10:31	2013-06-8	Show	GitHub Exploit DB Packet Storm

295569	7.5	HIGH Network	linux	linux_kernel	The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39 does not properly initialize a certain data structure, which allows remote attackers to cause a denial …	CWE-665 Improper Initialization	CVE-2011-4087	2024-11-21 10:31	2013-06-8	Show	GitHub Exploit DB Packet Storm

295570	-		ffmpeg libav	ffmpeg libav	The H.263 codec (libavcodec/h263dec.c) in FFmpeg 0.7.x before 0.7.12, 0.8.x before 0.8.11, and unspecified versions before 0.10, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.…	NVD-CWE-noinfo	CVE-2011-3937	2024-11-21 10:31	2013-01-5	Show	GitHub Exploit DB Packet Storm