Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218521	4.3	警告	シスコシステムズ	-	Cisco Identity Services Engine の NAC Web Agent コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0680	2014-01-30 13:56	2014-01-29	Show	GitHub Exploit DB Packet Storm

218522	7.5	危険	IBM	-	IBM Tivoli Application Dependency Discovery Manager における認証チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2974	2014-01-30 12:21	2013-04-12	Show	GitHub Exploit DB Packet Storm

218523	10	危険	Google	-	Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2014-1681	2014-01-30 10:20	2014-01-27	Show	GitHub Exploit DB Packet Storm

218524	7.5	危険	Google	-	Google Chrome で使用される Google V8 の store-buffer.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-6650	2014-01-30 10:19	2014-01-27	Show	GitHub Exploit DB Packet Storm

218525	7.5	危険	Google	-	Google Chrome で使用される Blink の core/rendering/svg/RenderSVGImage.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-6649	2014-01-30 10:19	2014-01-27	Show	GitHub Exploit DB Packet Storm

218526	3.3	注意	Software in the Public Interest	-	axiom の axiom-test.sh における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1640	2014-01-30 10:13	2014-01-22	Show	GitHub Exploit DB Packet Storm

218527	3.3	注意	Patrick Ohly	-	SyncEvolution の syncevo/installcheck-local.sh における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1639	2014-01-30 10:08	2014-01-23	Show	GitHub Exploit DB Packet Storm

218528	3.3	注意	Debian	-	localepurge の debian/postrm および debian/localepurge.config における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1638	2014-01-30 10:05	2014-01-26	Show	GitHub Exploit DB Packet Storm

218529	3.3	注意	Thomas Kluyver	-	python-xdg の xdg.BaseDirectory.get_runtime_dir 関数における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1624	2014-01-30 09:59	2014-01-21	Show	GitHub Exploit DB Packet Storm

218530	4.3	警告	マカフィー	-	McAfee Vulnerability Manager の index.exp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5094	2014-01-29 18:03	2013-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294851	-	ibm	spss_samplepower	Multiple unspecified vulnerabilities in the (1) PrintFile and (2) SaveDoc methods in the VsVIEW6 ActiveX control in VsVIEW6.ocx in IBM SPSS SamplePower 3.0 allow remote attackers to execute arbitrary…	NVD-CWE-noinfo	CVE-2012-0189	2024-11-21 10:34	2012-01-19	Show	GitHub Exploit DB Packet Storm

294852	-	ibm	spss_data_collection spss_dimensions	Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execu…	NVD-CWE-noinfo	CVE-2012-0188	2024-11-21 10:34	2012-01-19	Show	GitHub Exploit DB Packet Storm

294853	-	apache debian opensuse suse redhat	http_server debian_linux opensuse linux_enterprise_software_development_kit linux_enterprise_server jboss_enterprise_web_server enterprise_linux_server_aus enterprise_linux_deskt…	scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial of service (daemon crash during shutdown) or possibly have unspecified other impact by modifying a …	NVD-CWE-noinfo	CVE-2012-0031	2024-11-21 10:34	2012-01-19	Show	GitHub Exploit DB Packet Storm

294854	-	ntrglobal	ntr_activex_control	The StopModule method in the NTR ActiveX control before 2.0.4.8 allows remote attackers to execute arbitrary code via a crafted lModule parameter that triggers use of an arbitrary memory address as a…	CWE-20 Improper Input Validation	CVE-2012-0267	2024-11-21 10:34	2012-01-15	Show	GitHub Exploit DB Packet Storm

294855	-	ntrglobal	ntr_activex_control	Multiple stack-based buffer overflows in the NTR ActiveX control before 2.0.4.8 allow remote attackers to execute arbitrary code via (1) a long bstrUrl parameter to the StartModule method, (2) a long…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0266	2024-11-21 10:34	2012-01-15	Show	GitHub Exploit DB Packet Storm

294856	-	gnome	glib	GLib 2.31.8 and earlier, when the g_str_hash function is used, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to…	CWE-310 Cryptographic Issues	CVE-2012-0039	2024-11-21 10:34	2012-01-15	Show	GitHub Exploit DB Packet Storm

294857	-	openstack	essex nova	Nova 2011.3 and Essex, when using the OpenStack API, allows remote authenticated users to bypass access restrictions for tenants of other users via an OSAPI request with a modified project_id URI par…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0030	2024-11-21 10:34	2012-01-14	Show	GitHub Exploit DB Packet Storm

294858	-	cogentdatahub	cogent_datahub opc_datahub cascade_datahub	CRLF injection vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary HTTP headers and c…	CWE-94 Code Injection	CVE-2012-0310	2024-11-21 10:34	2012-01-13	Show	GitHub Exploit DB Packet Storm

294859	-	cogentdatahub	cogent_datahub opc_datahub cascade_datahub	Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary web sc…	CWE-79 Cross-site Scripting	CVE-2012-0309	2024-11-21 10:34	2012-01-13	Show	GitHub Exploit DB Packet Storm

294860	-	microsoft	windows_server_2008 windows_7 windows_xp windows_server_2003 windows_vista	Incomplete blacklist vulnerability in the Windows Packager configuration in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and …	NVD-CWE-Other	CVE-2012-0013	2024-11-21 10:34	2012-01-11	Show	GitHub Exploit DB Packet Storm