Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218531	2.1	注意	Python Software Foundation	-	RPLY の parsergenerator.py のパーサキャッシュ機能におけるキャッシュデータを偽装される脆弱性	CWE-DesignError	CVE-2014-1604	2014-01-29 16:27	2014-01-18	Show	GitHub Exploit DB Packet Storm

218532	2.1	注意	Starbucks Coffee Company	-	iOS 用 Starbucks アプリケーションにおけるユーザ名などの情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0647	2014-01-29 16:20	2014-01-13	Show	GitHub Exploit DB Packet Storm

218533	7.2	危険	Detlef Pilzecker	-	Perl 用 Proc::Daemon モジュールにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-7135	2014-01-29 15:00	2013-12-16	Show	GitHub Exploit DB Packet Storm

218534	10	危険	Enghouse Interactive	-	Enghouse Interactive IVR Pro の Enghouse Interactive Professional Services の不特定の "アドオン製品" における権限を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-6838	2014-01-29 14:50	2013-11-27	Show	GitHub Exploit DB Packet Storm

218535	5	警告	Bitweaver	-	Bitweaver の gmap/view_overlay.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-5192	2014-01-29 14:02	2012-10-23	Show	GitHub Exploit DB Packet Storm

218536	5	警告	シトリックス・システムズ	-	Android 用 Citrix GoToMeeting アプリケーションにおけるユーザ ID を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-1664	2014-01-29 13:40	2014-01-23	Show	GitHub Exploit DB Packet Storm

218537	4.3	警告	Joomla!	-	Joomla! 用 JV Comment におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0794	2014-01-29 12:37	2014-01-14	Show	GitHub Exploit DB Packet Storm

218538	5	警告	Tntnet	-	tntnet の framework/common/messageheaderparser.cpp における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-7299	2014-01-29 12:27	2013-12-11	Show	GitHub Exploit DB Packet Storm

218539	5	警告	Tntnet	-	cxxtools の query_params.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-7298	2014-01-29 12:04	2013-12-14	Show	GitHub Exploit DB Packet Storm

218540	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7143	2014-01-28 18:24	2013-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293271	-	ajaxplorer	ajaxplorer	Multiple directory traversal vulnerabilities in the Get Template feature in plugins/gui.ajax/class.AJXP_ClientDriver.php in AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 allow remote attackers…	CWE-22 Path Traversal	CVE-2012-1839	2024-11-21 10:37	2012-03-22	Show	GitHub Exploit DB Packet Storm

293272	-	lg-nortel	elo_gs24m_switch	The web management interface on the LG-Nortel ELO GS24M switch allows remote attackers to bypass authentication, and consequently obtain cleartext credential and configuration information, via a dire…	CWE-287 Improper Authentication	CVE-2012-1838	2024-11-21 10:37	2012-03-22	Show	GitHub Exploit DB Packet Storm

293273	-	ibm	tivoli_endpoint_manager	The (1) webreports, (2) post/create-role, and (3) post/update-role programs in IBM Tivoli Endpoint Manager (TEM) before 8.2 do not include the HTTPOnly flag in a Set-Cookie header for a cookie, which…	CWE-200 Information Exposure	CVE-2012-1837	2024-11-21 10:37	2012-03-22	Show	GitHub Exploit DB Packet Storm

293274	-	inspircd	inspircd	Heap-based buffer overflow in dns.cpp in InspIRCd 2.0.5 might allow remote attackers to execute arbitrary code via a crafted DNS query that uses compression.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-1836	2024-11-21 10:37	2012-03-22	Show	GitHub Exploit DB Packet Storm

293275	-	broadcom	arcserve_backup	CA ARCserve Backup r12.0 through SP2, r12.5 before SP2, r15 through SP1, and r16 before SP1 on Windows allows remote attackers to cause a denial of service (service shutdown) via a crafted network re…	CWE-20 Improper Input Validation	CVE-2012-1662	2024-11-21 10:37	2012-03-22	Show	GitHub Exploit DB Packet Storm

293276	-	clamav sophos	clamav sophos_anti-virus	The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1458	2024-11-21 10:37	2012-03-21	Show	GitHub Exploit DB Packet Storm

293277	-	rising-global eset	rising_antivirus nod32_antivirus	The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a CAB file with a modified vMinor version field. NOTE: this may l…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1455	2024-11-21 10:37	2012-03-21	Show	GitHub Exploit DB Packet Storm

293278	-	cat ikarus emsisoft	quick_heal ikarus_virus_utilities_t3_command_line_scanner anti-malware	The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detec…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1452	2024-11-21 10:37	2012-03-21	Show	GitHub Exploit DB Packet Storm

293279	-	bitdefender ahnlab norman f-secure f-prot cat authentium nprotect aladdin pandasecurity comodo mcafee	bitdefender v3_internet_security norman_antivirus_\&_antispyware f-secure_anti-virus f-prot_antivirus quick_heal command_antivirus nprotect_antivirus esafe panda_antivi…	The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Anti…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1463	2024-11-21 10:37	2012-03-21	Show	GitHub Exploit DB Packet Storm

293280	-	ahnlab symantec kaspersky cat avg fortinet jiangmin ikarus emsisoft aladdin	v3_internet_security endpoint_protection kaspersky_anti-virus quick_heal avg_anti-virus fortinet_antivirus jiangmin_antivirus ikarus_virus_utilities_t3_command_line_scanner an…	The ZIP file parser in AhnLab V3 Internet Security 2011.01.18.00, AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Fortinet Antivirus 4…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1462	2024-11-21 10:37	2012-03-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed