Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218541 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7142 2014-01-28 18:22 2013-12-18 Show GitHub Exploit DB Packet Storm
218542 3.3 注意 CMU Speech Software - Flite の audio/auserver.c 内の play_wave_from_socket 関数における任意のファイルを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2014-0027 2014-01-28 18:21 2014-01-6 Show GitHub Exploit DB Packet Storm
218543 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7141 2014-01-28 18:21 2013-12-18 Show GitHub Exploit DB Packet Storm
218544 4 警告 Open-Xchange - Open-Xchange AppSuite の CalDAV インターフェースにおける XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2013-7140 2014-01-28 18:19 2013-12-18 Show GitHub Exploit DB Packet Storm
218545 5 警告 Libreswan Project - Libreswan におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-6467 2014-01-28 18:18 2013-11-4 Show GitHub Exploit DB Packet Storm
218546 7.5 危険 Brion Vibber (MediaWiki)
MediaWiki		 - MediaWiki 用 CentralAuth 拡張機能におけるパスワードなしで認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-4304 2014-01-28 18:16 2013-09-3 Show GitHub Exploit DB Packet Storm
218547 5 警告 freedesktop.org - Poppler の JBIG2Stream.cc 内の JBIG2Stream::readSegments メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-7296 2014-01-28 18:05 2013-12-7 Show GitHub Exploit DB Packet Storm
218548 4.3 警告 Gapless Player - SimZip (Simple Zip Viewer) におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-0809 2014-01-28 18:04 2014-01-24 Show GitHub Exploit DB Packet Storm
218549 8.3 危険 Xen プロジェクト - Xen の do_physdev_op 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1666 2014-01-28 18:02 2014-01-23 Show GitHub Exploit DB Packet Storm
218550 5 警告 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point Session Authentication Agent における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-1673 2014-01-28 18:01 2014-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294761 - microsoft sharepoint_server
sharepoint_foundation 		Cross-site scripting (XSS) vulnerability in themeweb.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitra… CWE-79
Cross-site Scripting 		CVE-2012-0144 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294762 - microsoft visio_viewer Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, a… CWE-94
Code Injection 		CVE-2012-0138 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294763 - microsoft visio_viewer Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, a… CWE-94
Code Injection 		CVE-2012-0137 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294764 - microsoft visio_viewer Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, a… CWE-94
Code Injection 		CVE-2012-0136 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294765 - microsoft visio_viewer Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, a… CWE-94
Code Injection 		CVE-2012-0020 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294766 - microsoft visio_viewer Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, a… CWE-94
Code Injection 		CVE-2012-0019 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294767 - microsoft sharepoint_foundation Cross-site scripting (XSS) vulnerability in inplview.aspx in Microsoft SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via JavaScript sequences … CWE-79
Cross-site Scripting 		CVE-2012-0017 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294768 - microsoft .net_framework Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly calculate the length of an unspecified buffer, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser appl… CWE-94
Code Injection 		CVE-2012-0015 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294769 - microsoft .net_framework
silverlight 		Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4, and Silverlight 4 before 4.1.10111, does not properly restrict access to memory associated with unmanaged objects, which allows remote attackers to exe… CWE-94
Code Injection 		CVE-2012-0014 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm
294770 - microsoft internet_explorer Microsoft Internet Explorer 9 does not properly handle the creation and initialization of string objects, which allows remote attackers to read data from arbitrary process-memory locations via a craf… CWE-665
 Improper Initialization 		CVE-2012-0012 2024-11-21 10:34 2012-02-15 Show GitHub Exploit DB Packet Storm