Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218571	4.3	警告	デル	-	Dell SonicWALL Email Security におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2879	2014-04-22 18:42	2014-03-26	Show	GitHub Exploit DB Packet Storm

218572	5	警告	オラクル	-	Oracle Sun Solaris の Lighthttpd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2014-2469	2014-04-22 16:19	2014-04-1	Show	GitHub Exploit DB Packet Storm

218573	5	警告	Net-SNMP	-	Net-SNMP の AgentX サブエージェントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2310	2014-04-22 16:11	2014-04-14	Show	GitHub Exploit DB Packet Storm

218574	4.3	警告	SAP	-	SAProuter の passwordCheck 関数におけるパスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0984	2014-04-22 14:59	2014-04-15	Show	GitHub Exploit DB Packet Storm

218575	6.5	警告	Apache Software Foundation	-	Apache Syncope における任意の Java コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-0111	2014-04-22 14:21	2014-04-10	Show	GitHub Exploit DB Packet Storm

218576	6.8	警告	SpringSource	-	Spring Framework の Spring MVC の Jaxb2RootElementHttpMessageConverter における任意のファイルを読まれる脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-0054	2014-04-22 13:59	2014-02-18	Show	GitHub Exploit DB Packet Storm

218577	6.8	警告	Amos Benari	-	Ruby 用 rbovirt gem における中間者攻撃を実行される脆弱性	CWE-310 暗号の問題	CVE-2014-0036	2014-04-22 13:35	2014-02-24	Show	GitHub Exploit DB Packet Storm

218578	7.5	危険	Nullsoft	-	Winamp の gen_jumpex.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4694	2014-04-22 11:07	2013-06-21	Show	GitHub Exploit DB Packet Storm

218579	6.4	警告	strongSwan	-	strongSwan の IKEv2 における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-2338	2014-04-22 10:27	2014-04-14	Show	GitHub Exploit DB Packet Storm

218580	4	警告	FreeBSD	-	FreeBSD の NFS サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-1453	2014-04-22 09:57	2014-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296601	-		dotcms	dotcms	dotCMS 1.9 before 1.9.5.1 allows remote authenticated users to execute arbitrary Java code via a crafted (1) XSLT or (2) Velocity template.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1826	2024-11-21 10:37	2012-06-9	Show	GitHub Exploit DB Packet Storm

296602	6.5	MEDIUM Network	imagemagick debian redhat opensuse	imagemagick debian_linux enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_server_eus enterprise_linux_server enterprise_linux_workstation storage enterpri…	The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted EXIF IFD in a TIFF …	CWE-125 Out-of-bounds Read	CVE-2012-1798	2024-11-21 10:37	2012-06-6	Show	GitHub Exploit DB Packet Storm

296603	7.5	HIGH Network	imagemagick debian canonical opensuse	imagemagick debian_linux ubuntu_linux opensuse	Integer overflow in the GetEXIFProperty function in magick/property.c in ImageMagick before 6.7.6-4 allows remote attackers to cause a denial of service (out-of-bounds read) via a large component cou…	CWE-190 Integer Overflow or Wraparound	CVE-2012-1610	2024-11-21 10:37	2012-06-6	Show	GitHub Exploit DB Packet Storm

296604	-		isc	bind	ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, wh…	CWE-189 Numeric Errors	CVE-2012-1667	2024-11-21 10:37	2012-06-6	Show	GitHub Exploit DB Packet Storm

296605	-		oscommerce	online_merchant	Cross-site scripting (XSS) vulnerability in osCommerce/OM/Core/Site/Setup/Application/Install/RPC/DBCheck.php in OSCommerce Online Merchant 3.0.2, when the software is being installed, allows remote …	CWE-79 Cross-site Scripting	CVE-2012-1792	2024-11-21 10:37	2012-05-28	Show	GitHub Exploit DB Packet Storm

296606	-		measuresoft	scadapro_client scadapro_server	Untrusted search path vulnerability in Measuresoft ScadaPro Client before 4.0.0 and ScadaPro Server before 4.0.0 allows local users to gain privileges via a Trojan horse DLL in the current working di…	NVD-CWE-Other	CVE-2012-1824	2024-11-21 10:37	2012-05-26	Show	GitHub Exploit DB Packet Storm

296607	-		symantec	endpoint_protection	The Network Threat Protection module in the Manager component in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.700x on Windows Server 2003 allows remote attackers to cause a denial of ser…	NVD-CWE-Other	CVE-2012-1821	2024-11-21 10:37	2012-05-24	Show	GitHub Exploit DB Packet Storm

296608	-		drupal	drupal	Open redirect vulnerability in the Form API in Drupal 7.x before 7.13 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via crafted parameters in a destina…	CWE-20 Improper Input Validation	CVE-2012-1589	2024-11-21 10:37	2012-05-19	Show	GitHub Exploit DB Packet Storm

296609	-		linux	linux_kernel	The KVM implementation in the Linux kernel before 3.3.6 allows host OS users to cause a denial of service (NULL pointer dereference and host OS crash) by making a KVM_CREATE_IRQCHIP ioctl call after …	CWE-399 Resource Management Errors	CVE-2012-1601	2024-11-21 10:37	2012-05-17	Show	GitHub Exploit DB Packet Storm

296610	-		progea	movicon	The OPC server in Progea Movicon before 11.3 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) via a crafted HTTP request.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-1804	2024-11-21 10:37	2012-05-15	Show	GitHub Exploit DB Packet Storm