Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218671 10 危険 IBM - IBM Platform Symphony Developer Edition の不特定のサーブレットにおける認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-5400 2014-02-17 14:16 2013-08-22 Show GitHub Exploit DB Packet Storm
218672 6.5 警告 シマンテック - Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5015 2014-02-17 11:26 2013-07-29 Show GitHub Exploit DB Packet Storm
218673 7.5 危険 シマンテック - Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2013-5014 2014-02-17 11:21 2013-07-29 Show GitHub Exploit DB Packet Storm
218674 3.5 注意 IBM - IBM Sametime の Meeting Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6743 2014-02-17 10:58 2013-11-8 Show GitHub Exploit DB Packet Storm
218675 6.8 警告 IBM - IBM Sametime の Meeting Server におけるクリックジャッキング攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3988 2014-02-17 10:57 2013-06-7 Show GitHub Exploit DB Packet Storm
218676 7.5 危険 IBM - IBM Sametime の Meeting Server におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6742 2014-02-17 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
218677 7.5 危険 IBM - IBM Sametime の Meeting Server における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3983 2014-02-17 10:57 2013-06-7 Show GitHub Exploit DB Packet Storm
218678 5 警告 IBM - IBM Sametime の Meeting Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3978 2014-02-17 10:56 2013-06-7 Show GitHub Exploit DB Packet Storm
218679 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Enterprise Mobility Application インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0729 2014-02-14 14:52 2014-02-13 Show GitHub Exploit DB Packet Storm
218680 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0728 2014-02-14 14:51 2014-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292561 - apache hadoop DataNodes in Apache Hadoop 2.0.0 alpha does not check the BlockTokens of clients when Kerberos is enabled and the DataNode has checked out the same BlockPool twice from a NodeName, which might allow … CWE-310
Cryptographic Issues 		CVE-2012-3376 2024-11-21 10:40 2012-07-13 Show GitHub Exploit DB Packet Storm
292562 - cisco telepresence_recording_server The administrative web interface on Cisco TelePresence Recording Server before 1.8.0 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Bug ID CSCth85804. CWE-78
OS Command  		CVE-2012-3076 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
292563 - cisco telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
telepresence_system_3200
telepresence_system_3210
telepresence_system_t3 		The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443,… CWE-78
OS Command  		CVE-2012-3075 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
292564 - cisco telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
telepresence_system_3200
telepresence_system_3210
telepresence_system_t3 		An unspecified API on Cisco TelePresence Immersive Endpoint Devices before 1.9.1 allows remote attackers to execute arbitrary commands by leveraging certain adjacency and sending a malformed request … CWE-78
OS Command  		CVE-2012-3074 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
292565 - cisco telepresence_multipoint_switch_software
telepresence_multipoint_switch
telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
tel… 		The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to… NVD-CWE-Other
CVE-2012-3073 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
292566 - astaro
sophos 		security_gateway_software
security_gateway
unified_threat_management_software
unified_threat_management 		Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Co… CWE-79
Cross-site Scripting 		CVE-2012-3238 2024-11-21 10:40 2012-07-10 Show GitHub Exploit DB Packet Storm
292567 - synel sy-780\/a_time_\&_attendance_terminal The Synel SY-780/A Time & Attendance terminal allows remote attackers to cause a denial of service (device hang) via network traffic to port (1) 1641, (2) 3734, or (3) 3735. CWE-399
 Resource Management Errors 		CVE-2012-2970 2024-11-21 10:40 2012-07-10 Show GitHub Exploit DB Packet Storm
292568 - elitecore cyberoam_unified_threat_management The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in… CWE-310
Cryptographic Issues 		CVE-2012-3372 2024-11-21 10:40 2012-07-9 Show GitHub Exploit DB Packet Storm
292569 - pidgin pidgin Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3374 2024-11-21 10:40 2012-07-7 Show GitHub Exploit DB Packet Storm
292570 - invensys wonderware_application_server
dasabcip
dassidirect
daserver_runtime_components
intouch\/wonderware_application_server 		Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10.5 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3007 2024-11-21 10:40 2012-07-5 Show GitHub Exploit DB Packet Storm