Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218681 6.8 警告 ImageCMS - ImageCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-7334 2014-03-12 16:32 2013-01-23 Show GitHub Exploit DB Packet Storm
218682 6.5 警告 ImageCMS - ImageCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-6290 2014-03-12 16:27 2012-12-5 Show GitHub Exploit DB Packet Storm
218683 6.1 警告 Linux - Linux Kernel の net/ipv6/route.c 内の ip6_route_add 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2014-2309 2014-03-12 15:36 2014-03-6 Show GitHub Exploit DB Packet Storm
218684 5.2 警告 Linux - Linux Kernel の security/keys/keyring.c 内の keyring_detect_cycle_iterator 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2014-0102 2014-03-12 15:35 2014-03-4 Show GitHub Exploit DB Packet Storm
218685 9.3 危険 Linux - Linux Kernel の net/ipv4/inet_fragment.c 内の inet_frag_intern 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2014-0100 2014-03-12 15:35 2014-03-3 Show GitHub Exploit DB Packet Storm
218686 7.4 危険 Linux - Linux Kernel の arch/x86/kvm/x86.c におけるホスト OS 上で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-0049 2014-03-12 15:34 2014-03-6 Show GitHub Exploit DB Packet Storm
218687 4.3 警告 Aker Security Solutions - Aker Secure Mail Gateway にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6037 2014-03-12 15:25 2014-03-6 Show GitHub Exploit DB Packet Storm
218688 4.3 警告 Huawei - Huawei E355 に認証回避の脆弱性 CWE-287
CWE-Other
CVE-2013-6031 2014-03-12 15:23 2014-03-6 Show GitHub Exploit DB Packet Storm
218689 6.5 警告 IBM - IBM AIX の ftpd における権限設定を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0899 2014-03-12 14:59 2014-03-6 Show GitHub Exploit DB Packet Storm
218690 6.2 警告 ヒューレット・パッカード - HP-UX の m4 における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6200 2014-03-12 14:35 2013-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294341 - mozilla firefox
thunderbird_esr 		jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ESR 10.x before 10.0.5 does not properly determine data types, which allows remote attackers to cause a denial of service (memory… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1939 2024-11-21 10:38 2012-06-6 Show GitHub Exploit DB Packet Storm
294342 - mozilla
suse
opensuse
redhat 		firefox
seamonkey
thunderbird
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
enterprise_linux_server
enterprise_linux_serv… 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 13.0, Thunderbird before 13.0, and SeaMonkey before 2.10 allow remote attackers to cause a denial of service (memo… NVD-CWE-noinfo
CVE-2012-1938 2024-11-21 10:38 2012-06-6 Show GitHub Exploit DB Packet Storm
294343 - mozilla seamonkey
firefox
thunderbird
thunderbird_esr 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and S… NVD-CWE-noinfo
CVE-2012-1937 2024-11-21 10:38 2012-06-6 Show GitHub Exploit DB Packet Storm
294344 - openstack horizon Session fixation vulnerability in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 allows remote attackers to hijack web sessions via the sessionid cookie. NVD-CWE-Other
CVE-2012-2144 2024-11-21 10:38 2012-06-6 Show GitHub Exploit DB Packet Storm
294345 - openstack horizon Cross-site scripting (XSS) vulnerability in the refresh mechanism in the log viewer in horizon/static/horizon/js/horizon.js in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 and earlier allows rem… CWE-79
Cross-site Scripting 		CVE-2012-2094 2024-11-21 10:38 2012-06-6 Show GitHub Exploit DB Packet Storm
294346 - sympa sympa The archive management (arc_manage) page in wwsympa/wwsympa.fcgi.in in Sympa before 6.1.11 does not check permissions, which allows remote attackers to list, read, and delete arbitrary list archives … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2352 2024-11-21 10:38 2012-06-1 Show GitHub Exploit DB Packet Storm
294347 - puppet
fedoraproject
debian
canonical 		puppet
puppet_enterprise
fedora
debian_linux
ubuntu_linux 		Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with agent SSL keys and file-crea… CWE-78
OS Command  		CVE-2012-1988 2024-11-21 10:38 2012-05-30 Show GitHub Exploit DB Packet Storm
294348 - puppet
puppetlabs 		puppet
puppet_enterprise
puppet_enterprise_users 		Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with an authorized SSL key and ce… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1986 2024-11-21 10:38 2012-05-30 Show GitHub Exploit DB Packet Storm
294349 - puppet
puppetlabs 		puppet
puppet_enterprise
puppet_enterprise_users 		Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 uses predictable file names when installing Mac OS X packages from … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1906 2024-11-21 10:38 2012-05-30 Show GitHub Exploit DB Packet Storm
294350 - puppet
puppetlabs 		puppet
puppet_enterprise
puppet_enterprise_users 		Unspecified vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with… NVD-CWE-noinfo
CVE-2012-1987 2024-11-21 10:38 2012-05-30 Show GitHub Exploit DB Packet Storm