Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218701 6.8 警告 Google - Android API における Java オブジェクトの任意のメソッドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6636 2014-03-4 17:49 2014-02-7 Show GitHub Exploit DB Packet Storm
218702 4.3 警告 MediaWiki - MediaWiki の includes/api/ApiFormatBase.php の formatHTML 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2244 2014-03-4 17:06 2014-02-28 Show GitHub Exploit DB Packet Storm
218703 5.8 警告 MediaWiki - MediaWiki の includes/User.php におけるアクセス権を取得される脆弱性 CWE-362
競合状態 		CVE-2014-2243 2014-03-4 17:06 2014-02-28 Show GitHub Exploit DB Packet Storm
218704 4.3 警告 MediaWiki - MediaWiki の includes/upload/UploadBase.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2242 2014-03-4 17:06 2014-02-28 Show GitHub Exploit DB Packet Storm
218705 4.3 警告 シスコシステムズ - Cisco Unified Communications Domain Manager の Business Voice Services Manager のページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2104 2014-03-4 17:00 2014-02-28 Show GitHub Exploit DB Packet Storm
218706 7.9 危険 ブルーコートシステムズ - Blue Coat ProxySG に脆弱性 CWE-264
CWE-Other
CVE-2014-2033 2014-03-4 16:58 2014-02-28 Show GitHub Exploit DB Packet Storm
218707 9.3 危険 SAS - Base SAS のクライアントアプリケーションにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-2262 2014-03-4 16:38 2014-01-17 Show GitHub Exploit DB Packet Storm
218708 2.6 注意 Debian
Canonical		 - apt の methods/https.cc におけるリポジトリの認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3634 2014-03-4 16:18 2011-02-8 Show GitHub Exploit DB Packet Storm
218709 10 危険 IBM - IBM Rational コラボレーティブ・ライフサイクル・マネージメントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-0862 2014-03-4 15:57 2014-02-28 Show GitHub Exploit DB Packet Storm
218710 4.3 警告 IBM - IBM WebSphere MQ の WMQ Telemetry におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-4054 2014-03-4 15:57 2013-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292351 - jcore jcore SQL injection vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to execute arbitrary SQL commands via the memberloginid cookie. CWE-89
SQL Injection 		CVE-2012-4232 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
292352 - jcore jcore Cross-site scripting (XSS) vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to inject arbitrary web script or HTML via the path parameter. CWE-79
Cross-site Scripting 		CVE-2012-4231 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
292353 - oracle
sun 		jdk
jre 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality and … NVD-CWE-noinfo
CVE-2012-4416 2024-11-21 10:42 2012-10-17 Show GitHub Exploit DB Packet Storm
292354 - mozilla
suse
canonical
redhat 		firefox
seamonkey
thunderbird
thunderbird_esr
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_software_development_kit
ubuntu_linux
enterprise_linux_server 		Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, Thunderbird before 16.0.1, Thunderbird ESR 10.x before 10.0.9, and SeaMonkey before 2.13.1 omit a security check in the defaultValue fun… CWE-346
 Origin Validation Error 		CVE-2012-4193 2024-11-21 10:42 2012-10-12 Show GitHub Exploit DB Packet Storm
292355 - mozilla seamonkey
thunderbird
firefox 		Mozilla Firefox 16.0, Thunderbird 16.0, and SeaMonkey 2.13 allow remote attackers to bypass the Same Origin Policy and read the properties of a Location object via a crafted web site, a related issue… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4192 2024-11-21 10:42 2012-10-12 Show GitHub Exploit DB Packet Storm
292356 - mozilla
canonical 		firefox
seamonkey
thunderbird
ubuntu_linux 		The mozilla::net::FailDelayManager::Lookup function in the WebSockets implementation in Mozilla Firefox before 16.0.1, Thunderbird before 16.0.1, and SeaMonkey before 2.13.1 allows remote attackers t… CWE-787
 Out-of-bounds Write 		CVE-2012-4191 2024-11-21 10:42 2012-10-12 Show GitHub Exploit DB Packet Storm
292357 - mozilla
cyanogenmod 		firefox
cyanogenmod 		The FT2FontEntry::CreateFontEntry function in FreeType, as used in the Android build of Mozilla Firefox before 16.0.1 on CyanogenMod 10, allows remote attackers to cause a denial of service (memory c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4190 2024-11-21 10:42 2012-10-12 Show GitHub Exploit DB Packet Storm
292358 - linux linux_kernel The (1) do_siocgstamp and (2) do_siocgstampns functions in net/socket.c in the Linux kernel before 3.5.4 use an incorrect argument order, which allows local users to obtain sensitive information from… CWE-399
 Resource Management Errors 		CVE-2012-4467 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
292359 - lars_hjemli cgit Heap-based buffer overflow in the substr function in parsing.c in cgit 0.9.0.3 and earlier allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code v… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4465 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm
292360 - midnight-commander midnight_commander Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attac… CWE-20
 Improper Input Validation  		CVE-2012-4463 2024-11-21 10:42 2012-10-11 Show GitHub Exploit DB Packet Storm