Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218711	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/msrle.c の msrle_decode_frame 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2014-2099	2014-03-4 15:55	2014-02-17	Show	GitHub Exploit DB Packet Storm

218712	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/wmalosslessdec.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-2098	2014-03-4 15:55	2014-02-7	Show	GitHub Exploit DB Packet Storm

218713	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/takdec.c の tak_decode_frame 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2097	2014-03-4 15:54	2014-02-1	Show	GitHub Exploit DB Packet Storm

218714	4.3	警告	MODX	-	MODX Revolution の manager/templates/default/header.tpl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2080	2014-03-4 15:45	2014-01-21	Show	GitHub Exploit DB Packet Storm

218715	3.5	注意	CloudBees	-	CloudBees Jenkins の java/hudson/model/Cause.java におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2067	2014-03-4 15:37	2014-02-14	Show	GitHub Exploit DB Packet Storm

218716	4	警告	CloudBees	-	CloudBees Jenkins の CLI ジョブ作成におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2059	2014-03-4 15:37	2014-02-14	Show	GitHub Exploit DB Packet Storm

218717	4.3	警告	BuddyPress.org	-	WordPress 用 BuddyPress プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1888	2014-03-4 15:13	2014-02-5	Show	GitHub Exploit DB Packet Storm

218718	4.3	警告	OTRS プロジェクト	-	Open Ticket Request System におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1695	2014-03-4 15:08	2014-02-25	Show	GitHub Exploit DB Packet Storm

218719	4.3	警告	Open Web Analytics	-	Open Web Analytics のログインページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1456	2014-03-4 15:04	2014-02-1	Show	GitHub Exploit DB Packet Storm

218720	7.5	危険	SimpleHRM	-	SimpleHRM の flexycms/modules/user/user_manager.php のログインページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-2498	2014-03-4 14:58	2013-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295721	-	cisco	ios	Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish TELNET connections from arbitrary …	CWE-20 Improper Input Validation	CVE-2012-0339	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295722	-	cisco	ios	Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish SSH connections from arbitrary sou…	CWE-20 Improper Input Validation	CVE-2012-0338	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295723	-	cisco	unified_meetingplace	SQL injection vulnerability in the web component in Cisco Unified MeetingPlace 7.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtx08939.	CWE-89 SQL Injection	CVE-2012-0337	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295724	-	cisco	adaptive_security_appliance_software 5500_series_adaptive_security_appliance	Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 through 8.4 do not properly perform proxy authentication during attempts to cut through a firewall, which allows remote …	CWE-287 Improper Authentication	CVE-2012-0335	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295725	-	cisco	small_business_ip_phone_firmware small_business_ip_phone	Cisco Small Business IP phones with SPA 500 series firmware 7.4.9 and earlier do not require authentication for Push XML requests, which allows remote attackers to make telephone calls via an XML doc…	CWE-287 Improper Authentication	CVE-2012-0333	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295726	-	quest	toad_for_data_analysts	Quest Toad for Data Analysts 3.0.1 uses weak permissions (Everyone: Full Control) for the %COMMONPROGRAMFILES%\Quest Shared directory, which allows local users to gain privileges via a Trojan horse f…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0279	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295727	-	justsystems	just_school shuriken shuriken_pro ichitaro ichitaro_viewer just_frontier rekishimail_sengokubusho_no_missho rekishimail_bakumatsushishi_no_missho just_jump oreplug ichit…	Buffer overflow in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0269	2024-11-21 10:34	2012-04-28	Show	GitHub Exploit DB Packet Storm

295728	-	debian	apache2	The default configuration of the apache2 package in Debian GNU/Linux squeeze before 2.2.16-6+squeeze7, wheezy before 2.2.22-4, and sid before 2.2.22-4, when mod_php or mod_rivet is used, provides exa…	NVD-CWE-Other	CVE-2012-0216	2024-11-21 10:34	2012-04-23	Show	GitHub Exploit DB Packet Storm

295729	-	emc	data_protection_advisor	Integer overflow in the DPA_Utilities library in EMC Data Protection Advisor (DPA) 5.5 through 5.8 SP1 allows remote attackers to cause a denial of service (infinite loop) via a negative 64-bit value…	CWE-189 Numeric Errors	CVE-2012-0407	2024-11-21 10:34	2012-04-20	Show	GitHub Exploit DB Packet Storm

295730	-	emc	data_protection_advisor	The DPA_Utilities.cProcessAuthenticationData function in EMC Data Protection Advisor (DPA) 5.5 through 5.8 SP1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0406	2024-11-21 10:34	2012-04-20	Show	GitHub Exploit DB Packet Storm