Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218851 4 警告 IBM - IBM Financial Transaction Manager の OAC コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-0830 2014-02-4 14:06 2014-01-24 Show GitHub Exploit DB Packet Storm
218852 9.3 危険 IBM - IBM SPSS SamplePower の vsflex8l ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6724 2014-02-4 14:06 2013-11-8 Show GitHub Exploit DB Packet Storm
218853 5 警告 IBM - IBM SPSS Collaboration and Deployment Services のサーバにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-4043 2014-02-4 14:05 2013-06-7 Show GitHub Exploit DB Packet Storm
218854 5 警告 Robert Ancell - Light Display Manager における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4331 2014-02-4 14:04 2013-09-4 Show GitHub Exploit DB Packet Storm
218855 7.5 危険 ideaMK - EPS Viewer の gldll32.dll モジュールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4979 2014-02-4 13:52 2013-08-28 Show GitHub Exploit DB Packet Storm
218856 2.1 注意 Dennis Bruecke - Drupal 用 jQuery Countdown モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4383 2014-02-4 13:45 2013-09-11 Show GitHub Exploit DB Packet Storm
218857 5 警告 Fail2ban - Fail2ban の cyrus-imap フィルタにおける任意の IP アドレスのブロッキングを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7177 2014-02-4 12:11 2013-07-20 Show GitHub Exploit DB Packet Storm
218858 5 警告 Fail2ban - Fail2ban の postfix フィルタにおける任意の IP アドレスのブロッキングを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7176 2014-02-4 12:10 2013-07-20 Show GitHub Exploit DB Packet Storm
218859 4.6 警告 アップル
日立
Apache Software Foundation
ヒューレット・パッカード		 - Apache HTTP Server におけるサービス運用妨害 (シャットダウン中のデーモンクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0031 2014-02-3 18:00 2012-01-11 Show GitHub Exploit DB Packet Storm
218860 2.6 注意 アップル
Apache Software Foundation		 - Apache HTTP Server の log_cookie 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0021 2014-02-3 18:00 2011-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295141 - gplhost domain_technologie_control The install script in Domain Technologie Control (DTC) before 0.34.1 gives sudo permissions for chrootuid to the dtc user, which makes it easier for context-dependent users to gain privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-5275 2024-11-21 10:34 2014-03-21 Show GitHub Exploit DB Packet Storm
295142 - gplhost domain_technologie_control The drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain Technologie Control (DTC) before 0.32.11 allows remote attackers to execute arbitrary commands via shell metach… NVD-CWE-noinfo
CVE-2011-5274 2024-11-21 10:34 2014-03-21 Show GitHub Exploit DB Packet Storm
295143 - gplhost domain_technologie_control Directory traversal vulnerability in shared/package-installer in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execute arbitrary PHP code via a .. (dot dot) in t… CWE-22
Path Traversal 		CVE-2011-5273 2024-11-21 10:34 2014-03-21 Show GitHub Exploit DB Packet Storm
295144 - gplhost domain_technologie_control SQL injection vulnerability in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execute arbitrary SQL commands via the vps_note parameter to dtcadmin/logPushlet.php… CWE-89
SQL Injection 		CVE-2011-5272 2024-11-21 10:34 2014-03-21 Show GitHub Exploit DB Packet Storm
295145 - csounds csound Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0270 2024-11-21 10:34 2014-02-18 Show GitHub Exploit DB Packet Storm
295146 - redhat jboss_operations_network Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 allows remote attackers to hijack agent sessions via an agent registration request without a security token. CWE-287
Improper Authentication 		CVE-2012-0062 2024-11-21 10:34 2014-02-15 Show GitHub Exploit DB Packet Storm
295147 - redhat jboss_operations_network Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 does not check the JON agent key, which allows remote attackers to spoof the identity of arbitrary agents via the registered… CWE-20
 Improper Input Validation  		CVE-2012-0052 2024-11-21 10:34 2014-02-15 Show GitHub Exploit DB Packet Storm
295148 - x
xkeyboard_config_project 		x.org_x11
xkeyboard-config 		xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations th… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0064 2024-11-21 10:34 2014-02-11 Show GitHub Exploit DB Packet Storm
295149 - redhat network_proxy
satellite 		Spacewalk-backend in Red Hat Network (RHN) Satellite and Proxy 5.4 includes cleartext user passwords in an error message when a system registration XML-RPC call fails, which allows remote administrat… CWE-310
Cryptographic Issues 		CVE-2012-0059 2024-11-21 10:34 2014-02-6 Show GitHub Exploit DB Packet Storm
295150 - wordpress wordpress wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publish_posts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-5270 2024-11-21 10:34 2014-01-21 Show GitHub Exploit DB Packet Storm