Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218901 4.3 警告 Electric Sheep Fencing - pfSense 用 Snort パッケージにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4693 2014-07-4 10:38 2014-06-23 Show GitHub Exploit DB Packet Storm
218902 4.3 警告 Electric Sheep Fencing - pfSense における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-4692 2014-07-4 10:37 2014-06-23 Show GitHub Exploit DB Packet Storm
218903 6.8 警告 Electric Sheep Fencing - pfSense における Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2014-4691 2014-07-4 10:36 2014-06-23 Show GitHub Exploit DB Packet Storm
218904 5 警告 Electric Sheep Fencing - pfSense におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-4690 2014-07-4 10:36 2014-06-23 Show GitHub Exploit DB Packet Storm
218905 5 警告 Electric Sheep Fencing - pfSense の pkg_edit.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-4689 2014-07-4 10:35 2014-06-23 Show GitHub Exploit DB Packet Storm
218906 6.5 警告 Electric Sheep Fencing - pfSense における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2014-4688 2014-07-4 10:34 2014-06-23 Show GitHub Exploit DB Packet Storm
218907 4.3 警告 Electric Sheep Fencing - pfSense におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4687 2014-07-4 10:32 2014-06-23 Show GitHub Exploit DB Packet Storm
218908 4.3 警告 Pro Quoter plugin project - WordPress 用 Pro Quoter プラグインの pq_dialog.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4545 2014-07-4 09:37 2014-04-25 Show GitHub Exploit DB Packet Storm
218909 9.3 危険 Trimble - Timbre SketchUp で使用される paintlib におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-7388 2014-07-3 17:56 2013-05-21 Show GitHub Exploit DB Packet Storm
218910 9.3 危険 Trimble - Timbre SketchUp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3664 2014-07-3 17:55 2013-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296861 - simple_invoices simple_invoices Multiple cross-site scripting (XSS) vulnerabilities in SimpleInvoices before stable-2012-1-CIS3000 allow remote attackers to inject arbitrary web script or HTML via (1) the having parameter in a mana… CWE-79
Cross-site Scripting 		CVE-2012-4932 2024-11-21 10:43 2012-12-28 Show GitHub Exploit DB Packet Storm
296862 - trustwave
opensuse
fedoraproject 		modsecurity
opensuse
fedora 		The mod_security2 module before 2.7.0 for the Apache HTTP Server allows remote attackers to bypass rules, and deliver arbitrary POST data to a PHP application, via a multipart request in which an inv… NVD-CWE-noinfo
CVE-2012-4528 2024-11-21 10:43 2012-12-28 Show GitHub Exploit DB Packet Storm
296863 - emc data_protection_advisor Directory traversal vulnerability in the Web UI in EMC Data Protection Advisor (DPA) 5.6 through SP1, 5.7 through SP1, and 5.8 through SP4 allows remote attackers to read arbitrary files via unspecif… CWE-22
Path Traversal 		CVE-2012-4616 2024-11-21 10:43 2012-12-27 Show GitHub Exploit DB Packet Storm
296864 - ibm rational_automation_framework IBM Rational Automation Framework (RAF) 3.x through 3.0.0.5 allows remote attackers to bypass intended Env Gen Wizard (aka Environment Generation Wizard) access restrictions by visiting context roots… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4816 2024-11-21 10:43 2012-12-27 Show GitHub Exploit DB Packet Storm
296865 - siemens ros
rox_i_os
rox_ii_os
ruggedmax_os 		Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH commun… CWE-200
Information Exposure 		CVE-2012-4698 2024-11-21 10:43 2012-12-24 Show GitHub Exploit DB Packet Storm
296866 - ibm tivoli_storage_manager_for_space_management Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management (aka TSM HSM) before 6.2.5.0 and 6.3.x before 6.3.1.0 allows local users to read or modify file system objects via unknown… NVD-CWE-noinfo
CVE-2012-4859 2024-11-21 10:43 2012-12-21 Show GitHub Exploit DB Packet Storm
296867 - linux linux_kernel The tcp_illinois_info function in net/ipv4/tcp_illinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcp_congestion_control illinois setting is enabled, allows local users to cause a denial… CWE-189
Numeric Errors 		CVE-2012-4565 2024-11-21 10:43 2012-12-21 Show GitHub Exploit DB Packet Storm
296868 - linux linux_kernel Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as unini… CWE-362
Race Condition 		CVE-2012-4508 2024-11-21 10:43 2012-12-21 Show GitHub Exploit DB Packet Storm
296869 - ibm power_5_system_firmware
power_5 		The Service Processor in the IBM Power 5 91##-### and 940#-### before SF240_418_382 does not ensure that firewall code is executed, which allows remote attackers to execute arbitrary code via unspeci… CWE-255
Credentials Management 		CVE-2012-4856 2024-11-21 10:43 2012-12-20 Show GitHub Exploit DB Packet Storm
296870 - ibm rational_clearquest The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element. NVD-CWE-noinfo
CVE-2012-4839 2024-11-21 10:43 2012-12-20 Show GitHub Exploit DB Packet Storm