Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218911	4.3	警告	シスコシステムズ	-	Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0735	2014-02-21 11:14	2014-02-19	Show	GitHub Exploit DB Packet Storm

218912	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の Certificate Authority Proxy Function の実装における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0734	2014-02-21 11:13	2014-02-19	Show	GitHub Exploit DB Packet Storm

218913	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager の Real Time Monitoring Tool Web アプリケーションにおけるアプリケーションファイルを読まれる脆弱性	CWE-287 不適切な認証	CVE-2014-0732	2014-02-21 11:12	2014-02-19	Show	GitHub Exploit DB Packet Storm

218914	2.1	注意	Linux	-	Linux Kernel の net/key/af_key.c におけるカーネルヒープメモリから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-2234	2014-02-20 18:22	2013-06-26	Show	GitHub Exploit DB Packet Storm

218915	2.1	注意	Linux レッドハット	-	Linux Kernel の drivers/cdrom/cdrom.c 内の mmc_ioctl_cdrom_read_data 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-2164	2014-02-20 18:17	2013-06-6	Show	GitHub Exploit DB Packet Storm

218916	4.4	警告	Linux	-	Linux Kernel の drivers/net/ethernet/broadcom/tg3.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1929	2014-02-20 18:07	2013-03-27	Show	GitHub Exploit DB Packet Storm

218917	4.7	警告	Linux レッドハット	-	Linux Kernel の fs/compat_ioctl.c における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-1928	2014-02-20 18:03	2013-04-8	Show	GitHub Exploit DB Packet Storm

218918	5	警告	GNU Project	-	GNU C Library におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1914	2014-02-20 17:53	2013-04-3	Show	GitHub Exploit DB Packet Storm

218919	7.5	危険	IBM Apache Software Foundation	-	Apache OpenJPA の BrokerFactory 機能における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1768	2014-02-20 17:49	2013-03-28	Show	GitHub Exploit DB Packet Storm

218920	5.8	警告	OpenStack	-	Swift 用 OpenStack Python クライアントライブラリにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2013-6396	2014-02-20 16:14	2013-07-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293341	-	bmc	identity_management_suite	Cross-site request forgery (CSRF) vulnerability in password-manager/changePasswords.do in BMC Identity Management Suite 7.5.00.103 allows remote attackers to hijack the authentication of administrato…	CWE-352 Origin Validation Error	CVE-2012-2959	2024-11-21 10:40	2012-06-12	Show	GitHub Exploit DB Packet Storm

293342	-	bloxx	web_filtering	Cross-site request forgery (CSRF) vulnerability in Microdasys before 3.5.1-B708, as used in Bloxx Web Filtering before 5.0.14 and other products, allows remote attackers to hijack the authentication …	CWE-352 Origin Validation Error	CVE-2012-3343	2024-11-21 10:40	2012-06-9	Show	GitHub Exploit DB Packet Storm

293343	-	siemens	wincc	Open redirect vulnerability in an unspecified web application in Siemens WinCC 7.0 SP3 before Update 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks vi…	CWE-20 Improper Input Validation	CVE-2012-3003	2024-11-21 10:40	2012-06-9	Show	GitHub Exploit DB Packet Storm

293344	-	globus	globus_toolkit	The GridFTP in Globus Toolkit (GT) before 5.2.2, when certain autoconf macros are defined, does not properly check the return value from the getpwnam_r function, which might allow remote attackers to…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3292	2024-11-21 10:40	2012-06-8	Show	GitHub Exploit DB Packet Storm

293345	-	infradead	openconnect	Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3291	2024-11-21 10:40	2012-06-8	Show	GitHub Exploit DB Packet Storm

293346	-	google acer samsung	chrome_os ac700_chromebook cr-48_chromebook chromebox_3 series_5_550_chromebook series_5_chromebook	Multiple unspecified vulnerabilities in Google Chrome before 20.0.1132.22 on the Acer AC700; Samsung Series 5, 5 550, and Chromebox 3; and Cr-48 Chromebook platforms have unknown impact and attack ve…	NVD-CWE-noinfo	CVE-2012-3290	2024-11-21 10:40	2012-06-8	Show	GitHub Exploit DB Packet Storm

293347	-	mozilla	seamonkey firefox thunderbird thunderbird_esr	The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMon…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3105	2024-11-21 10:40	2012-06-6	Show	GitHub Exploit DB Packet Storm

293348	-	asterisk sangoma	certified_asterisk open_source asterisk	chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authent…	CWE-399 Resource Management Errors	CVE-2012-2948	2024-11-21 10:40	2012-06-3	Show	GitHub Exploit DB Packet Storm

293349	-	debian digium	debian_linux asterisk certified_asterisk	chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting…	CWE-284 Improper Access Control	CVE-2012-2947	2024-11-21 10:40	2012-06-3	Show	GitHub Exploit DB Packet Storm

293350	-	jaow	jaow	SQL injection vulnerability in add_ons.php in Jaow 2.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the add_ons parameter.	CWE-89 SQL Injection	CVE-2012-2952	2024-11-21 10:40	2012-05-30	Show	GitHub Exploit DB Packet Storm