Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218921	7.5	危険	FreePBX	-	FreePBX の admin/libraries/view.functions.php における任意の PHP コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1903	2014-02-20 15:57	2014-02-6	Show	GitHub Exploit DB Packet Storm

218922	7.5	危険	The PHP Group	-	PHP の ext/gd/gd.c の gdImageCrop 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-7327	2014-02-20 15:53	2013-12-28	Show	GitHub Exploit DB Packet Storm

218923	7.5	危険	The PHP Group	-	PHP の ext/gd/gd.c の gdImageCrop 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2013-7226	2014-02-20 15:52	2013-12-26	Show	GitHub Exploit DB Packet Storm

218924	3.5	注意	IBM	-	IBM Security Access Manager for Enterprise Single Sign-On の IMS サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6745	2014-02-20 15:15	2013-12-20	Show	GitHub Exploit DB Packet Storm

218925	5	警告	IBM	-	IBM WebSphere Portal における重要な Java Content Repository 情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6735	2014-02-20 15:11	2013-12-20	Show	GitHub Exploit DB Packet Storm

218926	4.3	警告	レッドハット	-	Red Hat sos パッケージの sosreport ユーティリティにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-4083	2014-02-20 14:43	2011-12-6	Show	GitHub Exploit DB Packet Storm

218927	4.3	警告	Mozilla Foundation	-	Mozilla Thunderbird にメッセージ内の HTML 要素を適切にブロックしない脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6674	2014-02-20 14:03	2014-01-27	Show	GitHub Exploit DB Packet Storm

218928	4.3	警告	phpMyFAQ	-	phpMyFAQ におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0814	2014-02-20 13:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

218929	2.6	注意	phpMyFAQ	-	phpMyFAQ におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-0813	2014-02-20 13:57	2014-02-7	Show	GitHub Exploit DB Packet Storm

218930	4.3	警告	デル	-	DELL SonicWALL GMS/Analyzer/UMA にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0332	2014-02-20 13:55	2014-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295281	-	cisco	unified_communications_manager	The voice-sipstack component in Cisco Unified Communications Manager (CUCM) 8.5 allows remote attackers to cause a denial of service (core dump) via vectors involving SIP messages that arrive after a…	NVD-CWE-noinfo	CVE-2012-0376	2024-11-21 10:34	2012-05-4	Show	GitHub Exploit DB Packet Storm

295282	-	oracle	sun_products_suite	Unspecified vulnerability in the Oracle Grid Engine component in Oracle Sun Products Suite 6.1 and 6.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unk…	NVD-CWE-noinfo	CVE-2012-0208	2024-11-21 10:34	2012-05-4	Show	GitHub Exploit DB Packet Storm

295283	-	cisco	ios	The extended ACL functionality in Cisco IOS 12.2(58)SE2 and 15.0(1)SE discards all lines that end with a log or time keyword, which allows remote attackers to bypass intended access restrictions in o…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0362	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295284	-	cisco	ip_communicator	The sccp-protocol component in Cisco IP Communicator (CIPC) 7.0 through 8.6 does not limit the rate of SCCP messages to Cisco Unified Communications Manager (CUCM), which allows remote attackers to c…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0361	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295285	-	cisco	ios	Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish TELNET connections from arbitrary …	CWE-20 Improper Input Validation	CVE-2012-0339	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295286	-	cisco	ios	Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish SSH connections from arbitrary sou…	CWE-20 Improper Input Validation	CVE-2012-0338	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295287	-	cisco	unified_meetingplace	SQL injection vulnerability in the web component in Cisco Unified MeetingPlace 7.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtx08939.	CWE-89 SQL Injection	CVE-2012-0337	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295288	-	cisco	adaptive_security_appliance_software 5500_series_adaptive_security_appliance	Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 through 8.4 do not properly perform proxy authentication during attempts to cut through a firewall, which allows remote …	CWE-287 Improper Authentication	CVE-2012-0335	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295289	-	cisco	small_business_ip_phone_firmware small_business_ip_phone	Cisco Small Business IP phones with SPA 500 series firmware 7.4.9 and earlier do not require authentication for Push XML requests, which allows remote attackers to make telephone calls via an XML doc…	CWE-287 Improper Authentication	CVE-2012-0333	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm

295290	-	quest	toad_for_data_analysts	Quest Toad for Data Analysts 3.0.1 uses weak permissions (Everyone: Full Control) for the %COMMONPROGRAMFILES%\Quest Shared directory, which allows local users to gain privileges via a Trojan horse f…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0279	2024-11-21 10:34	2012-05-2	Show	GitHub Exploit DB Packet Storm