Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218941	3.5	注意	OTRS プロジェクト	-	Open Ticket Request System におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2553	2014-04-4 12:03	2014-04-1	Show	GitHub Exploit DB Packet Storm

218942	6.8	警告	HitMyServer	-	WordPress 用 HMS Testimonials プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-4240	2014-04-4 11:19	2013-08-8	Show	GitHub Exploit DB Packet Storm

218943	3.5	注意	IBM	-	IBM WebSphere Portal の IBM Connections 統合におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0901	2014-04-3 18:29	2014-03-31	Show	GitHub Exploit DB Packet Storm

218944	4.3	警告	IBM	-	IBM WebSphere Portal の WCM UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0828	2014-04-3 18:29	2014-03-31	Show	GitHub Exploit DB Packet Storm

218945	4.3	警告	シスコシステムズ	-	Cisco Security Manager の Web フレームワークにおける CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2014-2138	2014-04-3 18:22	2014-04-1	Show	GitHub Exploit DB Packet Storm

218946	4.3	警告	シスコシステムズ	-	Cisco Web セキュリティアプライアンスの Web フレームワークにおける CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2014-2137	2014-04-3 18:18	2014-04-1	Show	GitHub Exploit DB Packet Storm

218947	4.3	警告	シスコシステムズ	-	Cisco Unity Connection の Web Inbox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2125	2014-04-3 18:17	2014-04-1	Show	GitHub Exploit DB Packet Storm

218948	5	警告	Posh portal project	-	POSH の portal/scr_authentif.php の Remember Me 機能における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-2212	2014-04-3 18:14	2014-02-20	Show	GitHub Exploit DB Packet Storm

218949	7.5	危険	Horde	-	Horde Application Framework の Util ライブラリにおけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-1691	2014-04-3 17:00	2014-01-28	Show	GitHub Exploit DB Packet Storm

218950	7.5	危険	Vtiger	-	Vtiger CRM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3213	2014-04-3 16:41	2013-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294281	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3702	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294282	-	apple	itunes iphone_os	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3701	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294283	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3700	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294284	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3699	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294285	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3692	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294286	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3688	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294287	-	apple	itunes iphone_os	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3687	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294288	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3685	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294289	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3684	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm

294290	-	apple	itunes	WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe…	NVD-CWE-noinfo	CVE-2012-3677	2024-11-21 10:41	2012-09-13	Show	GitHub Exploit DB Packet Storm