Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219011 5 警告 IBM - IBM Sametime の Meeting Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3978 2014-02-17 10:56 2013-06-7 Show GitHub Exploit DB Packet Storm
219012 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Enterprise Mobility Application インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0729 2014-02-14 14:52 2014-02-13 Show GitHub Exploit DB Packet Storm
219013 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0728 2014-02-14 14:51 2014-02-12 Show GitHub Exploit DB Packet Storm
219014 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の CallManager Interactive Voice Response インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0727 2014-02-14 14:50 2014-02-12 Show GitHub Exploit DB Packet Storm
219015 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0726 2014-02-14 14:48 2014-02-12 Show GitHub Exploit DB Packet Storm
219016 5 警告 シスコシステムズ - Cisco Unified Communications Manager における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2014-0725 2014-02-14 14:47 2014-02-13 Show GitHub Exploit DB Packet Storm
219017 4 警告 シスコシステムズ - Cisco Unified Communications Manager のバルク管理インターフェースにおける認証を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0724 2014-02-14 14:46 2014-02-12 Show GitHub Exploit DB Packet Storm
219018 4.3 警告 シスコシステムズ - Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0723 2014-02-14 14:44 2014-02-12 Show GitHub Exploit DB Packet Storm
219019 5 警告 シスコシステムズ - Cisco Unified Communications Manager の log4jinit Web アプリケーションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2014-0722 2014-02-14 14:43 2014-02-12 Show GitHub Exploit DB Packet Storm
219020 6.4 警告 atmail pty ltd - Atmail オープンソースの Atmail WebMail Client における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1919 2014-02-14 14:18 2012-03-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292921 - digium asterisk_business_edition
asterisk
asteriske
certified_asterisk 		channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Asterisk Business Edition C.3.x before C.3.7.5, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Aste… CWE-399
 Resource Management Errors 		CVE-2012-3863 2024-11-21 10:41 2012-07-9 Show GitHub Exploit DB Packet Storm
292922 - irfanview irfanview_plugins Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS f… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3585 2024-11-21 10:41 2012-07-6 Show GitHub Exploit DB Packet Storm
292923 - invensys wonderware_application_server
intouch 		slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long Unic… CWE-399
 Resource Management Errors 		CVE-2012-3847 2024-11-21 10:41 2012-07-5 Show GitHub Exploit DB Packet Storm
292924 - atmoner php-pastebin Cross-site scripting (XSS) vulnerability in index.php in PHP-pastebin 2.1 allows remote attackers to inject arbitrary web script or HTML via the title parameter. CWE-79
Cross-site Scripting 		CVE-2012-3846 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
292925 - lan_messenger lan_messenger1.2.28 Buffer overflow in LAN Messenger 1.2.28 and earlier allows remote attackers to cause a denial of service (crash) via a long string in an initiation request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3845 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
292926 - vbulletin vbulletin Cross-site scripting (XSS) vulnerability in vBulletin 4.1.12 allows remote attackers to inject arbitrary web script or HTML via a long string in the subject parameter when creating a post. CWE-79
Cross-site Scripting 		CVE-2012-3844 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
292927 - e107 e107 Cross-site scripting (XSS) vulnerability in the registration page in e107, probably 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-3843 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
292928 - jbmc-software directadmin Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2012-3842 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
292929 - kmplayer kmplayer Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current w… NVD-CWE-Other
CVE-2012-3841 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
292930 - myclientbase myclientbase Multiple cross-site scripting (XSS) vulnerabilities in index.php/users/form/user_id in MyClientBase 0.12 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name or (2) la… CWE-79
Cross-site Scripting 		CVE-2012-3840 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm