Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219071	4.3	警告	SQL Buddy	-	SQL Buddy の browse.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4304	2014-06-20 11:24	2014-06-5	Show	GitHub Exploit DB Packet Storm

219072	2.1	注意	Drupac	-	Drupal 用 Touch テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4303	2014-06-20 11:08	2014-05-17	Show	GitHub Exploit DB Packet Storm

219073	4.3	警告	Eugene Pankov	-	Eugene Pankov Ajenti の routing.py 内の respond_error 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4301	2014-06-20 10:58	2014-06-8	Show	GitHub Exploit DB Packet Storm

219074	5	警告	Powerpc-utils project	-	powerpc-utils の snap における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2014-4040	2014-06-19 15:56	2014-06-17	Show	GitHub Exploit DB Packet Storm

219075	4.3	警告	Ulli Horlacher	-	Frams' Fast File EXchange におけるクロスサイトスクリプティングの脆弱性	CWE-Other その他	CVE-2014-3877	2014-06-19 13:54	2014-05-26	Show	GitHub Exploit DB Packet Storm

219076	4.3	警告	Ulli Horlacher	-	Frams' Fast File EXchange におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3876	2014-06-19 13:54	2014-05-26	Show	GitHub Exploit DB Packet Storm

219077	7.8	危険	Huawei	-	Huawei Campus シリーズスイッチのソフトウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-4190	2014-06-19 12:01	2014-06-4	Show	GitHub Exploit DB Packet Storm

219078	4.3	警告	ClipBucket	-	ClipBucket の signup.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4187	2014-06-19 11:49	2014-06-14	Show	GitHub Exploit DB Packet Storm

219079	5	警告	OpenAFS	-	OpenAFS におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-4044	2014-06-19 11:46	2014-06-12	Show	GitHub Exploit DB Packet Storm

219080	4.3	警告	HAM3D	-	HAM3D Shop Engine の rating/rating.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4302	2014-06-19 11:40	2014-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296761	-	siemens	automation_license_manager	Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory consumption) via crafted packets.	CWE-399 Resource Management Errors	CVE-2012-4691	2024-11-21 10:43	2012-12-18	Show	GitHub Exploit DB Packet Storm

296762	-	axway	securetransport	Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to (1) read, (2) delete, or (3) create files, or (4) list directories, via a…	CWE-22 Path Traversal	CVE-2012-4991	2024-11-21 10:43	2012-12-13	Show	GitHub Exploit DB Packet Storm

296763	-	layton_technology	helpbox	Layton Helpbox 4.4.0 allows remote attackers to discover cleartext credentials for the login page by sniffing the network.	CWE-310 Cryptographic Issues	CVE-2012-4977	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296764	-	layton_technology	helpbox	selectawasset.asp in Layton Helpbox 4.4.0 allows remote attackers to discover ODBC database credentials via an element=sys_asset_id request, which is not properly handled during construction of an er…	CWE-200 Information Exposure	CVE-2012-4976	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296765	-	layton_technology	helpbox	editrequestuser.asp in Layton Helpbox 4.4.0 allows remote authenticated users to change arbitrary support-ticket data via a modified sys_request_id parameter.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4975	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296766	-	laytontechnology	helpbox	Layton Helpbox 4.4.0 allows remote authenticated users to change the login context and gain privileges via a modified (1) loggedinenduser, (2) loggedinendusername, (3) loggedinuserusergroup, (4) logg…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4974	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296767	-	layton_technology	helpbox	Multiple cross-site scripting (XSS) vulnerabilities in Layton Helpbox 4.4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) sys_solution_id, (2) sys_requesttype_id, (3) sys_…	CWE-79 Cross-site Scripting	CVE-2012-4972	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296768	-	microsoft	exchange_server	Microsoft Exchange Server 2007 SP3 and 2010 SP1 and SP2 allows remote authenticated users to cause a denial of service (Information Store service hang) by subscribing to a crafted RSS feed, aka "RSS …	CWE-94 Code Injection	CVE-2012-4791	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296769	-	microsoft	internet_explorer	Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not proper…	CWE-399 Resource Management Errors	CVE-2012-4787	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm

296770	-	microsoft	windows_xp windows_server_2008 windows_7 windows_server_2003 windows_vista	The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 201…	CWE-94 Code Injection	CVE-2012-4786	2024-11-21 10:43	2012-12-12	Show	GitHub Exploit DB Packet Storm