Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219131	5	警告	Zarafa	-	Zarafa の provider/libserver/ECSession.cpp の ValidateUserLogon 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0079	2014-05-1 15:16	2014-02-14	Show	GitHub Exploit DB Packet Storm

219132	5	警告	Zarafa	-	Zarafa の provider/libserver/ECSession.cpp の ValidateUserLogon 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0037	2014-05-1 15:01	2014-01-30	Show	GitHub Exploit DB Packet Storm

219133	2.1	注意	dkorunic	-	PAM S/Key モジュール用の特定の Gentoo パッチにおける重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4285	2014-05-1 14:51	2013-06-12	Show	GitHub Exploit DB Packet Storm

219134	4.4	警告	zlib.org	-	pigz におけるアクセス権限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0296	2014-05-1 14:17	2013-02-15	Show	GitHub Exploit DB Packet Storm

219135	4.4	警告	Litech Systems Design	-	router advertisement daemon における radvd デーモンを root として実行される脆弱性	CWE-DesignError	CVE-2011-3603	2014-05-1 13:54	2011-10-6	Show	GitHub Exploit DB Packet Storm

219136	6.4	警告	Litech Systems Design	-	router advertisement daemon の device-linux.c におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3602	2014-05-1 10:00	2011-10-4	Show	GitHub Exploit DB Packet Storm

219137	6.4	警告	OpenJPEG project	-	OpenJPEG におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-6887	2014-04-30 19:20	2013-12-4	Show	GitHub Exploit DB Packet Storm

219138	5	警告	OpenJPEG project	-	OpenJPEG における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-6053	2014-04-30 19:20	2013-12-2	Show	GitHub Exploit DB Packet Storm

219139	10	危険	Fredrik Lundh Python Software Foundation	-	Python Image Library および Pillow における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-3007	2014-04-30 18:51	2014-01-29	Show	GitHub Exploit DB Packet Storm

219140	10	危険	Acunetix	-	Acunetix Web Vulnerability Scanner におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-2994	2014-04-30 18:50	2014-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293971	-	snitz_communications	snitz_forums_2000	SQL injection vulnerability in forum.asp in Snitz Forums 2000 allows remote attackers to execute arbitrary SQL commands via the TOPIC_ID parameter.	CWE-89 SQL Injection	CVE-2012-5313	2024-11-21 10:44	2012-10-9	Show	GitHub Exploit DB Packet Storm

293972	-	tribiq	tribiq_cms	SQL injection vulnerability in Tribiq CMS allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.	CWE-89 SQL Injection	CVE-2012-5312	2024-11-21 10:44	2012-10-9	Show	GitHub Exploit DB Packet Storm

293973	-	getshopped	wp_e-commerce	SQL injection vulnerability in the WP e-Commerce plugin before 3.8.7.6 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2012-5310	2024-11-21 10:44	2012-10-9	Show	GitHub Exploit DB Packet Storm

293974	-	ibm	lotus_notes_traveler	servlet/traveler in IBM Lotus Notes Traveler through 8.5.3.3 Interim Fix 1 does not properly restrict invalid authentication attempts, which makes it easier for remote attackers to obtain access via …	CWE-287 Improper Authentication	CVE-2012-5309	2024-11-21 10:44	2012-10-8	Show	GitHub Exploit DB Packet Storm

293975	-	ibm	lotus_notes_traveler	Cross-site request forgery (CSRF) vulnerability in servlet/traveler in IBM Lotus Notes Traveler through 8.5.3.3 Interim Fix 1 allows remote attackers to hijack the authentication of arbitrary users f…	CWE-352 Origin Validation Error	CVE-2012-5308	2024-11-21 10:44	2012-10-8	Show	GitHub Exploit DB Packet Storm

293976	-	ibm	lotus_notes_traveler	Cross-site scripting (XSS) vulnerability in servlet/traveler in IBM Lotus Notes Traveler before 8.5.3.3 Interim Fix 1, when Firefox is used, allows remote attackers to inject arbitrary web script or …	CWE-79 Cross-site Scripting	CVE-2012-5307	2024-11-21 10:44	2012-10-8	Show	GitHub Exploit DB Packet Storm

293977	-	dlink	dcs-5605_ptz_ip_network_camera camera_stream_client_activex_control	Stack-based buffer overflow in the SelectDirectory method in DcsCliCtrl.dll in Camera Stream Client ActiveX Control, as used in D-Link DCS-5605 PTZ IP Network Camera, allows remote attackers to cause…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5306	2024-11-21 10:44	2012-10-7	Show	GitHub Exploit DB Packet Storm

293978	-	directadmin	directadmin	Cross-site scripting (XSS) vulnerability in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allows remote attackers to inject arbitrary web script or HTML via the domain parameter.	CWE-79 Cross-site Scripting	CVE-2012-5305	2024-11-21 10:44	2012-10-7	Show	GitHub Exploit DB Packet Storm

293979	-	yuriy_v_semenikhin	yvs_image_gallery	Static code injection vulnerability in administration/install.php in YVS Image Gallery allows remote attackers to inject arbitrary PHP code into functions/db_connect.php via unspecified vectors. NOT…	CWE-94 Code Injection	CVE-2012-5304	2024-11-21 10:44	2012-10-7	Show	GitHub Exploit DB Packet Storm

293980	-	monkey-project	monkey	Monkey HTTP Daemon 0.9.3 might allow local users to overwrite arbitrary files via a symlink attack on a PID file, as demonstrated by a pathname different from the default /var/run/monkey.pid pathname.	CWE-59 Link Following	CVE-2012-5303	2024-11-21 10:44	2012-10-6	Show	GitHub Exploit DB Packet Storm