Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219211 10 危険 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるアクセス制限を回避される脆弱性 CWE-362
競合状態 		CVE-2014-0703 2014-03-7 16:05 2014-03-5 Show GitHub Exploit DB Packet Storm
219212 7.8 危険 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-0701 2014-03-7 16:04 2014-03-5 Show GitHub Exploit DB Packet Storm
219213 10 危険 シスコシステムズ - 複数の Cisco Wireless-N VPN 製品のファームウェアにおける管理アクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-0683 2014-03-7 15:56 2014-03-5 Show GitHub Exploit DB Packet Storm
219214 7.5 危険 ヒューレット・パッカード - HP Security Management System における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6201 2014-03-7 15:47 2013-10-21 Show GitHub Exploit DB Packet Storm
219215 5 警告 Novell - Novell ZENworks Configuration Management の PreBoot サービスにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3706 2014-03-7 15:45 2013-05-30 Show GitHub Exploit DB Packet Storm
219216 6.4 警告 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1907 2014-03-7 15:21 2014-02-27 Show GitHub Exploit DB Packet Storm
219217 4.3 警告 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1906 2014-03-7 15:20 2014-02-27 Show GitHub Exploit DB Packet Storm
219218 6.5 警告 CMS Made Simple - CMS Made Simple の News モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2245 2014-03-7 15:19 2014-03-1 Show GitHub Exploit DB Packet Storm
219219 1.9 注意 IBM - IBM Sametime の Connect クライアントにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-0890 2014-03-7 15:12 2014-02-26 Show GitHub Exploit DB Packet Storm
219220 4 警告 IBM - IBM Tealeaf CX の Passive Capture Application の Web コンソールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-6720 2014-03-7 15:12 2013-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293431 - samsung net-i_viewer Stack-based buffer overflow in the RequestScreenOptimization function in the XProcessControl.ocx ActiveX control in msls31.dll in Samsung NET-i viewer 1.37 allows remote attackers to execute arbitrar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4250 2024-11-21 10:42 2012-08-14 Show GitHub Exploit DB Packet Storm
293432 - amazon kindle_touch The Amazon Lab126 com.lab126.system sendEvent implementation on the Kindle Touch before 5.1.2 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, as… CWE-94
Code Injection 		CVE-2012-4249 2024-11-21 10:42 2012-08-13 Show GitHub Exploit DB Packet Storm
293433 - amazon kindle_touch The Amazon Kindle Touch before 5.1.2 does not properly restrict access to the libkindleplugin.so NPAPI plugin interface, which might allow remote attackers to have an unspecified impact via vectors i… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4248 2024-11-21 10:42 2012-08-13 Show GitHub Exploit DB Packet Storm
293434 - dir2web dir2web SQL injection vulnerability in system/src/dispatcher.php in Dir2web 3.0 allows remote attackers to execute arbitrary SQL commands via the oid parameter in a homepage action to index.php. CWE-89
SQL Injection 		CVE-2012-4070 2024-11-21 10:42 2012-08-13 Show GitHub Exploit DB Packet Storm
293435 - dir2web dir2web Dir2web 3.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database via a direct request for system/db/website.db. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4069 2024-11-21 10:42 2012-08-13 Show GitHub Exploit DB Packet Storm
293436 - phplist phplist Multiple cross-site scripting (XSS) vulnerabilities in lists/admin/index.php in phpList before 2.10.19 allow remote attackers to inject arbitrary web script or HTML via the (1) remote_user, (2) remot… CWE-79
Cross-site Scripting 		CVE-2012-4247 2024-11-21 10:42 2012-08-12 Show GitHub Exploit DB Packet Storm
293437 - phplist phplist Multiple cross-site scripting (XSS) vulnerabilities in lists/admin/index.php in phpList before 2.10.19 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter; or the… CWE-79
Cross-site Scripting 		CVE-2012-4246 2024-11-21 10:42 2012-08-12 Show GitHub Exploit DB Packet Storm
293438 - pbboard pbboard The new_password page in PBBoard 2.1.4 allows remote attackers to change the password of arbitrary user accounts via the member_id and new_password parameters to index.php. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4035 2024-11-21 10:42 2012-08-12 Show GitHub Exploit DB Packet Storm
293439 - pbboard pbboard Multiple SQL injection vulnerabilities in PBBoard 2.1.4 allow remote attackers to execute arbitrary SQL commands via the (1) username parameter to the send page, (2) email parameter to the forget pag… CWE-89
SQL Injection 		CVE-2012-4034 2024-11-21 10:42 2012-08-12 Show GitHub Exploit DB Packet Storm
293440 - rsgallery2 com_rsgallery2 The RSGallery2 (com_rsgallery2) component before 3.2.0 for Joomla! 2.5.x does not place index.html files in image directories, which allows remote attackers to list image filenames via a request for … CWE-200
Information Exposure 		CVE-2012-4235 2024-11-21 10:42 2012-08-10 Show GitHub Exploit DB Packet Storm