Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219301 7.5 危険 Google - Windows 上で稼働する Google Chrome の sandbox/win/src/named_pipe_dispatcher.cc におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-6652 2014-02-25 17:24 2013-11-5 Show GitHub Exploit DB Packet Storm
219302 10 危険 Belkin International - Belkin WeMo Home Automation ファームウェアにおけるファームウェアアップデートを偽装される脆弱性 CWE-310
CWE-Other
CVE-2013-6952 2014-02-25 15:53 2013-12-4 Show GitHub Exploit DB Packet Storm
219303 7.1 危険 Belkin International - Belkin WeMo Home Automation ファームウェアにおける SSL サーバになりすまされる脆弱性 CWE-310
CWE-Other
CVE-2013-6951 2014-02-25 15:53 2013-12-4 Show GitHub Exploit DB Packet Storm
219304 7.8 危険 Belkin International - Belkin WeMo Home Automation ファームウェアにおける重要な情報を取得される脆弱性 CWE-310
CWE-Other
CVE-2013-6950 2014-02-25 15:52 2013-12-4 Show GitHub Exploit DB Packet Storm
219305 9.3 危険 Belkin International - Belkin WeMo Home Automation ファームウェアにおけるアクセス制限を回避される脆弱性 CWE-264
CWE-Other
CVE-2013-6949 2014-02-25 15:52 2013-12-4 Show GitHub Exploit DB Packet Storm
219306 7.8 危険 Belkin International - Belkin WeMo Home Automation ファームウェアの peerAddresses API における XML インジェクション攻撃を実行される脆弱性 CWE-94
CWE-Other
CVE-2013-6948 2014-02-25 15:51 2013-12-4 Show GitHub Exploit DB Packet Storm
219307 7.8 危険 シーメンス - Siemens RuggedCom ROS の SNMP の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1966 2014-02-25 15:33 2014-02-18 Show GitHub Exploit DB Packet Storm
219308 9.3 危険 ICONICS, Inc. - ICONICS GENESIS32 の GenLaunch.htm の ActiveX コントロールにおける任意のプログラムを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0758 2014-02-25 15:25 2014-02-20 Show GitHub Exploit DB Packet Storm
219309 4.3 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアの Phone Proxy コンポーネントにおける sec_db 認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-0739 2014-02-25 15:20 2014-02-21 Show GitHub Exploit DB Packet Storm
219310 4.3 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアの Phone Proxy コンポーネントにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-0738 2014-02-25 15:20 2014-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295011 - moodle moodle Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass question:use* capability requirements and add arbitrary questions to a quiz via the questions feature. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2355 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
295012 - moodle moodle Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/site:readallmessages capability requirement and read arbitrary messages by using the "Recent co… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2354 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
295013 - moodle moodle Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled u… CWE-200
Information Exposure 		CVE-2012-2353 2024-11-21 10:38 2012-07-21 Show GitHub Exploit DB Packet Storm
295014 - florian_weber spaces The Spaces module 6.x-3.x before 6.x-3.4 for Drupal does not enforce permissions on non-object pages, which allows remote attackers to obtain sensitive information and possibly have other impacts via… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2303 2024-11-21 10:38 2012-07-19 Show GitHub Exploit DB Packet Storm
295015 - rubygems mail_gem The Mail gem before 2.4.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery. CWE-20
 Improper Input Validation  		CVE-2012-2140 2024-11-21 10:38 2012-07-19 Show GitHub Exploit DB Packet Storm
295016 - rubygems mail_gem Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. (dot dot) in the… CWE-22
Path Traversal 		CVE-2012-2139 2024-11-21 10:38 2012-07-19 Show GitHub Exploit DB Packet Storm
295017 - mozilla firefox
thunderbird
thunderbird_esr
seamonkey 		Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not properly implement the JavaScript … NVD-CWE-Other
CVE-2012-1967 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm
295018 - mozilla firefox Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cro… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1966 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm
295019 - mozilla firefox Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not properly establish the security context of a feed: URL, which allows remote attackers to bypass unspecified cross-site scrip… CWE-79
Cross-site Scripting 		CVE-2012-1965 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm
295020 - mozilla firefox
thunderbird
thunderbird_esr
seamonkey 		The certificate-warning functionality in browser/components/certerror/content/aboutCertError.xhtml in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 12.0, T… NVD-CWE-noinfo
CVE-2012-1964 2024-11-21 10:38 2012-07-18 Show GitHub Exploit DB Packet Storm