Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219321	5	警告	VICIDIAL Group	-	VICIDIAL ダイヤラーにおけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-7382	2014-05-20 15:02	2013-10-23	Show	GitHub Exploit DB Packet Storm

219322	7.5	危険	OpenVAS	-	OpenVAS Manager における OMP 認証制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-6765	2014-05-20 14:52	2013-11-8	Show	GitHub Exploit DB Packet Storm

219323	5	警告	Spumko	-	Node.js 用 hapi のサーバフレームワークにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-3742	2014-05-20 14:43	2014-02-14	Show	GitHub Exploit DB Packet Storm

219324	4.3	警告	Django Software Foundation Canonical	-	Django の django.util.http.is_safe_url 関数におけるオープンリダイレクト攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-3730	2014-05-20 14:30	2014-05-14	Show	GitHub Exploit DB Packet Storm

219325	8.3	危険	横河電機株式会社	-	複数の YOKOGAWA 製品の拡張テスト機能パッケージにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0782	2014-05-20 14:12	2014-03-7	Show	GitHub Exploit DB Packet Storm

219326	4.3	警告	Codec Guide	-	K-Lite Codec Pack の Filters\LAV\avfilter-lav-4.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-3452	2014-05-20 14:12	2014-05-14	Show	GitHub Exploit DB Packet Storm

219327	4	警告	Mahara	-	Mahara における任意のフォルダを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4432	2014-05-20 14:00	2013-10-31	Show	GitHub Exploit DB Packet Storm

219328	5.5	警告	Mahara	-	Mahara における任意のブロックを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4431	2014-05-20 13:59	2013-10-3	Show	GitHub Exploit DB Packet Storm

219329	4.3	警告	Mahara	-	Mahara におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4430	2014-05-20 13:59	2013-10-3	Show	GitHub Exploit DB Packet Storm

219330	4	警告	Mahara	-	Mahara における任意のアーティファクトを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4429	2014-05-20 13:58	2013-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296321	-	cms-center	simple_web_content_management_system	Multiple SQL injection vulnerabilities in Simple Web Content Management System 1.1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) item_delete.php, (2) item_statu…	CWE-89 SQL Injection	CVE-2012-3791	2024-11-21 10:41	2012-06-22	Show	GitHub Exploit DB Packet Storm

296322	-	adiscon	loganalyzer	Cross-site scripting (XSS) vulnerability in index.php in Adiscon LogAnalyzer before 3.4.4 and 3.5.x before 3.5.5 allows remote attackers to inject arbitrary web script or HTML via the highlight param…	CWE-79 Cross-site Scripting	CVE-2012-3790	2024-11-21 10:41	2012-06-21	Show	GitHub Exploit DB Packet Storm

296323	-	wordpress	plugin_newsletter_plugin	Directory traversal vulnerability in preview.php in the Plugin Newsletter plugin 1.5 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the data parameter.	CWE-22 Path Traversal	CVE-2012-3588	2024-11-21 10:41	2012-06-20	Show	GitHub Exploit DB Packet Storm

296324	-	debian	advanced_package_tool	APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might allow remote attacker…	CWE-20 Improper Input Validation	CVE-2012-3587	2024-11-21 10:41	2012-06-20	Show	GitHub Exploit DB Packet Storm

296325	-	digium	asterisk	chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10.x before 10.5.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon cr…	NVD-CWE-Other	CVE-2012-3553	2024-11-21 10:41	2012-06-20	Show	GitHub Exploit DB Packet Storm

296326	-	wordpress	fcchat_widget	Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a f…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3578	2024-11-21 10:41	2012-06-17	Show	GitHub Exploit DB Packet Storm

296327	-	nmedia	member_conversation	Unrestricted file upload vulnerability in doupload.php in the Nmedia Member Conversation plugin before 1.4 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3577	2024-11-21 10:41	2012-06-17	Show	GitHub Exploit DB Packet Storm

296328	-	jquindlen	wpstorecart	Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3576	2024-11-21 10:41	2012-06-16	Show	GitHub Exploit DB Packet Storm

296329	-	rbx_gallery	rbx_gallery	Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3575	2024-11-21 10:41	2012-06-16	Show	GitHub Exploit DB Packet Storm

296330	-	tbelmans	mm_forms_community	Unrestricted file upload vulnerability in includes/doajaxfileupload.php in the MM Forms Community plugin 2.2.5 and 2.2.6 for WordPress allows remote attackers to execute arbitrary code by uploading a…	NVD-CWE-Other	CVE-2012-3574	2024-11-21 10:41	2012-06-16	Show	GitHub Exploit DB Packet Storm