Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219331 4.3 警告 PrestaShop - PrestaShop の Socolissimo モジュールの redirect.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6641 2014-04-9 10:31 2012-03-26 Show GitHub Exploit DB Packet Storm
219332 5 警告 Rock Lobster - Rock Lobster Contact Form 7 における CAPTCHA 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2265 2014-04-8 17:49 2014-02-26 Show GitHub Exploit DB Packet Storm
219333 5 警告 アップル - Apple Safari などで使用される WebKit におけるサンドボックス保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1297 2014-04-8 17:33 2014-04-1 Show GitHub Exploit DB Packet Storm
219334 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の vmtypedarrayobject.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1514 2014-04-8 17:09 2014-03-18 Show GitHub Exploit DB Packet Storm
219335 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の TypedArrayObject.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1513 2014-04-8 17:08 2014-03-18 Show GitHub Exploit DB Packet Storm
219336 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンの TypeObject クラスにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1512 2014-04-8 17:07 2014-03-18 Show GitHub Exploit DB Packet Storm
219337 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品におけるポップアップブロッカーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1511 2014-04-8 17:06 2014-03-18 Show GitHub Exploit DB Packet Storm
219338 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の Web IDL の実装におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1510 2014-04-8 17:05 2014-03-18 Show GitHub Exploit DB Packet Storm
219339 7.6 危険 Mozilla Foundation - 複数の Mozilla 製品で使用される Cairo の _cairo_truetype_index_to_ucs4 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-1509 2014-04-8 17:04 2014-03-18 Show GitHub Exploit DB Packet Storm
219340 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品の libxul.so!gfxContext::Polygon 関数におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-1508 2014-04-8 17:03 2014-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294351 - cisco unified_computing_system The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers, and read keyboard and mouse events, b… CWE-20
 Improper Input Validation  		CVE-2012-4072 2024-11-21 10:42 2013-09-21 Show GitHub Exploit DB Packet Storm
294352 - eucalyptus eucalyptus Walrus in Eucalyptus before 3.2.2 allows remote attackers to cause a denial of service (memory, thread, and CPU consumption) via a crafted XML message containing a DTD, as demonstrated by a bucket-lo… CWE-399
 Resource Management Errors 		CVE-2012-4067 2024-11-21 10:42 2013-09-17 Show GitHub Exploit DB Packet Storm
294353 - ruby-lang ruby The safe-level feature in Ruby 1.8.7 allows context-dependent attackers to modify strings via the NameError#to_s method when operating on Ruby objects. NOTE: this issue is due to an incomplete fix f… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4481 2024-11-21 10:42 2013-05-2 Show GitHub Exploit DB Packet Storm
294354 - ruby-lang ruby Ruby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4466 2024-11-21 10:42 2013-04-26 Show GitHub Exploit DB Packet Storm
294355 - ruby-lang ruby Ruby 1.9.3 before patchlevel 286 and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the (1) exc_to_s or (2) name_err_… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4464 2024-11-21 10:42 2013-04-26 Show GitHub Exploit DB Packet Storm
294356 - oracle fusion_middleware Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 11.1.1.6.0 allows remote authenticated users to affect confidentiality via unknown vectors related to C… NVD-CWE-noinfo
CVE-2012-4303 2024-11-21 10:42 2013-04-17 Show GitHub Exploit DB Packet Storm
294357 - condor_project
redhat 		condor
enterprise_mrg 		aviary/jobcontrol.py in Condor, as used in Red Hat Enterprise MRG 2.3, when removing a job, allows remote attackers to cause a denial of service (condor_schedd restart) via square brackets in the cpr… CWE-20
 Improper Input Validation  		CVE-2012-4462 2024-11-21 10:42 2013-03-14 Show GitHub Exploit DB Packet Storm
294358 - apache qpid The serializing/deserializing functions in the qpid::framing::Buffer class in Apache Qpid 0.20 and earlier allow remote attackers to cause a denial of service (assertion failure and daemon exit) via … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4460 2024-11-21 10:42 2013-03-14 Show GitHub Exploit DB Packet Storm
294359 - apache qpid Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (crash) via a crafted message, which trigge… CWE-189
Numeric Errors 		CVE-2012-4459 2024-11-21 10:42 2013-03-14 Show GitHub Exploit DB Packet Storm
294360 - apache qpid The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the clien… CWE-189
Numeric Errors 		CVE-2012-4458 2024-11-21 10:42 2013-03-14 Show GitHub Exploit DB Packet Storm