Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219331	5	警告	レッドハット	-	FreeIPA のデフォルトの LDAP ACI におけるクロスレルムの Kerberos Trust 鍵を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0199	2014-06-2 14:05	2013-01-23	Show	GitHub Exploit DB Packet Storm

219332	6.5	警告	Sharetronix	-	Sharetronix における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3415	2014-06-2 11:48	2014-05-28	Show	GitHub Exploit DB Packet Storm

219333	6.8	警告	Sharetronix	-	Sharetronix におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-3414	2014-06-2 11:47	2014-05-28	Show	GitHub Exploit DB Packet Storm

219334	4.3	警告	SOSreport project	-	SOSreport における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0246	2014-06-2 11:33	2014-05-27	Show	GitHub Exploit DB Packet Storm

219335	6.8	警告	IBM	-	IBM Notes で使用される Autonomy KeyView IDOL の .mdb パーサにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6349	2014-05-30 18:19	2013-03-21	Show	GitHub Exploit DB Packet Storm

219336	7.5	危険	日本電気 IBM アップル Mozilla Foundation Google フェンリル株式会社レッドハット	-	libpng における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-3026	2014-05-30 18:11	2012-02-15	Show	GitHub Exploit DB Packet Storm

219337	7.8	危険	IBM	-	IBM Lotus Domino の IMAP サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2014-0822	2014-05-30 16:21	2014-02-5	Show	GitHub Exploit DB Packet Storm

219338	7.1	危険	IBM	-	IBM Lotus Protector for Mail Security の Admin Web UI における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-0887	2014-05-30 15:51	2014-03-24	Show	GitHub Exploit DB Packet Storm

219339	7.1	危険	IBM	-	IBM Lotus Protector for Mail Security の Admin Web UI におけるアクセス制限を回避される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-0886	2014-05-30 15:29	2014-03-24	Show	GitHub Exploit DB Packet Storm

219340	6.8	警告	IBM	-	IBM Lotus Protector for Mail Security の Admin Web UI におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-0885	2014-05-30 15:22	2014-03-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296411	-	mozilla canonical suse opensuse	firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 assign the system principal, rather than the sandbox principal, to XMLHttpRequest objects created in sandboxes, which a…	CWE-352 Origin Validation Error	CVE-2012-4205	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296412	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	The str_unescape function in the JavaScript engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a deni…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4204	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296413	-	mozilla	firefox	The New Tab page in Mozilla Firefox before 17.0 uses a privileged context for execution of JavaScript code by bookmarklets, which allows user-assisted remote attackers to run arbitrary programs by le…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4203	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296414	-	mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.1…	CWE-787 Out-of-bounds Write	CVE-2012-4202	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296415	-	mozilla suse opensuse redhat canonical debian	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	The evalInSandbox implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 uses an incor…	CWE-79 Cross-site Scripting	CVE-2012-4201	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296416	-	belkin	n300_wireless_router n450_wireless_router n150_wireless_router n900_wireless_router	Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the…	CWE-310 Cryptographic Issues	CVE-2012-4366	2024-11-21 10:42	2012-11-20	Show	GitHub Exploit DB Packet Storm

296417	-	redhat	libvirt	The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and segmentation fault) via an RPC call with (1) a…	NVD-CWE-Other	CVE-2012-4423	2024-11-21 10:42	2012-11-19	Show	GitHub Exploit DB Packet Storm

296418	-	libreoffice sun	libreoffice openoffice.org	LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org (OOo), allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted (1) odt file to vcllo.…	NVD-CWE-Other	CVE-2012-4233	2024-11-21 10:42	2012-11-19	Show	GitHub Exploit DB Packet Storm

296419	-	nvidia	unix_graphic_driver	NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows local users to write to arbitrary physical memory locations and gain privileges by modifying the VGA window using /dev/nvidia0.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4225	2024-11-21 10:42	2012-11-19	Show	GitHub Exploit DB Packet Storm

296420	-	gegl	gegl	Multiple integer overflows in operations/external/ppm-load.c in GEGL (Generic Graphics Library) 0.2.0 allow remote attackers to cause a denial of service (application crash) or possibly execute arbit…	CWE-189 Numeric Errors	CVE-2012-4433	2024-11-21 10:42	2012-11-19	Show	GitHub Exploit DB Packet Storm