Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219351	6	警告	TYPO3 Association	-	TYPO3 の Color Picker Wizard コンポーネントにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-3942	2014-06-5 12:20	2014-05-22	Show	GitHub Exploit DB Packet Storm

219352	5	警告	TYPO3 Association	-	TYPO3 における脆弱性	CWE-20 不適切な入力確認	CVE-2014-3941	2014-06-5 12:19	2014-05-22	Show	GitHub Exploit DB Packet Storm

219353	4	警告	TYPO3 Association	-	TYPO3 の Extbase Framework コンポーネントのクエリキャッシュ機能における任意のクエリを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-3946	2014-06-5 12:17	2014-05-22	Show	GitHub Exploit DB Packet Storm

219354	5	警告	libpam-pgsql	-	libpam-pgsql における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-0191	2014-06-5 11:52	2013-01-15	Show	GitHub Exploit DB Packet Storm

219355	7.5	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR SDK におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0520	2014-06-4 18:19	2014-05-13	Show	GitHub Exploit DB Packet Storm

219356	7.5	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR SDK におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0519	2014-06-4 18:19	2014-05-13	Show	GitHub Exploit DB Packet Storm

219357	7.5	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR SDK におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0518	2014-06-4 18:18	2014-05-13	Show	GitHub Exploit DB Packet Storm

219358	7.5	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR SDK におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0517	2014-06-4 18:17	2014-05-13	Show	GitHub Exploit DB Packet Storm

219359	7.5	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR SDK における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0516	2014-06-4 18:17	2014-05-13	Show	GitHub Exploit DB Packet Storm

219360	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0515	2014-06-4 18:16	2014-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296361	-	xen	xen	Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service (infinite loop and hang or crash) via invalid arguments…	CWE-399 Resource Management Errors	CVE-2012-4539	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

296362	-	xen	xen	Xen 3.4 through 4.2, and possibly earlier versions, does not properly synchronize the p2m and m2p tables when the set_p2m_entry function fails, which allows local HVM guest OS administrators to cause…	CWE-16 Configuration	CVE-2012-4537	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

296363	-	xen	xen	The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service (Xen crash) via a crafted pirq value that triggers an o…	NVD-CWE-noinfo	CVE-2012-4536	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

296364	-	xen	xen	Xen 3.4 through 4.2, and possibly earlier versions, allows local guest OS administrators to cause a denial of service (Xen infinite loop and physical CPU consumption) by setting a VCPU with an "inapp…	CWE-399 Resource Management Errors	CVE-2012-4535	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

296365	-	mcrypt	mcrypt	Stack-based buffer overflow in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name. NOTE: it …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4527	2024-11-21 10:43	2012-11-22	Show	GitHub Exploit DB Packet Storm

296366	-	uninett	radsecproxy	The DTLS support in radsecproxy before 1.6.2 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the ce…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4566	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

296367	-	google	web_toolkit	Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 Beta and release candidates before 2.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2012-4563	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

296368	-	uninett	radsecproxy	radsecproxy before 1.6.1 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, whi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4523	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

296369	-	cups-pk-helper_project	cups-pk-helper	cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4510	2024-11-21 10:43	2012-11-20	Show	GitHub Exploit DB Packet Storm

296370	-	matomo	matomo	Cross-site scripting (XSS) vulnerability in Piwik before 1.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-4541	2024-11-21 10:43	2012-11-19	Show	GitHub Exploit DB Packet Storm