Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219401	4.3	警告	Simple Popup Project	-	WordPress 用 Simple Popup Images プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3921	2014-06-3 17:47	2014-05-22	Show	GitHub Exploit DB Packet Storm

219402	5	警告	Moodle	-	Moodle の blocks/html/lib.php 内の block_html_pluginfile 関数の My Home の実装における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0216	2014-06-3 17:23	2014-05-19	Show	GitHub Exploit DB Packet Storm

219403	6	警告	Dotclear	-	Dotclear の admin/categories.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3783	2014-06-3 17:20	2014-05-16	Show	GitHub Exploit DB Packet Storm

219404	6.8	警告	UserCake	-	Usercake の user_settings.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-3866	2014-06-3 17:19	2014-05-21	Show	GitHub Exploit DB Packet Storm

219405	-	-	富士通 Apache Software Foundation	-	削除 Apache Struts の ParametersInterceptor における ClassLoader を操作される脆弱性	-	CVE-2014-0094	2014-06-3 17:17	2014-03-6	Show	GitHub Exploit DB Packet Storm

219406	5	警告	レッドハット	-	Red Hat Enterprise Linux 5 上で稼動する Red Hat sos の sosreport における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-3925	2014-06-3 15:48	2014-05-30	Show	GitHub Exploit DB Packet Storm

219407	2.1	注意	レッドハット	-	Red Hat Enterprise Virtualization Manager データウェアハウスパッケージで使用される ovirt-engine-dwh における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0202	2014-06-3 15:47	2014-05-27	Show	GitHub Exploit DB Packet Storm

219408	4.3	警告	IBM	-	IBM WebSphere Service Registry and Repository の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3010	2014-06-3 15:43	2014-05-19	Show	GitHub Exploit DB Packet Storm

219409	3.5	注意	IBM	-	IBM Sterling Control Center におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-0925	2014-06-3 15:42	2014-05-16	Show	GitHub Exploit DB Packet Storm

219410	6.5	警告	IBM	-	Windows 上で稼働する IBM DB2 のストアドプロシージャのインフラストラクチャにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6744	2014-06-3 15:39	2013-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296471	-	owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.9 and 4.5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) file name to apps/files_versions/js/ve…	CWE-79 Cross-site Scripting	CVE-2012-5606	2024-11-21 10:44	2012-12-18	Show	GitHub Exploit DB Packet Storm

296472	-	gimp	gimp	Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.8.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code vi…	CWE-787 Out-of-bounds Write	CVE-2012-5576	2024-11-21 10:44	2012-12-18	Show	GitHub Exploit DB Packet Storm

296473	-	sensiolabs	symfony	lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5574	2024-11-21 10:44	2012-12-18	Show	GitHub Exploit DB Packet Storm

296474	-	openstack	folsom	OpenStack Keystone, as used in OpenStack Folsom 2012.2, does not properly implement token expiration, which allows remote authenticated users to bypass intended authorization restrictions by creating…	CWE-255 Credentials Management	CVE-2012-5563	2024-11-21 10:44	2012-12-18	Show	GitHub Exploit DB Packet Storm

296475	-	bogofilter_project	bogofilter	Heap-based buffer overflow in iconvert.c in the bogolexer component in Bogofilter before 1.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5468	2024-11-21 10:44	2012-12-18	Show	GitHub Exploit DB Packet Storm

296476	-	perl	perl	Heap-based buffer overflow in the Perl_repeatcpy function in util.c in Perl 5.12.x before 5.12.5, 5.14.x before 5.14.3, and 5.15.x before 15.15.5 allows context-dependent attackers to cause a denial …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5195	2024-11-21 10:44	2012-12-18	Show	GitHub Exploit DB Packet Storm

296477	-	xen	xen	The get_page_from_gfn hypercall function in Xen 4.2 allows local PV guest OS administrators to cause a denial of service (crash) via a crafted GFN that triggers a buffer over-read.	NVD-CWE-noinfo	CVE-2012-5525	2024-11-21 10:44	2012-12-13	Show	GitHub Exploit DB Packet Storm

296478	-	xen	xen	The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop an…	NVD-CWE-noinfo	CVE-2012-5515	2024-11-21 10:44	2012-12-13	Show	GitHub Exploit DB Packet Storm

296479	-	xen	xen	The guest_physmap_mark_populate_on_demand function in Xen 4.2 and earlier does not properly unlock the subject GFNs when checking if they are in use, which allows local guest HVM administrators to ca…	NVD-CWE-Other	CVE-2012-5514	2024-11-21 10:44	2012-12-13	Show	GitHub Exploit DB Packet Storm

296480	-	xen	xen	The XENMEM_exchange handler in Xen 4.2 and earlier does not properly check the memory address, which allows local PV guest OS administrators to cause a denial of service (crash) or possibly gain priv…	CWE-20 Improper Input Validation	CVE-2012-5513	2024-11-21 10:44	2012-12-13	Show	GitHub Exploit DB Packet Storm