Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219591 3.5 注意 IBM - IBM Sterling Order Management および Sterling Selling and Fulfillment Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0932 2014-04-24 17:51 2014-04-15 Show GitHub Exploit DB Packet Storm
219592 5.5 警告 IBM - IBM Rational Software Architect Design Manager および Rational Rhapsody Design Manager におけるデータを変更される脆弱性 CWE-noinfo
情報不足 		CVE-2013-5459 2014-04-24 17:50 2013-08-22 Show GitHub Exploit DB Packet Storm
219593 5.8 警告 WinSCP - WinSCP における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2735 2014-04-24 17:01 2014-04-14 Show GitHub Exploit DB Packet Storm
219594 6.4 警告 Vtiger - Vtiger の modules/Users/ForgotPassword.php における任意のユーザのパスワードをリセットされる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2269 2014-04-24 16:55 2014-03-16 Show GitHub Exploit DB Packet Storm
219595 7.5 危険 FitNesse - FitNesse Wiki における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2014-1216 2014-04-24 16:48 2014-02-25 Show GitHub Exploit DB Packet Storm
219596 5.8 警告 Automattic Inc. - WordPress 用 Jetpack プラグインにおける制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0173 2014-04-24 16:41 2014-04-10 Show GitHub Exploit DB Packet Storm
219597 6.5 警告 レッドハット - JBossAS 用 JBoss Overlord Run Time Governance における任意の Java コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-6469 2014-04-24 16:30 2013-11-4 Show GitHub Exploit DB Packet Storm
219598 6.8 警告 アップル - Apple OS X の ImageIO におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-1319 2014-04-24 15:53 2014-04-22 Show GitHub Exploit DB Packet Storm
219599 10 危険 アップル - Apple OS X の Intel Graphics Driver における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1318 2014-04-24 15:53 2014-04-22 Show GitHub Exploit DB Packet Storm
219600 5 警告 アップル - Apple OS X で使用される Heimdal におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1316 2014-04-24 15:52 2014-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294311 - mantisbt mantisbt MantisBT before 1.2.12 does not use an expected default value during decisions about whether a user may modify the status of a bug, which allows remote authenticated users to bypass intended access r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5522 2024-11-21 10:44 2012-11-16 Show GitHub Exploit DB Packet Storm
294312 - vmware player
workstation 		Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "s… NVD-CWE-Other
CVE-2012-5459 2024-11-21 10:44 2012-11-14 Show GitHub Exploit DB Packet Storm
294313 - vmware player
workstation 		VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a cra… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5458 2024-11-21 10:44 2012-11-14 Show GitHub Exploit DB Packet Storm
294314 - adobe flash_player
flash_player_for_android
adobe_air
adobe_air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5287 2024-11-21 10:44 2012-11-13 Show GitHub Exploit DB Packet Storm
294315 - adobe flash_player
flash_player_for_android
adobe_air
adobe_air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5286 2024-11-21 10:44 2012-11-13 Show GitHub Exploit DB Packet Storm
294316 - adobe flash_player
air
air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5285 2024-11-21 10:44 2012-11-13 Show GitHub Exploit DB Packet Storm
294317 - openstack image_registry_and_delivery_service_\(glance\)
essex
folsom 		The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request. NOTE: this vulne… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5482 2024-11-21 10:44 2012-11-11 Show GitHub Exploit DB Packet Storm
294318 - be-graph bezip Directory traversal vulnerability in Be Graph BeZIP before 3.10 allows remote attackers to create or overwrite arbitrary files via a crafted archive file. CWE-22
Path Traversal 		CVE-2012-5171 2024-11-21 10:44 2012-11-8 Show GitHub Exploit DB Packet Storm
294319 - cisco secure_access_control_server Cisco Secure Access Control System (ACS) 5.x before 5.2 Patch 11 and 5.3 before 5.3 Patch 7, when a certain configuration involving TACACS+ and LDAP is used, does not properly validate passwords, whi… CWE-20
 Improper Input Validation  		CVE-2012-5424 2024-11-21 10:44 2012-11-8 Show GitHub Exploit DB Packet Storm
294320 - google chrome
v8 		Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, does not properly perform write operations, which allows remote attackers to cause a denial of service or possibly have unspec… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5128 2024-11-21 10:44 2012-11-7 Show GitHub Exploit DB Packet Storm