Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219631 3.5 注意 ウェブセンス - Websense TRITON Unified Security Center に情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2014-0347 2014-04-15 18:50 2014-04-7 Show GitHub Exploit DB Packet Storm
219632 6 警告 IBM - IBM Business Process Manager のユーザ属性の実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0908 2014-04-15 18:27 2014-04-4 Show GitHub Exploit DB Packet Storm
219633 4 警告 IBM - IBM SPSS Analytic Server における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-0920 2014-04-15 18:25 2014-04-8 Show GitHub Exploit DB Packet Storm
219634 6.8 警告 Cambridge Enterprise - JBIG-KIT の libjbig/jbig.c の jbg_dec_in 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6369 2014-04-15 18:18 2013-11-19 Show GitHub Exploit DB Packet Storm
219635 4.3 警告 Beanbag - Review Board の Submitters リストにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4795 2014-04-15 18:13 2013-07-28 Show GitHub Exploit DB Packet Storm
219636 4.7 警告 OSIsoft - DNP3 用 OSIsoft PI Interface の DNP Master Driver におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2828 2014-04-15 18:11 2013-04-11 Show GitHub Exploit DB Packet Storm
219637 7.1 危険 OSIsoft - DNP3 用 OSIsoft PI Interface の DNP Master Driver におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2809 2014-04-15 18:10 2013-04-11 Show GitHub Exploit DB Packet Storm
219638 6.8 警告 Nilesh Shiragave - WordPress 用 Content Slide プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2708 2014-04-15 18:09 2013-06-4 Show GitHub Exploit DB Packet Storm
219639 6.8 警告 Rodrigo Polo - WordPress 用 Stream Video Player プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2706 2014-04-15 18:08 2013-06-21 Show GitHub Exploit DB Packet Storm
219640 10 危険 WellinTech - WellinTech KingSCADA におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0787 2014-04-15 14:56 2014-03-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295911 - efstechnology autoform_pdm_archive AutoFORM PDM Archive before 7.0 implements user accounts in a way that allows for JMX Console authentication, which allows remote authenticated users to bypass intended access restrictions via the /j… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3347 2024-11-21 10:40 2012-06-14 Show GitHub Exploit DB Packet Storm
295912 - poul-henning_kamp md5crypt Poul-Henning Kamp md5crypt has insufficient algorithmic complexity and a consequently short runtime, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-… CWE-310
Cryptographic Issues 		CVE-2012-3287 2024-11-21 10:40 2012-06-14 Show GitHub Exploit DB Packet Storm
295913 - bmc identity_management_suite Cross-site request forgery (CSRF) vulnerability in password-manager/changePasswords.do in BMC Identity Management Suite 7.5.00.103 allows remote attackers to hijack the authentication of administrato… CWE-352
 Origin Validation Error 		CVE-2012-2959 2024-11-21 10:40 2012-06-12 Show GitHub Exploit DB Packet Storm
295914 - bloxx web_filtering Cross-site request forgery (CSRF) vulnerability in Microdasys before 3.5.1-B708, as used in Bloxx Web Filtering before 5.0.14 and other products, allows remote attackers to hijack the authentication … CWE-352
 Origin Validation Error 		CVE-2012-3343 2024-11-21 10:40 2012-06-9 Show GitHub Exploit DB Packet Storm
295915 - siemens wincc Open redirect vulnerability in an unspecified web application in Siemens WinCC 7.0 SP3 before Update 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks vi… CWE-20
 Improper Input Validation  		CVE-2012-3003 2024-11-21 10:40 2012-06-9 Show GitHub Exploit DB Packet Storm
295916 - globus globus_toolkit The GridFTP in Globus Toolkit (GT) before 5.2.2, when certain autoconf macros are defined, does not properly check the return value from the getpwnam_r function, which might allow remote attackers to… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3292 2024-11-21 10:40 2012-06-8 Show GitHub Exploit DB Packet Storm
295917 - infradead openconnect Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3291 2024-11-21 10:40 2012-06-8 Show GitHub Exploit DB Packet Storm
295918 - google
acer
samsung 		chrome_os
ac700_chromebook
cr-48_chromebook
chromebox_3
series_5_550_chromebook
series_5_chromebook 		Multiple unspecified vulnerabilities in Google Chrome before 20.0.1132.22 on the Acer AC700; Samsung Series 5, 5 550, and Chromebox 3; and Cr-48 Chromebook platforms have unknown impact and attack ve… NVD-CWE-noinfo
CVE-2012-3290 2024-11-21 10:40 2012-06-8 Show GitHub Exploit DB Packet Storm
295919 - mozilla seamonkey
firefox
thunderbird
thunderbird_esr 		The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMon… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3105 2024-11-21 10:40 2012-06-6 Show GitHub Exploit DB Packet Storm
295920 - asterisk
sangoma 		certified_asterisk
open_source
asterisk 		chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authent… CWE-399
 Resource Management Errors 		CVE-2012-2948 2024-11-21 10:40 2012-06-3 Show GitHub Exploit DB Packet Storm