Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219821 6.8 警告 b2evolution - b2evolution の blogs/admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-7352 2014-04-4 16:19 2013-04-29 Show GitHub Exploit DB Packet Storm
219822 6.5 警告 b2evolution - b2evolution の blogs/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2945 2014-04-4 16:18 2013-04-29 Show GitHub Exploit DB Packet Storm
219823 7.5 危険 Cartpauj.com - WordPress 用 Mingle Forum プラグインの wpf.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0735 2014-04-4 16:08 2013-02-7 Show GitHub Exploit DB Packet Storm
219824 6.8 警告 XCloner - WordPress 用 XCloner プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2340 2014-04-4 16:07 2014-03-13 Show GitHub Exploit DB Packet Storm
219825 5.8 警告 レッドハット - Red Hat JBoss Enterprise Application Platform におけるアプリケーションに java.security.AllPermission パーミッションを付与される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0093 2014-04-4 14:45 2014-03-31 Show GitHub Exploit DB Packet Storm
219826 9.3 危険 Tracker Software Products - Tracker Software PDF-XChange におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0729 2014-04-4 14:27 2013-01-21 Show GitHub Exploit DB Packet Storm
219827 6.5 警告 Postfix Admin Project - Postfix Admin の functions.inc.php の gen_show_status 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2655 2014-04-4 14:27 2014-02-19 Show GitHub Exploit DB Packet Storm
219828 4.3 警告 Splunk - Splunk の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2578 2014-04-4 12:15 2014-03-24 Show GitHub Exploit DB Packet Storm
219829 3.5 注意 OTRS プロジェクト - Open Ticket Request System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2553 2014-04-4 12:03 2014-04-1 Show GitHub Exploit DB Packet Storm
219830 6.8 警告 HitMyServer - WordPress 用 HMS Testimonials プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4240 2014-04-4 11:19 2013-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295181 - cisco ios The DMVPN tunnel implementation in Cisco IOS 15.2 allows remote attackers to cause a denial of service (persistent IKE state) via a large volume of hub-to-spoke traffic, aka Bug ID CSCtq39602. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3915 2024-11-21 10:41 2012-09-16 Show GitHub Exploit DB Packet Storm
295182 - cisco identity_services_engine_software
identity_services_engine 		Multiple cross-site request forgery (CSRF) vulnerabilities in the ISE Administrator user interface (aka the Apache Tomcat interface) on Cisco Identity Services Engine (ISE) 3300 series appliances bef… CWE-352
 Origin Validation Error 		CVE-2012-3908 2024-11-21 10:41 2012-09-16 Show GitHub Exploit DB Packet Storm
295183 - cisco intrusion_prevention_system
ips_4240
ips_4250_sx
ips_4255
ips_4260
ips_4270-20 		The updateTime function in sensorApp on Cisco IPS 4200 series sensors 7.0 and 7.1 allows remote attackers to cause a denial of service (process crash and traffic-inspection outage) via network traffi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3901 2024-11-21 10:41 2012-09-16 Show GitHub Exploit DB Packet Storm
295184 - cisco intrusion_prevention_system
ips_4240
ips_4250_sx
ips_4255
ips_4260
ips_4270-20 		sensorApp on Cisco IPS 4200 series sensors 6.0, 6.2, and 7.0 does not properly allocate memory, which allows remote attackers to cause a denial of service (memory corruption and process crash, and tr… CWE-399
 Resource Management Errors 		CVE-2012-3899 2024-11-21 10:41 2012-09-16 Show GitHub Exploit DB Packet Storm
295185 - cisco ios Cisco IOS 15.0 through 15.3 allows remote authenticated users to cause a denial of service (device crash) via an MVPNv6 update, aka Bug ID CSCty89224. NVD-CWE-Other
CVE-2012-3895 2024-11-21 10:41 2012-09-16 Show GitHub Exploit DB Packet Storm
295186 - cisco ios The FlexVPN implementation in Cisco IOS 15.2 and 15.3 allows remote authenticated users to cause a denial of service (spoke crash) via spoke-to-spoke traffic, aka Bug ID CSCtz02622. NVD-CWE-Other
CVE-2012-3893 2024-11-21 10:41 2012-09-16 Show GitHub Exploit DB Packet Storm
295187 - isc
debian
canonical 		dhcp
debian_linux
ubuntu_linux 		ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an envir… NVD-CWE-noinfo
CVE-2012-3955 2024-11-21 10:41 2012-09-14 Show GitHub Exploit DB Packet Storm
295188 - apple itunes WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe… NVD-CWE-noinfo
CVE-2012-3712 2024-11-21 10:41 2012-09-13 Show GitHub Exploit DB Packet Storm
295189 - apple itunes WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe… NVD-CWE-noinfo
CVE-2012-3711 2024-11-21 10:41 2012-09-13 Show GitHub Exploit DB Packet Storm
295190 - apple itunes WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differe… NVD-CWE-noinfo
CVE-2012-3710 2024-11-21 10:41 2012-09-13 Show GitHub Exploit DB Packet Storm