Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219861	4.4	警告	OpenFabrics Alliance	-	RHEL 6 および 5 の ibutils パッケージの ibmssh 実行ファイル用の特定の Red Hat ビルドスクリプトにおける権限を取得される脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3277	2014-04-21 11:08	2008-08-5	Show	GitHub Exploit DB Packet Storm

219862	5.5	警告	DELL EMC (旧 EMC Corporation)	-	EMC Documentum Content Server におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0642	2014-04-18 18:50	2014-04-11	Show	GitHub Exploit DB Packet Storm

219863	4.9	警告	VMware	-	Windows 上で稼働する VMware Workstation および VMware Player の vmx86.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-2384	2014-04-18 17:10	2014-03-28	Show	GitHub Exploit DB Packet Storm

219864	2.1	注意	シトリックス・システムズ	-	Citrix VDI-in-a-Box における管理者の認証情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2690	2014-04-18 16:14	2014-04-8	Show	GitHub Exploit DB Packet Storm

219865	7.8	危険	ジュニパーネットワークス	-	Juniper ScreenOS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-2842	2014-04-18 15:52	2014-04-14	Show	GitHub Exploit DB Packet Storm

219866	4.6	警告	IBM	-	IBM MessageSight におけるアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2014-0924	2014-04-18 15:38	2014-04-14	Show	GitHub Exploit DB Packet Storm

219867	4.3	警告	IBM	-	IBM MessageSight におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0923	2014-04-18 15:38	2014-04-14	Show	GitHub Exploit DB Packet Storm

219868	4.3	警告	IBM	-	IBM MessageSight におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0922	2014-04-18 15:37	2014-04-14	Show	GitHub Exploit DB Packet Storm

219869	4.3	警告	IBM	-	IBM MessageSigh のサーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0921	2014-04-18 15:36	2014-04-14	Show	GitHub Exploit DB Packet Storm

219870	9.3	危険	アドビシステムズ	-	Android 用 Adobe Reader Mobile アプリケーションにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0514	2014-04-18 15:25	2014-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294521	7.8	HIGH Local	toshiba	configfree_utility	Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code.	CWE-787 Out-of-bounds Write	CVE-2012-4980	2024-11-21 10:43	2019-12-28	Show	GitHub Exploit DB Packet Storm

294522	7.8	HIGH Local	freebsd debian	freebsd debian_linux	FreeBSD: Input Validation Flaw allows local users to gain elevated privileges	CWE-20 Improper Input Validation	CVE-2012-4576	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

294523	6.1	MEDIUM Network	piwigo	piwigo	piwigo has XSS in password.php (incomplete fix for CVE-2012-4525)	CWE-79 Cross-site Scripting	CVE-2012-4526	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

294524	6.1	MEDIUM Network	piwigo	piwigo	piwigo has XSS in password.php	CWE-79 Cross-site Scripting	CVE-2012-4525	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

294525	7.5	HIGH Network	sillycycle fedoraproject	xlockmore fedora	xlockmore before 5.43 'dclock' security bypass vulnerability	CWE-20 Improper Input Validation	CVE-2012-4524	2024-11-21 10:43	2019-11-22	Show	GitHub Exploit DB Packet Storm

294526	9.8	CRITICAL Network	letodms_project	letodms	SQL injection vulnerability in LetoDMS_Core/Core/inc.ClassDMS.php in LetoDMS (formerly MyDMS) before 3.3.8 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2012-4570	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

294527	6.1	MEDIUM Network	letodms_project	letodms	Multiple cross-site scripting (XSS) vulnerabilities in out/out.UsrMgr.php in LetoDMS (formerly MyDMS) before 3.3.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2012-4569	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

294528	8.8	HIGH Network	letodms_project	letodms	Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.	CWE-352 Origin Validation Error	CVE-2012-4568	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

294529	6.1	MEDIUM Network	letodms_project	letodms	Multiple cross-site scripting (XSS) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) inc/inc.Cl…	CWE-79 Cross-site Scripting	CVE-2012-4567	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

294530	6.5	MEDIUM Network	cisco	ios	Cisco IOS before 15.2(4)S6 does not initialize an unspecified variable, which might allow remote authenticated users to cause a denial of service (CPU consumption, watchdog timeout, crash) by walking…	CWE-399 Resource Management Errors	CVE-2012-5030	2024-11-21 10:43	2017-08-3	Show	GitHub Exploit DB Packet Storm