Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219861 7.5 危険 Raoul Proenca - Gnew における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7349 2014-04-2 15:42 2013-10-2 Show GitHub Exploit DB Packet Storm
219862 7.5 危険 Raoul Proenca - Gnew における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5640 2014-04-2 15:42 2013-10-2 Show GitHub Exploit DB Packet Storm
219863 9.3 危険 Schneider Electric - Schneider Electric Modbus Serial Driver の ModbusDrv.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0662 2014-04-2 15:36 2013-09-13 Show GitHub Exploit DB Packet Storm
219864 7.5 危険 Sonatype Inc. - Sonatype Nexus OSS および Pro における任意のユーザアカウントを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2034 2014-04-2 15:03 2014-03-3 Show GitHub Exploit DB Packet Storm
219865 3.7 注意 レッドハット - Red Hat Conga の Luci におけるセッションへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-7347 2014-04-2 14:56 2013-01-8 Show GitHub Exploit DB Packet Storm
219866 3.7 注意 レッドハット - Red Hat Conga の Luci における権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-3359 2014-04-2 14:55 2012-09-6 Show GitHub Exploit DB Packet Storm
219867 10 危険 Jgaa - War FTP Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2278 2014-04-2 14:43 2013-02-25 Show GitHub Exploit DB Packet Storm
219868 4 警告 Jgaa - War FTP Daemon におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2009-5141 2014-04-2 14:43 2009-09-12 Show GitHub Exploit DB Packet Storm
219869 10 危険 アライドテレシス - 複数の Allied Telesis ルータ製品における権限を取得される脆弱性 CWE-287
CWE-78
CVE-2014-1982 2014-04-2 13:41 2014-03-26 Show GitHub Exploit DB Packet Storm
219870 10 危険 Chainfire - Android 用 Chainfire SuperSU パッケージにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6775 2014-04-2 12:19 2013-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294871 - justsystems atok The ATOK application before 1.0.4 for Android allows remote attackers to read the learning information file, and obtain sensitive input-string information, via a crafted application. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4016 2024-11-21 10:42 2012-09-28 Show GitHub Exploit DB Packet Storm
294872 - mylittletools mylittleadmin Cross-site scripting (XSS) vulnerability in the management screen in myLittleTools myLittleAdmin for SQL Server 2000 allows remote attackers to inject arbitrary web script or HTML via vectors that tr… CWE-79
Cross-site Scripting 		CVE-2012-4015 2024-11-21 10:42 2012-09-25 Show GitHub Exploit DB Packet Storm
294873 - mcafee email_and_web_security Unspecified vulnerability in McAfee Email Anti-virus (formerly WebShield SMTP) allows remote attackers to cause a denial of service via unknown vectors. NVD-CWE-noinfo
CVE-2012-4014 2024-11-21 10:42 2012-09-25 Show GitHub Exploit DB Packet Storm
294874 - moodle moodle course/reset.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 checks an update capability instead of a reset capability, which allows remote authenticated users to bypass … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4408 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm
294875 - moodle moodle lib/filelib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly check the publication state of blog files, which allows remote attackers to obtain sensitive… CWE-200
Information Exposure 		CVE-2012-4407 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm
294876 - moodle moodle theme/yui_combo.php in Moodle 2.3.x before 2.3.2 does not properly construct error responses for the drag-and-drop script, which allows remote attackers to obtain the installation path by sending a r… CWE-200
Information Exposure 		CVE-2012-4403 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm
294877 - moodle moodle webservice/lib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly restrict the use of web-service tokens, which allows remote authenticated users to run ar… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4402 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm
294878 - moodle moodle Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended capability restrictions and perform certain topic changes by leveraging course-editing capabiliti… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4401 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm
294879 - moodle moodle repository/repository_ajax.php in Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended upload-size restrictions via a -1 value in the maxbytes field. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4400 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm
294880 - freedesktop
gtk 		spice-gtk
libgio 		libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS env… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4425 2024-11-21 10:42 2012-09-19 Show GitHub Exploit DB Packet Storm