Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219961 4.3 警告 The PHP Group - PHP の Fileinfo コンポーネントの libmagic/softmagic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4636 2014-04-7 17:44 2013-06-20 Show GitHub Exploit DB Packet Storm
219962 5 警告 The PHP Group - PHP の Calendar コンポーネントの jewish.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-4635 2014-04-7 17:43 2013-06-20 Show GitHub Exploit DB Packet Storm
219963 5 警告 The PHP Group
アップル		 - PHP の ext/standard/quot_print.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2110 2014-04-7 17:40 2013-06-20 Show GitHub Exploit DB Packet Storm
219964 9.3 危険 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5844 2014-04-7 17:39 2013-10-15 Show GitHub Exploit DB Packet Storm
219965 9.3 危険 IBM
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5838 2014-04-7 17:37 2013-10-15 Show GitHub Exploit DB Packet Storm
219966 6.8 警告 The PHP Group - PHP の Sessions サブシステムにおける Web セッションをハイジャックされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4718 2014-04-7 17:37 2011-12-2 Show GitHub Exploit DB Packet Storm
219967 6.8 警告 The PHP Group
アップル		 - PHP の ext/xml/xml.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4113 2014-04-7 17:36 2013-07-11 Show GitHub Exploit DB Packet Storm
219968 6.5 警告 X.Org Foundation - X.Org X11 の xorg-server モジュールの dix/dixfonts.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4396 2014-04-7 17:35 2013-10-8 Show GitHub Exploit DB Packet Storm
219969 2.6 注意 Quagga - Quagga の OSPFD API の new_msg_lsa_change_notify 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2236 2014-04-7 17:34 2013-07-28 Show GitHub Exploit DB Packet Storm
219970 5 警告 Apache Software Foundation - Apache HTTP Server 用 mod_fcgid モジュールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4365 2014-04-7 17:33 2013-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294941 7.5 HIGH
Network 		openslp
debian
fedoraproject
canonical 		openslp
debian_linux
fedora
ubuntu_linux 		openslp: SLPIntersectStringList()' Function has a DoS vulnerability CWE-125
Out-of-bounds Read 		CVE-2012-4428 2024-11-21 10:42 2019-12-3 Show GitHub Exploit DB Packet Storm
294942 6.1 MEDIUM
Network 		jenkins jenkins Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML in the CI game plugin. CWE-79
Cross-site Scripting 		CVE-2012-4441 2024-11-21 10:42 2019-11-19 Show GitHub Exploit DB Packet Storm
294943 6.1 MEDIUM
Network 		jenkins jenkins Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML in the Violations plugin. CWE-79
Cross-site Scripting 		CVE-2012-4440 2024-11-21 10:42 2019-11-19 Show GitHub Exploit DB Packet Storm
294944 6.1 MEDIUM
Network 		jenkins jenkins Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL that points to Jenkins. CWE-79
Cross-site Scripting 		CVE-2012-4439 2024-11-21 10:42 2019-11-19 Show GitHub Exploit DB Packet Storm
294945 8.8 HIGH
Network 		jenkins jenkins Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2012-4438 2024-11-21 10:42 2019-11-19 Show GitHub Exploit DB Packet Storm
294946 6.5 MEDIUM
Network 		trilexnet
debian 		letodms
debian_linux 		letodms 3.3.6 has CSRF via change password CWE-352
 Origin Validation Error 		CVE-2012-4385 2024-11-21 10:42 2019-11-14 Show GitHub Exploit DB Packet Storm
294947 6.1 MEDIUM
Network 		trilexnet
debian 		letodms
debian_linux 		letodms has multiple XSS issues: Reflected XSS in Login Page, Stored XSS in Document Owner/User name, Stored XSS in Calendar CWE-79
Cross-site Scripting 		CVE-2012-4384 2024-11-21 10:42 2019-11-14 Show GitHub Exploit DB Packet Storm
294948 9.8 CRITICAL
Network 		apache hadoop Apache Hadoop before 0.23.4, 1.x before 1.0.4, and 2.x before 2.0.2 generate token passwords using a 20-bit secret when Kerberos security features are enabled, which makes it easier for context-depen… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2012-4449 2024-11-21 10:42 2017-10-31 Show GitHub Exploit DB Packet Storm
294949 6.1 MEDIUM
Network 		mediawiki mediawiki Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.18.5 and 1.19.x before 1.19.2, when unspecified JavaScript gadgets are used, allow remote attackers to inject arbitrary web s… CWE-79
Cross-site Scripting 		CVE-2012-4378 2024-11-21 10:42 2017-10-27 Show GitHub Exploit DB Packet Storm
294950 6.1 MEDIUM
Network 		mediawiki mediawiki Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 and 1.19.x before 1.19.2 allows remote attackers to inject arbitrary web script or HTML via a File: link to a nonexistent image. CWE-79
Cross-site Scripting 		CVE-2012-4377 2024-11-21 10:42 2017-10-27 Show GitHub Exploit DB Packet Storm