Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219991	6	警告	IBM	-	IBM Business Process Manager のユーザ属性の実装における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0908	2014-04-15 18:27	2014-04-4	Show	GitHub Exploit DB Packet Storm

219992	4	警告	IBM	-	IBM SPSS Analytic Server における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0920	2014-04-15 18:25	2014-04-8	Show	GitHub Exploit DB Packet Storm

219993	6.8	警告	Cambridge Enterprise	-	JBIG-KIT の libjbig/jbig.c の jbg_dec_in 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-6369	2014-04-15 18:18	2013-11-19	Show	GitHub Exploit DB Packet Storm

219994	4.3	警告	Beanbag	-	Review Board の Submitters リストにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4795	2014-04-15 18:13	2013-07-28	Show	GitHub Exploit DB Packet Storm

219995	4.7	警告	OSIsoft	-	DNP3 用 OSIsoft PI Interface の DNP Master Driver におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2828	2014-04-15 18:11	2013-04-11	Show	GitHub Exploit DB Packet Storm

219996	7.1	危険	OSIsoft	-	DNP3 用 OSIsoft PI Interface の DNP Master Driver におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2809	2014-04-15 18:10	2013-04-11	Show	GitHub Exploit DB Packet Storm

219997	6.8	警告	Nilesh Shiragave	-	WordPress 用 Content Slide プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2708	2014-04-15 18:09	2013-06-4	Show	GitHub Exploit DB Packet Storm

219998	6.8	警告	Rodrigo Polo	-	WordPress 用 Stream Video Player プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2706	2014-04-15 18:08	2013-06-21	Show	GitHub Exploit DB Packet Storm

219999	10	危険	WellinTech	-	WellinTech KingSCADA におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0787	2014-04-15 14:56	2014-03-27	Show	GitHub Exploit DB Packet Storm

220000	7.5	危険	アドバンテック株式会社	-	Advantech WebAccess の bwocxrun.ocx 内の BWOCXRUN.BwocxrunCtrl.1 ActiveX コントロールにおける任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-0773	2014-04-15 14:11	2014-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296031	-	apple	iphone_os	WebKit, as used in Apple iOS before 6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.	CWE-119 CWE-399 Incorrect Access of Indexable Resource ('Range Error') Resource Management Errors	CVE-2012-3747	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296032	-	apple	iphone_os	UIWebView in UIKit in Apple iOS before 6 does not properly use the Data Protection feature, which allows context-dependent attackers to obtain cleartext file content by leveraging direct access to a …	CWE-310 Cryptographic Issues	CVE-2012-3746	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296033	-	apple	iphone_os	Off-by-one error in Telephony in Apple iOS before 6 allows remote attackers to cause a denial of service (buffer overflow and connectivity outage) via a crafted user-data header in an SMS message.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3745	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296034	-	apple	iphone_os	Telephony in Apple iOS before 6 uses an SMS message's return address as the displayed sender address, which allows remote attackers to spoof text communication via a message in which the return addre…	NVD-CWE-Other	CVE-2012-3744	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296035	-	apple	iphone_os	The System Logs implementation in Apple iOS before 6 does not restrict /var/log access by sandboxed apps, which allows remote attackers to obtain sensitive information via a crafted app that reads lo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3743	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296036	-	apple	iphone_os	Safari in Apple iOS before 6 does not properly restrict use of an unspecified Unicode character that looks similar to the https lock indicator, which allows remote attackers to spoof https connection…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3742	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296037	-	apple	iphone_os	The Restrictions (aka Parental Controls) implementation in Apple iOS before 6 does not properly handle purchase attempts after a Disable Restrictions action, which allows local users to bypass an int…	CWE-287 Improper Authentication	CVE-2012-3741	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296038	-	apple	iphone_os	The Passcode Lock implementation in Apple iOS before 6 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement via unspecified …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3740	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296039	-	apple	iphone_os	The Passcode Lock implementation in Apple iOS before 6 allows physically proximate attackers to bypass an intended passcode requirement via vectors involving use of the camera.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3739	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm

296040	-	apple	iphone_os	The Emergency Dialer screen in the Passcode Lock implementation in Apple iOS before 6 does not properly limit the dialing methods, which allows physically proximate attackers to bypass intended acces…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3738	2024-11-21 10:41	2012-09-21	Show	GitHub Exploit DB Packet Storm