Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220011 7.5 危険 SAP - SAP CCMS エージェントの不特定の RFC 機能における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-7362 2014-04-15 12:18 2013-02-21 Show GitHub Exploit DB Packet Storm
220012 5 警告 SAP - SAP CMS および CM Services におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7361 2014-04-15 12:18 2013-05-11 Show GitHub Exploit DB Packet Storm
220013 7.5 危険 SAP - SAP adminadapter における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2013-7360 2014-04-15 12:17 2013-03-27 Show GitHub Exploit DB Packet Storm
220014 5 警告 SAP - SAP モバイルインフラストラクチャにおける重要なポート情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7359 2014-04-15 12:16 2013-06-5 Show GitHub Exploit DB Packet Storm
220015 5 警告 SAP - SAP Guided Procedures Archive Monitor におけるユーザ名などの情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7358 2014-04-15 12:16 2013-07-2 Show GitHub Exploit DB Packet Storm
220016 5 警告 SAP - SAP J2EE Engine の設定サービスにおける認証情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7357 2014-04-15 12:15 2013-07-2 Show GitHub Exploit DB Packet Storm
220017 5 警告 SAP - Oracle 用 SAP CCMS / Database Monitors におけるデータベースパスワードを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7356 2014-04-15 12:15 2013-08-8 Show GitHub Exploit DB Packet Storm
220018 7.5 危険 SAP - SAP BI Universal Data Integration における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7355 2014-04-15 12:14 2013-11-8 Show GitHub Exploit DB Packet Storm
220019 - - The Prosody Team - ** 削除 ** Prosody におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2014-2750 2014-04-14 18:40 2014-04-2 Show GitHub Exploit DB Packet Storm
220020 5.8 警告 デル - Dell OpenManage Server Administrator におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0740 2014-04-14 18:36 2013-07-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295601 - sonicwall scrutinizer Multiple cross-site scripting (XSS) vulnerabilities in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allow remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2012-3848 2024-11-21 10:41 2012-07-31 Show GitHub Exploit DB Packet Storm
295602 - airdroid airdroid The login implementation in AirDroid 1.0.4 beta allows remote attackers to bypass a multiple-login protection mechanism by modifying a pass value within JSON data. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3888 2024-11-21 10:41 2012-07-27 Show GitHub Exploit DB Packet Storm
295603 - airdroid airdroid AirDroid before 1.0.7 beta uses a cleartext base64 format for data transfer that is documented as an "Encrypted Transmission" feature, which allows remote attackers to obtain sensitive information by… CWE-310
Cryptographic Issues 		CVE-2012-3887 2024-11-21 10:41 2012-07-27 Show GitHub Exploit DB Packet Storm
295604 - airdroid airdroid AirDroid 1.0.4 beta uses the MD5 algorithm for values in the checklogin key parameter and 7bb cookie, which makes it easier for remote attackers to obtain cleartext data by sniffing the local wireles… CWE-200
Information Exposure 		CVE-2012-3886 2024-11-21 10:41 2012-07-27 Show GitHub Exploit DB Packet Storm
295605 - airdroid airdroid The default configuration of AirDroid 1.0.4 beta uses a four-character alphanumeric password, which makes it easier for remote attackers to obtain access via a brute-force attack. CWE-287
Improper Authentication 		CVE-2012-3885 2024-11-21 10:41 2012-07-27 Show GitHub Exploit DB Packet Storm
295606 - airdroid airdroid AirDroid 1.0.4 beta implements authentication through direct transmission of a password hash over HTTP, which makes it easier for remote attackers to obtain access by sniffing the local wireless netw… CWE-287
Improper Authentication 		CVE-2012-3884 2024-11-21 10:41 2012-07-27 Show GitHub Exploit DB Packet Storm
295607 - apple xcode Apple Xcode before 4.4 does not properly compose a designated requirement (DR) during signing of programs that lack bundle identifiers, which allows remote attackers to read keychain entries via a cr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3698 2024-11-21 10:41 2012-07-27 Show GitHub Exploit DB Packet Storm
295608 - apple safari WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3686 2024-11-21 10:41 2012-07-26 Show GitHub Exploit DB Packet Storm
295609 - apple safari WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3683 2024-11-21 10:41 2012-07-26 Show GitHub Exploit DB Packet Storm
295610 - apple safari WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3682 2024-11-21 10:41 2012-07-26 Show GitHub Exploit DB Packet Storm