Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220171 6.4 警告 オラクル - Oracle Virtualization の Oracle Secure Global Desktop における Workspace Web Application に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2439 2014-04-17 15:19 2014-04-15 Show GitHub Exploit DB Packet Storm
220172 6.6 警告 オラクル - Oracle Database Server の Core RDBMS における Create Session および Grant Any Object Privilege に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2408 2014-04-17 15:01 2014-04-15 Show GitHub Exploit DB Packet Storm
220173 8.5 危険 オラクル - Oracle Database Server の Core RDBMS における Create Session などに関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2406 2014-04-17 15:01 2014-04-15 Show GitHub Exploit DB Packet Storm
220174 7.9 危険 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおける任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2014-0356 2014-04-17 10:59 2014-04-11 Show GitHub Exploit DB Packet Storm
220175 7.9 危険 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0355 2014-04-17 10:58 2014-04-11 Show GitHub Exploit DB Packet Storm
220176 7.8 危険 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおける index.asp のログインアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-0354 2014-04-17 10:57 2014-04-11 Show GitHub Exploit DB Packet Storm
220177 6.1 警告 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-0353 2014-04-17 10:57 2014-04-11 Show GitHub Exploit DB Packet Storm
220178 9 危険 Xangati - Xangati XSR および XNR における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2014-0359 2014-04-17 09:27 2014-04-14 Show GitHub Exploit DB Packet Storm
220179 7.8 危険 Xangati - Xangati XSR および XNR におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-0358 2014-04-17 09:26 2014-04-14 Show GitHub Exploit DB Packet Storm
220180 1.5 注意 Ontario Systems - Ontario Systems Artiva Agency に認証不備の脆弱性 - CVE-2014-0348 2014-04-17 09:25 2014-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294801 - c2enterprise c2_webresource Cross-site scripting (XSS) vulnerability in fileview.asp in C2 WebResource allows remote attackers to inject arbitrary web script or HTML via the File parameter. CWE-79
Cross-site Scripting 		CVE-2013-0125 2024-11-21 10:46 2013-04-5 Show GitHub Exploit DB Packet Storm
294802 - zeroclipboard_project zeroclipboard Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vu… CWE-79
Cross-site Scripting 		CVE-2012-6550 2024-11-21 10:46 2013-04-2 Show GitHub Exploit DB Packet Storm
294803 - coreftp coreftp Multiple buffer overflows in Core FTP before 2.2 build 1769 allow remote FTP servers to execute arbitrary code or cause a denial of service (application crash) via a long directory name in a (1) DELE… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0130 2024-11-21 10:46 2013-03-30 Show GitHub Exploit DB Packet Storm
294804 - novell sentinel_log_manager Novell Sentinel Log Manager before 1.2.0.3 allows remote attackers to create data retention policies via a crafted text/x-gwt-rpc request to novelllogmanager/datastorageservice.rpc, and allows remote… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6534 2024-11-21 10:46 2013-03-30 Show GitHub Exploit DB Packet Storm
294805 - askia askiaweb Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to inject arbitrary web script or HTML via the (1) Number or (2) UpdatePag… CWE-79
Cross-site Scripting 		CVE-2013-0124 2024-11-21 10:46 2013-03-22 Show GitHub Exploit DB Packet Storm
294806 - askia askiaweb Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via (1) the nHistoryId parameter to WebProd/pages/pgH… CWE-89
SQL Injection 		CVE-2013-0123 2024-11-21 10:46 2013-03-22 Show GitHub Exploit DB Packet Storm
294807 - verizon fios_actiontec_mi424wr-gen31_router_firmware
fios_actiontec_mi424wr-gen31_router 		Multiple cross-site request forgery (CSRF) vulnerabilities in index.cgi on the Verizon FIOS Actiontec MI424WR-GEN3I router with firmware 40.19.36 allow remote attackers to hijack the authentication o… CWE-352
 Origin Validation Error 		CVE-2013-0126 2024-11-21 10:46 2013-03-22 Show GitHub Exploit DB Packet Storm
294808 - linux linux_kernel The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from k… CWE-200
Information Exposure 		CVE-2012-6549 2024-11-21 10:46 2013-03-16 Show GitHub Exploit DB Packet Storm
294809 - linux
redhat 		linux_kernel
enterprise_linux 		The udf_encode_fh function in fs/udf/namei.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap m… CWE-200
Information Exposure 		CVE-2012-6548 2024-11-21 10:46 2013-03-16 Show GitHub Exploit DB Packet Storm
294810 - linux linux_kernel The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack me… CWE-200
Information Exposure 		CVE-2012-6547 2024-11-21 10:46 2013-03-16 Show GitHub Exploit DB Packet Storm