Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220901	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3991	2013-10-24 17:44	2012-10-9	Show	GitHub Exploit DB Packet Storm

220902	7.5	危険	Inbound Now	-	WordPress 用 Landing Pages プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-6243	2013-10-24 17:43	2013-10-9	Show	GitHub Exploit DB Packet Storm

220903	4.3	警告	Ruby-lang.org	-	Ruby の safe-level 機能における文字列を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4481	2013-10-24 17:40	2013-01-8	Show	GitHub Exploit DB Packet Storm

220904	2.1	注意	アップル	-	Apple iOS の Social サブシステムにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5158	2013-10-24 17:38	2013-09-18	Show	GitHub Exploit DB Packet Storm

220905	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の IME State Manager の実装における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3990	2013-10-24 17:38	2012-10-9	Show	GitHub Exploit DB Packet Storm

220906	5	警告	サイバートラスト株式会社 Ruby-lang.org レッドハット	-	Ruby の safe-level 機構における文字列を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1005	2013-10-24 17:37	2011-03-2	Show	GitHub Exploit DB Packet Storm

220907	5	警告	アップル	-	Apple iOS の Twitter サブシステムにおけるツイートを投稿される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5157	2013-10-24 17:36	2013-09-18	Show	GitHub Exploit DB Packet Storm

220908	2.1	注意	Joachim Noreiko	-	Drupal 用 Flag モジュールの管理ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5964	2013-10-24 17:35	2013-08-28	Show	GitHub Exploit DB Packet Storm

220909	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品の IonMonkey JavaScript エンジンにおける重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-1728	2013-10-24 17:33	2013-09-17	Show	GitHub Exploit DB Packet Storm

220910	5	警告	Novell xmlsoft.org	-	libxslt におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2012-6139	2013-10-24 17:32	2012-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347281	-	ipswitch	imail	Web Messaging Server for Ipswitch IMail 7.04 and earlier allows remote authenticated users to change information for other users by modifying the olduser parameter in the "Change User Information" we…	NVD-CWE-Other	CVE-2001-1281	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347282	-	ipswitch	imail	Ipswitch IMail 7.04 and earlier records the physical path of attachments in an e-mail message header, which could allow remote attackers to obtain potentially sensitive configuration information.	NVD-CWE-Other	CVE-2001-1282	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347283	-	ipswitch	imail	The webmail interface for Ipswitch IMail 7.04 and earlier allows remote authenticated users to cause a denial of service (crash) via a mailbox name that contains a large number of . (dot) or other ch…	NVD-CWE-Other	CVE-2001-1283	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347284	-	ipswitch	imail	Ipswitch IMail 7.04 and earlier uses predictable session IDs for authentication, which allows remote attackers to hijack sessions of other users.	NVD-CWE-Other	CVE-2001-1284	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347285	-	ipswitch	imail	Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows remote attackers to access the mailboxes of other users via a .. (dot dot) in the mbx parameter.	NVD-CWE-Other	CVE-2001-1285	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347286	-	ipswitch	imail	Ipswitch IMail 7.04 and earlier stores a user's session ID in a URL, which could allow remote attackers to hijack sessions by obtaining the URL, e.g. via an HTML email that causes the Referrer to be …	NVD-CWE-Other	CVE-2001-1286	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347287	-	ipswitch	imail	Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.	NVD-CWE-Other	CVE-2001-1287	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

347288	-	id_software	quake_3_arena	Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters.	NVD-CWE-Other	CVE-2001-1289	2008-09-11 04:10	2001-07-29	Show	GitHub Exploit DB Packet Storm

347289	-	3com	3cr29223	Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223) allows remote attackers to cause a denial of service (crash) via a long HTTP request.	NVD-CWE-Other	CVE-2001-1293	2008-09-11 04:10	2001-09-26	Show	GitHub Exploit DB Packet Storm

347290	-	avtronics	inetserv	Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password.	NVD-CWE-Other	CVE-2001-1294	2008-09-11 04:10	2001-08-22	Show	GitHub Exploit DB Packet Storm