Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224491 9.3 危険 IBM - IBM SPSS SamplePower の C1sizer.ocx におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5946 2013-05-1 11:42 2013-04-26 Show GitHub Exploit DB Packet Storm
224492 9.3 危険 IBM - IBM SPSS SamplePower の Vsflex8l ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5945 2013-05-1 11:41 2013-04-26 Show GitHub Exploit DB Packet Storm
224493 4.3 警告 ヒューレット・パッカード - HP Managed Printing Administration におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5219 2013-05-1 11:22 2013-04-25 Show GitHub Exploit DB Packet Storm
224494 3.5 注意 IBM - 複数の IBM 製品で使用される IBM Sametime のクライアントの実装におけるコマンドを送信される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0553 2013-05-1 11:21 2013-04-22 Show GitHub Exploit DB Packet Storm
224495 3.5 注意 IBM - IBM Sametime の Sametime Links サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0533 2013-05-1 11:15 2013-04-22 Show GitHub Exploit DB Packet Storm
224496 9.3 危険 IBM - IBM SPSS SamplePower の olch2x32 ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0593 2013-05-1 11:14 2013-04-26 Show GitHub Exploit DB Packet Storm
224497 2.3 注意 IBM - IBM Application Support Facility for z/OS の IBM Document Connect for Application Support Facility におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0572 2013-05-1 11:13 2013-04-25 Show GitHub Exploit DB Packet Storm
224498 2.9 注意 IBM - IBM Application Support Facility for z/OS の IBM Document Connect for Application Support Facility におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0571 2013-05-1 11:11 2013-04-25 Show GitHub Exploit DB Packet Storm
224499 4.3 警告 IBM - IBM Connections におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0569 2013-05-1 11:04 2013-04-25 Show GitHub Exploit DB Packet Storm
224500 4.3 警告 シスコシステムズ - Cisco Unified Communications Domain Manager の Web フレームワークにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1227 2013-04-30 19:48 2013-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278831 - notify_project notify The Notify module 7.x-1.x before 7.x-1.1 for Drupal does not properly restrict access to (1) new or (2) modified nodes or (3) their fields, which allows remote authenticated users to obtain node titl… CWE-200
Information Exposure 		CVE-2014-9154 2024-11-21 11:20 2014-12-2 Show GitHub Exploit DB Packet Storm
278832 - services_project services Cross-site scripting (XSS) vulnerability in the Services module 7.x-3.x before 7.x-3.10 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via the callback parameter … CWE-79
Cross-site Scripting 		CVE-2014-9153 2024-11-21 11:20 2014-12-2 Show GitHub Exploit DB Packet Storm
278833 - services_project services The _user_resource_create function in the Services module 7.x-3.x before 7.x-3.10 for Drupal uses a password of 1 when creating new user accounts, which makes it easier for remote attackers to guess … CWE-255
Credentials Management 		CVE-2014-9152 2024-11-21 11:20 2014-12-2 Show GitHub Exploit DB Packet Storm
278834 - services_project services The Services module 7.x-3.x before 7.x-3.10 for Drupal does not properly limit the rate of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attac… CWE-284
Improper Access Control 		CVE-2014-9151 2024-11-21 11:20 2014-12-2 Show GitHub Exploit DB Packet Storm
278835 - mageia
debian
gnupg
canonical 		mageia
debian_linux
libksba
ubuntu_linux
gnupg 		Integer underflow in the ksba_oid_to_str function in Libksba before 1.3.2, as used in GnuPG, allows remote attackers to cause a denial of service (crash) via a crafted OID in a (1) S/MIME message or … CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2014-9087 2024-11-21 11:20 2014-12-2 Show GitHub Exploit DB Packet Storm
278836 - clamav clamav Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial of service (crash) via a crafted y0da Crypter PE file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9050 2024-11-21 11:20 2014-12-2 Show GitHub Exploit DB Packet Storm
278837 - phpmyadmin
opensuse 		phpmyadmin
opensuse 		Directory traversal vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to obt… CWE-22
Path Traversal 		CVE-2014-8961 2024-11-21 11:20 2014-11-30 Show GitHub Exploit DB Packet Storm
278838 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users… CWE-79
Cross-site Scripting 		CVE-2014-8960 2024-11-21 11:20 2014-11-30 Show GitHub Exploit DB Packet Storm
278839 - opensuse
phpmyadmin 		opensuse
phpmyadmin 		Directory traversal vulnerability in libraries/gis/GIS_Factory.class.php in the GIS editor in phpMyAdmin 4.0.x before 4.0.10.6, 4.1.x before 4.1.14.7, and 4.2.x before 4.2.12 allows remote authentica… CWE-22
Path Traversal 		CVE-2014-8959 2024-11-21 11:20 2014-11-30 Show GitHub Exploit DB Packet Storm
278840 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.6, 4.1.x before 4.1.14.7, and 4.2.x before 4.2.12 allow remote authenticated users to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2014-8958 2024-11-21 11:20 2014-11-30 Show GitHub Exploit DB Packet Storm