Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226651	6.8	警告	Sitecom	-	Sitecom WLM-2501 におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1922	2013-01-25 14:16	2013-01-24	Show	GitHub Exploit DB Packet Storm

226652	4.3	警告	Simple Realty Themes	-	WordPress 用 Advanced Text Widget プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4618	2013-01-25 14:15	2013-01-24	Show	GitHub Exploit DB Packet Storm

226653	4.3	警告	IBM	-	WebSphere Application Server (WAS) におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2013-01-25 12:01	2013-01-25	Show	GitHub Exploit DB Packet Storm

226654	2.1	注意	MySQL AB	-	MySQL における権限チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4452	2013-01-24 17:39	2012-10-9	Show	GitHub Exploit DB Packet Storm

226655	4	警告	Jan Kara	-	Linux DiskQuota における hosts.deny の TCP Wrapper ルールを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3417	2013-01-24 17:36	2012-08-13	Show	GitHub Exploit DB Packet Storm

226656	7.5	危険	シックス・アパート株式会社	-	Movable Type の mt-upgrade.cgi における eval インジェクションおよび SQL インジェクションの脆弱性	CWE-287 不適切な認証	CVE-2013-0209	2013-01-24 14:48	2013-01-7	Show	GitHub Exploit DB Packet Storm

226657	7.5	危険	Nagios Enterprises, LLC The Icinga Project	-	Nagios Core の history.cgi におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6096	2013-01-24 14:47	2013-01-12	Show	GitHub Exploit DB Packet Storm

226658	1.5	注意	シトリックス・システムズ Apache Software Foundation	-	Apache CloudStack および Citrix CloudPlatform における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-5616	2013-01-24 14:46	2013-01-9	Show	GitHub Exploit DB Packet Storm

226659	4.3	警告	Activision Publishing	-	iOS 用 Call of Duty Elite における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2012-4918	2013-01-24 14:45	2013-01-22	Show	GitHub Exploit DB Packet Storm

226660	1.9	注意	Linux	-	Linux Kernel の KVM サブシステムにおけるサービス運用妨害 (カーネル OOPS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-4461	2013-01-24 14:44	2012-12-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274701	-	mozilla	firefox	Mozilla Firefox before 42.0, when NTLM v1 is enabled for HTTP authentication, allows remote attackers to obtain sensitive hostname information by constructing a crafted web site that sends an NTLM re…	CWE-200 Information Exposure	CVE-2015-4515	2024-11-21 11:31	2015-11-5	Show	GitHub Exploit DB Packet Storm

274702	-	mozilla	firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-4514	2024-11-21 11:31	2015-11-5	Show	GitHub Exploit DB Packet Storm

274703	-	mozilla	firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to cause a denial of service (memory corruption and a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-4513	2024-11-21 11:31	2015-11-5	Show	GitHub Exploit DB Packet Storm

274704	-	fedoraproject opensuse polkit_project	fedora opensuse polkit	Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers…	CWE-189 Numeric Errors	CVE-2015-4625	2024-11-21 11:31	2015-10-27	Show	GitHub Exploit DB Packet Storm

274705	-	owncloud	owncloud_desktop_client	ownCloud Desktop Client before 1.8.2 does not call QNetworkReply::ignoreSslErrors with the list of errors to be ignored, which allows man-in-the-middle attackers to bypass the user's certificate dist…	NVD-CWE-Other	CVE-2015-4456	2024-11-21 11:31	2015-10-26	Show	GitHub Exploit DB Packet Storm

274706	-	oracle	solaris	Unspecified vulnerability in Oracle Sun Solaris 11.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Solaris Kernel Zones, a different vulnera…	NVD-CWE-noinfo	CVE-2015-4907	2024-11-21 11:31	2015-10-22	Show	GitHub Exploit DB Packet Storm

274707	-	oracle	javafx jre jdk	Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors related to JavaFX, a different vulnerability than CVE-2015-490…	NVD-CWE-noinfo	CVE-2015-4906	2024-11-21 11:31	2015-10-22	Show	GitHub Exploit DB Packet Storm

274708	-	oracle	mysql	Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML.	NVD-CWE-noinfo	CVE-2015-4905	2024-11-21 11:31	2015-10-22	Show	GitHub Exploit DB Packet Storm

274709	-	oracle	mysql	Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to libmysqld.	NVD-CWE-noinfo	CVE-2015-4904	2024-11-21 11:31	2015-10-22	Show	GitHub Exploit DB Packet Storm

274710	-	oracle	jre jdk	Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to RMI.	NVD-CWE-noinfo	CVE-2015-4903	2024-11-21 11:31	2015-10-22	Show	GitHub Exploit DB Packet Storm