Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229261	4.3	警告	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3327	2013-02-21 18:22	2012-02-15	Show	GitHub Exploit DB Packet Storm

229262	3.5	注意	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3322	2013-02-21 18:21	2012-02-15	Show	GitHub Exploit DB Packet Storm

229263	6.5	警告	IBM	-	IBM SmartCloud Control Desk におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3321	2013-02-21 18:21	2012-02-15	Show	GitHub Exploit DB Packet Storm

229264	3.5	注意	IBM	-	複数の IBM 製品の TPAE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3316	2013-02-21 18:20	2012-02-15	Show	GitHub Exploit DB Packet Storm

229265	7.5	危険	IBM	-	IBM SAN Volume Controller および Storwize の管理 GUI における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2012-6354	2013-02-21 18:20	2013-02-5	Show	GitHub Exploit DB Packet Storm

229266	5	警告	シスコシステムズ	-	Cisco Unity Connection におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1129	2013-02-21 16:41	2013-02-15	Show	GitHub Exploit DB Packet Storm

229267	6.8	警告	シスコシステムズ	-	複数の Cisco 製品のコマンドラインインターフェイスにおける root 権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1125	2013-02-21 16:40	2013-02-15	Show	GitHub Exploit DB Packet Storm

229268	2.6	注意	コンクリートファイブ	-	concrete5 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5181	2013-02-20 16:01	2012-12-21	Show	GitHub Exploit DB Packet Storm

229269	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0008	2013-02-20 14:31	2013-01-8	Show	GitHub Exploit DB Packet Storm

229270	7.5	危険	Google	-	Linux 上で稼働する Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0838	2013-02-20 13:41	2013-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292501	-	advantech	advantech_webaccess	Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the UserName parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0990	2024-11-21 11:03	2014-09-20	Show	GitHub Exploit DB Packet Storm

292502	-	advantech	advantech_webaccess	Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the AccessCode2 parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0989	2024-11-21 11:03	2014-09-20	Show	GitHub Exploit DB Packet Storm

292503	-	advantech	advantech_webaccess	Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the AccessCode parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0988	2024-11-21 11:03	2014-09-20	Show	GitHub Exploit DB Packet Storm

292504	-	advantech	advantech_webaccess	Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the NodeName2 parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0987	2024-11-21 11:03	2014-09-20	Show	GitHub Exploit DB Packet Storm

292505	-	advantech	advantech_webaccess	Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the GotoCmd parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0986	2024-11-21 11:03	2014-09-20	Show	GitHub Exploit DB Packet Storm

292506	-	advantech	advantech_webaccess	Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the NodeName parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0985	2024-11-21 11:03	2014-09-20	Show	GitHub Exploit DB Packet Storm

292507	-	embarcadero	embarcadero_delphi_xe6 embarcadero_c\+\+builder_xe6	Buffer overflow in the Vcl.Graphics.TPicture.Bitmap implementation in the Visual Component Library (VCL) in Embarcadero Delphi XE6 20.0.15596.9843 and C++ Builder XE6 20.0.15596.9843 allows remote at…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0993	2024-11-21 11:03	2014-09-15	Show	GitHub Exploit DB Packet Storm

292508	-	ibm	rational_license_key_server	The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 does not set the secure flag for the session cookie in an https session, which makes it easier f…	CWE-200 Information Exposure	CVE-2014-0909	2024-11-21 11:03	2014-09-10	Show	GitHub Exploit DB Packet Storm

292509	-	ibm	flex_system_manager	The Configuration Patterns component in IBM Flex System Manager (FSM) 1.2.0.x, 1.2.1.x, 1.3.0.x, and 1.3.1.x uses a weak algorithm in an encryption step during Chassis Management Module (CMM) account…	CWE-310 Cryptographic Issues	CVE-2014-0897	2024-11-21 11:03	2014-08-29	Show	GitHub Exploit DB Packet Storm

292510	-	little_kernel_project	little_kernel_bootloader	The boot_linux_from_mmc function in app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other produ…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0974	2024-11-21 11:03	2014-08-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed