Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229351 9.3 危険 Tracker Software Products - Tracker Software PDF-XChange の pdfxctrl.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5324 2012-10-11 15:00 2012-10-8 Show GitHub Exploit DB Packet Storm
229352 4.3 警告 k5n.us - Craig Knudsen WebCalendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0846 2012-10-11 14:58 2012-01-11 Show GitHub Exploit DB Packet Storm
229353 6.8 警告 XAVi Technologies - Xavi X7968 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5323 2012-10-11 14:57 2012-10-8 Show GitHub Exploit DB Packet Storm
229354 4.3 警告 XAVi Technologies - Xavi X7968 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5322 2012-10-11 14:57 2012-10-8 Show GitHub Exploit DB Packet Storm
229355 5.8 警告 Tiki Software Community Association - TikiWiki CMS/Groupware における任意の Web サイトのページをロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5321 2012-10-11 14:55 2012-10-8 Show GitHub Exploit DB Packet Storm
229356 6.8 警告 Sagemcom - Sagem F@ST 2604 の password.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5320 2012-10-11 14:53 2012-10-8 Show GitHub Exploit DB Packet Storm
229357 6.8 警告 D-Link Systems, Inc. - 複数の D-Link 製品の setup/security.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5319 2012-10-11 14:48 2012-10-8 Show GitHub Exploit DB Packet Storm
229358 6.8 警告 SocialCMS - SocialCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1416 2012-10-11 14:42 2012-10-8 Show GitHub Exploit DB Packet Storm
229359 6.8 警告 D-Link Systems, Inc. - D-Link DSL-2640B ファームウェアの redpass.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1308 2012-10-11 14:38 2012-10-8 Show GitHub Exploit DB Packet Storm
229360 9.3 危険 Speed Dreams
Bernhard Wymann		 - TORCS および Speed Dreams におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1189 2012-10-11 14:34 2012-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
299351 - apple mac_os_x
mac_os_x_server 		Format string vulnerability in mDNSResponderHelper in Apple Mac OS X 10.5.2 allows local users to execute arbitrary code via format string specifiers in the local hostname. CWE-134
Use of Externally-Controlled Format String 		CVE-2008-0989 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299352 - apple mac_os_x
mac_os_x_server 		notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have originated from the kernel, which allows local users to cause a denial of service via spoofed death notificat… CWE-200
Information Exposure 		CVE-2008-0990 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299353 - apple mac_os_x
mac_os_x_server 		Array index error in pax in Apple Mac OS X 10.5.2 allows context-dependent attackers to execute arbitrary code via an archive with a crafted length value. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0992 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299354 - apple mac_os_x
mac_os_x_server 		Preview in Apple Mac OS X 10.5.2 uses 40-bit RC4 when saving a PDF file with encryption, which makes it easier for attackers to decrypt the file via brute force methods. CWE-200
Information Exposure 		CVE-2008-0994 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299355 - apple mac_os_x
mac_os_x_server 		The Printing component in Apple Mac OS X 10.5.2 uses 40-bit RC4 when printing to an encrypted PDF file, which makes it easier for attackers to decrypt the file via brute force methods. CWE-200
Information Exposure 		CVE-2008-0995 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299356 - apple mac_os_x
mac_os_x_server 		The Printing component in Apple Mac OS X 10.5.2 might save authentication credentials to disk when starting a job on an authenticated print queue, which might allow local users to obtain the credenti… CWE-255
CWE-200
Credentials Management
Information Exposure 		CVE-2008-0996 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299357 - apple mac_os_x
mac_os_x_server 		Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted P… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0997 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299358 - apple mac_os_x
mac_os_x_server 		Unspecified vulnerability in NetCfgTool in the System Configuration component in Apple Mac OS X 10.4.11 and 10.5.2 allows local users to bypass authorization and execute arbitrary code via crafted di… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-0998 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299359 - apple mac_os_x
mac_os_x_server 		Apple Mac OS X 10.5.2 allows user-assisted attackers to cause a denial of service (crash) via a crafted Universal Disc Format (UDF) disk image, which triggers a NULL pointer dereference. CWE-20
 Improper Input Validation  		CVE-2008-0999 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm
299360 - apple safari Cross-site scripting (XSS) vulnerability in Apple Safari before 3.1 allows remote attackers to inject arbitrary web script or HTML via a crafted javascript: URL. CWE-79
Cross-site Scripting 		CVE-2008-1002 2017-08-8 10:29 2008-03-19 Show GitHub Exploit DB Packet Storm