Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231161 6 警告 Lars Hjemli - cgit の syntax-highlighting.sh における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2012-4548 2012-12-7 15:52 2012-10-28 Show GitHub Exploit DB Packet Storm
231162 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5368 2012-12-7 15:42 2012-10-12 Show GitHub Exploit DB Packet Storm
231163 3.5 注意 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5339 2012-12-7 15:41 2012-10-12 Show GitHub Exploit DB Packet Storm
231164 6.8 警告 レッドハット - IcedTea-Web の IcedTeaScriptablePluginObject.cc における重要な情報を取得される脆弱性 CWE-189
数値処理の問題 		CVE-2012-4540 2012-12-7 15:40 2012-11-7 Show GitHub Exploit DB Packet Storm
231165 5.6 警告 シトリックス・システムズ - Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3498 2012-12-7 15:38 2012-09-5 Show GitHub Exploit DB Packet Storm
231166 6.1 警告 シトリックス・システムズ - Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3495 2012-12-7 15:37 2012-09-5 Show GitHub Exploit DB Packet Storm
231167 4.7 警告 シトリックス・システムズ - Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2012-3496 2012-12-7 15:34 2012-09-5 Show GitHub Exploit DB Packet Storm
231168 2.1 注意 シトリックス・システムズ - Xen および Citrix XenServer におけるサービス運用妨害 (ホストクラッシュ) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3494 2012-12-7 15:32 2012-09-5 Show GitHub Exploit DB Packet Storm
231169 2.7 注意 シトリックス・システムズ - Xen の PyGrub ブートローダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2625 2012-12-7 15:30 2012-07-4 Show GitHub Exploit DB Packet Storm
231170 7.2 危険 マイクロソフト - Intel CPU で動作する 64bit OS や仮想化環境に権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2012-0217 2012-12-7 15:29 2012-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293071 - qualiteam x-cart Cross-site scripting (XSS) vulnerability in products_map.php in X-Cart Gold 4.5 allows remote attackers to inject arbitrary web script or HTML via the symb parameter. CWE-79
Cross-site Scripting 		CVE-2012-2570 2024-11-21 10:39 2012-08-16 Show GitHub Exploit DB Packet Storm
293072 - microsoft windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista 		Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Win… CWE-399
 Resource Management Errors 		CVE-2012-2527 2024-11-21 10:39 2012-08-15 Show GitHub Exploit DB Packet Storm
293073 - microsoft windows_xp The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP3 does not properly process packets in memory, which allows remote attackers to execute arbitrary code by sending crafted RD… CWE-94
Code Injection 		CVE-2012-2526 2024-11-21 10:39 2012-08-15 Show GitHub Exploit DB Packet Storm
293074 - microsoft office Microsoft Office 2007 SP2 and SP3 and 2010 SP1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Computer Graphics Metafile (CGM) file, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2524 2024-11-21 10:39 2012-08-15 Show GitHub Exploit DB Packet Storm
293075 - microsoft internet_explorer
jscript
vbscript 		Integer overflow in Microsoft Internet Explorer 8 and 9, JScript 5.8, and VBScript 5.8 on 64-bit platforms allows remote attackers to execute arbitrary code by leveraging an incorrect size calculatio… CWE-189
Numeric Errors 		CVE-2012-2523 2024-11-21 10:39 2012-08-15 Show GitHub Exploit DB Packet Storm
293076 - microsoft internet_explorer Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a malformed virtual function table after this … CWE-94
Code Injection 		CVE-2012-2522 2024-11-21 10:39 2012-08-15 Show GitHub Exploit DB Packet Storm
293077 - microsoft internet_explorer Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Asynchronous NULL Objec… CWE-94
Code Injection 		CVE-2012-2521 2024-11-21 10:39 2012-08-15 Show GitHub Exploit DB Packet Storm
293078 - d.r.commander libjpeg-turbo Heap-based buffer overflow in the get_sos function in jdmarker.c in libjpeg-turbo 1.2.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code vi… CWE-787
 Out-of-bounds Write 		CVE-2012-2806 2024-11-21 10:39 2012-08-14 Show GitHub Exploit DB Packet Storm
293079 - redhat certificate_system
dogtag_certificate_system 		Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System allow remote attackers to inject arbitrary web script or HTML via u… CWE-79
Cross-site Scripting 		CVE-2012-2662 2024-11-21 10:39 2012-08-14 Show GitHub Exploit DB Packet Storm
293080 - e-supportportal escon_supportportal Multiple cross-site scripting (XSS) vulnerabilities in ESCON SupportPortal Professional Edition 3.0 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a… CWE-79
Cross-site Scripting 		CVE-2012-2590 2024-11-21 10:39 2012-08-13 Show GitHub Exploit DB Packet Storm