Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
231471 2.6 注意 Olive Toast Software Ltd. - Documents Pro (旧 Files HD) におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-5184 2013-01-18 12:02 2013-01-18 Show GitHub Exploit DB Packet Storm
231472 4.3 警告 アドビシステムズ - Adobe ColdFusion における制限されたディレクトリにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0629 2013-01-17 18:11 2013-01-4 Show GitHub Exploit DB Packet Storm
231473 5 警告 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2013-0631 2013-01-17 18:09 2013-01-4 Show GitHub Exploit DB Packet Storm
231474 10 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-1530 2013-01-17 17:14 2013-01-8 Show GitHub Exploit DB Packet Storm
231475 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2012-5078 2013-01-17 16:53 2012-10-16 Show GitHub Exploit DB Packet Storm
231476 10 危険 サン・マイクロシステムズ - Oracle Java SE の Java Runtime Environment におけるライブラリの処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-5088 2013-01-17 16:50 2012-10-16 Show GitHub Exploit DB Packet Storm
231477 6.4 警告 サン・マイクロシステムズ - Oracle Java SE の Java Runtime Environment における JAX-WS の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-5074 2013-01-17 16:46 2012-10-16 Show GitHub Exploit DB Packet Storm
231478 5 警告 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2012-5082 2013-01-17 16:45 2012-10-16 Show GitHub Exploit DB Packet Storm
231479 7.6 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2012-5080 2013-01-17 16:44 2012-10-16 Show GitHub Exploit DB Packet Storm
231480 6.4 警告 Google - Google Chrome におけるファイルアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0829 2013-01-17 14:32 2013-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295021 7.5 HIGH
Network
hapi inert The inert directory handler in inert node module before 1.1.1 always allows files in hidden directories to be served, even when `showHidden` is false. CWE-22
Path Traversal
CVE-2014-10068 2024-11-21 11:03 2018-05-30 Show GitHub Exploit DB Packet Storm
295022 5.9 MEDIUM
Network
paypal-ipn_project paypal-ipn paypal-ipn before 3.0.0 uses the `test_ipn` parameter (which is set by the PayPal IPN simulator) to determine if it should use the production PayPal site or the sandbox. With a bit of time, an attack… CWE-287
Improper Authentication
CVE-2014-10067 2024-11-21 11:03 2018-05-30 Show GitHub Exploit DB Packet Storm
295023 7.1 HIGH
Network
ibm rational_clearquest Multiple XML external entity (XXE) vulnerabilities in (1) CQWeb / CM Server, (2) ClearQuest Native client, (3) ClearQuest Eclipse client, and (4) ClearQuest Eclipse Designer components in IBM Rationa… CWE-611
XXE
CVE-2014-0950 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295024 9.1 CRITICAL
Network
ibm rational_clearcase Multiple XML external entity (XXE) vulnerabilities in the (1) CCRC WAN Server / CM Server, (2) Perl CC/CQ integration trigger scripts, (3) CMAPI Java interface, (4) ClearCase remote client, and (5) C… CWE-611
XXE
CVE-2014-0931 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295025 8.1 HIGH
Network
ibm sterling_b2b_integrator
sterling_file_gateway
The ActiveMQ admin user interface in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to bypass authentication by leveraging knowledge of the port… CWE-287
Improper Authentication
CVE-2014-0927 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295026 5.3 MEDIUM
Network
ibm sterling_b2b_integrator
sterling_file_gateway
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote attackers to obtain sensitive product information via vectors related to an error page. IBM X-Force ID: 9207… CWE-200
Information Exposure
CVE-2014-0912 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295027 8.8 HIGH
Network
google android The Device Administrator code in Android before 4.4.1_r1 might allow attackers to spoof device administrators and consequently bypass MDM restrictions by leveraging failure to update the mAdminMap da… CWE-20
 Improper Input Validation 
CVE-2014-0900 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295028 7.5 HIGH
Network
wpitchoune
debian
psensor
debian_linux
The create_response function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory. CWE-22
Path Traversal
CVE-2014-10073 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295029 7.5 HIGH
Network
qualcomm mdm9625_firmware
sd_800_firmware
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625 and SD 800, a fuse is not correctly blown on a secure device. CWE-254
 7PK - Security Features
CVE-2014-10063 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm
295030 9.8 CRITICAL
Network
qualcomm mdm9615_firmware
mdm9625_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_400_firmware
sd_800_firmware
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, SD 210/SD 212/SD 205, SD 400, and SD 800, improper access control on ATCMD service allows … CWE-284
Improper Access Control
CVE-2014-10059 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm