Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231631	4.3	警告	Smarty	-	Smarty の SmartyException クラスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4437	2012-10-2 15:55	2012-10-1	Show	GitHub Exploit DB Packet Storm

231632	7.5	危険	OptiPNG	-	OptiPNG の opngreduc.c における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-4432	2012-10-2 15:54	2012-09-16	Show	GitHub Exploit DB Packet Storm

231633	6.8	警告	GNOME Project	-	GNOME の gnome-shell プラグインにおける任意の拡張機能のダウンロードを強制される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4427	2012-10-2 15:42	2012-10-1	Show	GitHub Exploit DB Packet Storm

231634	7.5	危険	Apache Software Foundation	-	Guacamole の libguac におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4415	2012-10-2 15:13	2012-10-1	Show	GitHub Exploit DB Packet Storm

231635	10	危険	Condor Project	-	Condor における脆弱性	CWE-noinfo 情報不足	CVE-2012-5197	2012-10-2 14:34	2012-09-19	Show	GitHub Exploit DB Packet Storm

231636	10	危険	Condor Project	-	Condor におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5196	2012-10-2 14:31	2012-09-19	Show	GitHub Exploit DB Packet Storm

231637	6.4	警告	Condor Project	-	Condor のファイルシステム認証におけるユーザになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2012-3492	2012-10-2 14:20	2012-09-19	Show	GitHub Exploit DB Packet Storm

231638	4	警告	Condor Project	-	Condor におけるアイドル状態の任意のジョブを削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3491	2012-10-2 14:09	2012-09-19	Show	GitHub Exploit DB Packet Storm

231639	6.8	警告	トレンドマイクロ	-	Trend Micro InterScan Messaging Security Suite におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2996	2012-10-1 18:29	2012-09-17	Show	GitHub Exploit DB Packet Storm

231640	4.3	警告	トレンドマイクロ	-	Trend Micro InterScan Messaging Security Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2995	2012-10-1 18:16	2012-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292921	-	moodle	moodle	Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled u…	CWE-200 Information Exposure	CVE-2012-2353	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

292922	-	florian_weber	spaces	The Spaces module 6.x-3.x before 6.x-3.4 for Drupal does not enforce permissions on non-object pages, which allows remote attackers to obtain sensitive information and possibly have other impacts via…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2303	2024-11-21 10:38	2012-07-19	Show	GitHub Exploit DB Packet Storm

292923	-	rubygems	mail_gem	The Mail gem before 2.4.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery.	CWE-20 Improper Input Validation	CVE-2012-2140	2024-11-21 10:38	2012-07-19	Show	GitHub Exploit DB Packet Storm

292924	-	rubygems	mail_gem	Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. (dot dot) in the…	CWE-22 Path Traversal	CVE-2012-2139	2024-11-21 10:38	2012-07-19	Show	GitHub Exploit DB Packet Storm

292925	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not properly implement the JavaScript …	NVD-CWE-Other	CVE-2012-1967	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

292926	-	mozilla	firefox	Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cro…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1966	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

292927	-	mozilla	firefox	Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not properly establish the security context of a feed: URL, which allows remote attackers to bypass unspecified cross-site scrip…	CWE-79 Cross-site Scripting	CVE-2012-1965	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

292928	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	The certificate-warning functionality in browser/components/certerror/content/aboutCertError.xhtml in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 12.0, T…	NVD-CWE-noinfo	CVE-2012-1964	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

292929	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	The Content Security Policy (CSP) functionality in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey be…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1963	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

292930	-	mozilla	firefox thunderbird thunderbird_esr seamonkey	Use-after-free vulnerability in the JSDependentString::undepend function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before…	CWE-399 Resource Management Errors	CVE-2012-1962	2024-11-21 10:38	2012-07-18	Show	GitHub Exploit DB Packet Storm