Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
231641 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-2888 2012-12-26 18:02 2012-09-25 Show GitHub Exploit DB Packet Storm
231642 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-2887 2012-12-26 18:01 2012-09-25 Show GitHub Exploit DB Packet Storm
231643 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2886 2012-12-26 18:00 2012-09-25 Show GitHub Exploit DB Packet Storm
231644 2.6 注意 VMware
Python Software Foundation
- Python SimpleHTTPServer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4940 2012-12-26 18:00 2012-06-19 Show GitHub Exploit DB Packet Storm
231645 7.5 危険 Google - Google Chrome におけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題
CVE-2012-2885 2012-12-26 17:59 2012-09-25 Show GitHub Exploit DB Packet Storm
231646 5 警告 Google - Google Chrome で使用される Skia におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー
CVE-2012-2884 2012-12-26 17:58 2012-09-25 Show GitHub Exploit DB Packet Storm
231647 4.6 警告 GNU Project
VMware
- GNU C Library の stdlib における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-3480 2012-12-26 17:57 2012-08-25 Show GitHub Exploit DB Packet Storm
231648 3.3 注意 GNU Project
VMware
- GNU C Library の addmntent 関数における /etc/mtab ファイルの破損を誘発される脆弱性 CWE-16
環境設定
CVE-2011-1089 2012-12-26 17:55 2011-04-10 Show GitHub Exploit DB Packet Storm
231649 4.4 警告 Fabrice Bellard - Qemu の bdrv_open 関数における任意のファイルを上書きされる脆弱性 CWE-DesignError
CVE-2012-2652 2012-12-26 17:48 2012-08-7 Show GitHub Exploit DB Packet Storm
231650 7.5 危険 Google - Google Chrome で使用される Skia におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2012-2883 2012-12-26 17:40 2012-09-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298171 9.8 CRITICAL
Network
nuxeo nuxeo RichFaces implementation in Nuxeo Platform 5.6.0 before HF27 and 5.8.0 before HF-01 does not restrict the classes for which deserialization methods can be called, which allows remote attackers to exe… CWE-502
 Deserialization of Untrusted Data
CVE-2013-4521 2024-11-21 10:55 2020-02-7 Show GitHub Exploit DB Packet Storm
298172 7.5 HIGH
Network
mediawiki
fedoraproject
mediawiki
fedora
The CentralNotice extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 sets the Cache-Control header to cache session cookies when a user is autocreated, which allows… CWE-384
 Session Fixation
CVE-2013-4572 2024-11-21 10:55 2020-02-7 Show GitHub Exploit DB Packet Storm
298173 7.5 HIGH
Network
gnome
redhat
evolution
evolution_data_server
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Server 3.9.5 and earlier does not properly select the GPG key to use for email … CWE-200
Information Exposure
CVE-2013-4166 2024-11-21 10:55 2020-02-7 Show GitHub Exploit DB Packet Storm
298174 6.1 MEDIUM
Network
hitmyserver hms_testimonials Multiple cross-site scripting (XSS) vulnerabilities in the HMS Testimonials plugin before 2.0.11 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) imag… CWE-79
Cross-site Scripting
CVE-2013-4241 2024-11-21 10:55 2020-01-31 Show GitHub Exploit DB Packet Storm
298175 6.5 MEDIUM
Network
flippy_project flippy The Flippy module 7.x-1.x before 7.x-1.2 for Drupal does not properly restrict access to nodes, which allows remote authenticated users with the permission to access content to read a link or alias t… CWE-200
Information Exposure
CVE-2013-4187 2024-11-21 10:55 2020-01-31 Show GitHub Exploit DB Packet Storm
298176 8.8 HIGH
Network
gitlab gitlab
gitlab-shell
The parse_cmd function in lib/gitlab_shell.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated… CWE-269
 Improper Privilege Management
CVE-2013-4583 2024-11-21 10:55 2020-01-29 Show GitHub Exploit DB Packet Storm
298177 6.5 MEDIUM
Network
gitlab gitlab
gitlab-shell
The (1) create_branch, (2) create_tag, (3) import_project, and (4) fork_project functions in lib/gitlab_projects.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition befo… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere
CVE-2013-4582 2024-11-21 10:55 2020-01-29 Show GitHub Exploit DB Packet Storm
298178 9.8 CRITICAL
Network
pwgen_project pwgen The Phonemes mode in Pwgen 2.06 generates predictable passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack. CWE-307
mproper Restriction of Excessive Authentication Attempts
CVE-2013-4441 2024-11-21 10:55 2020-01-28 Show GitHub Exploit DB Packet Storm
298179 9.1 CRITICAL
Network
portable_phpmyadmin_project portable_phpmyadmin WordPress Portable phpMyAdmin Plugin has an authentication bypass vulnerability CWE-287
Improper Authentication
CVE-2013-4462 2024-11-21 10:55 2020-01-28 Show GitHub Exploit DB Packet Storm
298180 9.1 CRITICAL
Network
tejimaya openpne OpenPNE 3 versions 3.8.7, 3.6.11, 3.4.21.1, 3.2.7.6, 3.0.8.5 has an External Entity Injection Vulnerability CWE-611
XXE
CVE-2013-4333 2024-11-21 10:55 2020-01-25 Show GitHub Exploit DB Packet Storm