Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231921	7.5	危険	レッドハット	-	複数の JBoss Enterprise 製品における JNDI ツリーにアイテムを追加される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4605	2012-11-27 20:07	2012-06-20	Show	GitHub Exploit DB Packet Storm

231922	6.8	警告	レッドハット	-	複数の JBoss Enterprise 製品における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-4085	2012-11-27 20:06	2011-11-16	Show	GitHub Exploit DB Packet Storm

231923	6	警告	レッドハット	-	複数の JBoss Enterprise 製品におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-2908	2012-11-27 20:05	2012-08-8	Show	GitHub Exploit DB Packet Storm

231924	5	警告	レッドハット	-	JBoss Enterprise Portal Platform の JBossWS における平文データを取得される脆弱性	CWE-310 暗号の問題	CVE-2011-1096	2012-11-27 20:03	2012-10-8	Show	GitHub Exploit DB Packet Storm

231925	4.3	警告	JRuby	-	JRuby の正規表現エンジンにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1330	2012-11-27 20:02	2010-04-26	Show	GitHub Exploit DB Packet Storm

231926	7.5	危険	OpenVAS	-	OpenVAS Manager の manage_sql.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5520	2012-11-27 16:58	2012-11-12	Show	GitHub Exploit DB Packet Storm

231927	5	警告	awcm	-	ar web content manager におけるサービス運用妨害 (ディスク消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2438	2012-11-27 16:58	2012-11-26	Show	GitHub Exploit DB Packet Storm

231928	5	警告	awcm	-	ar web content manager の cookie_gen.php における任意のクッキーを生成される脆弱性	CWE-287 不適切な認証	CVE-2012-2437	2012-11-27 16:57	2012-11-26	Show	GitHub Exploit DB Packet Storm

231929	5	警告	trousers	-	TrouSerS の tcsd におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-0698	2012-11-27 16:57	2012-01-13	Show	GitHub Exploit DB Packet Storm

231930	5	警告	LIGHTTPD	-	lighttpd の request.c におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-5533	2012-11-27 16:56	2012-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292401	-	kyocera	ah-k3001v xw300k xw320kr xw320k xw310k ah-k3002v	The KYOCERA AH-K3001V, AH-K3002V, WX300K, WX310K, WX320K, and WX320KR devices allow remote attackers to cause a denial of service (persistent reboot) via an e-mail message in an invalid format.	NVD-CWE-noinfo	CVE-2012-5174	2024-11-21 10:44	2012-11-30	Show	GitHub Exploit DB Packet Storm

292402	-	sgi	performance_co-pilot	The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5530	2024-11-21 10:44	2012-11-29	Show	GitHub Exploit DB Packet Storm

292403	-	oracle	jdk jre openjdk	Oracle Java SE 7 and earlier, and OpenJDK 7 and earlier, computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers…	CWE-310 Cryptographic Issues	CVE-2012-5373	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292404	-	rubinius	rubinius	Rubinius computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) …	CWE-310 Cryptographic Issues	CVE-2012-5372	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292405	-	ruby-lang	ruby	Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attac…	CWE-310 Cryptographic Issues	CVE-2012-5371	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292406	-	jruby	jruby	JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via…	CWE-310 Cryptographic Issues	CVE-2012-5370	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292407	-	google opensuse	chrome opensuse	Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during handling of the INPUT element, which allows remote attackers to cause a denial of service or possi…	CWE-20 Improper Input Validation	CVE-2012-5136	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292408	-	google opensuse	chrome opensuse	Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing.	CWE-399 Resource Management Errors	CVE-2012-5135	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292409	-	google xmlsoft apple	chrome libxml2 iphone_os	Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5134	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

292410	-	opensuse google	opensuse chrome	Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG filters.	CWE-416 Use After Free	CVE-2012-5133	2024-11-21 10:44	2012-11-28	Show	GitHub Exploit DB Packet Storm