Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231921 5 警告 The Tor Project - Tor の or/policies.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-4419 2012-11-15 17:12 2012-08-25 Show GitHub Exploit DB Packet Storm
231922 7.9 危険 VMware - VMware Workstation および VMware Player におけるホスト OS の権限を取得される脆弱性 CWE-Other
その他 		CVE-2012-5459 2012-11-15 16:44 2012-11-8 Show GitHub Exploit DB Packet Storm
231923 8.3 危険 VMware - VMware Workstation および VMware Player におけるホスト OS の権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5458 2012-11-15 16:43 2012-11-8 Show GitHub Exploit DB Packet Storm
231924 9.3 危険 VMware - 複数の VMware 製品で使用される VMware OVF Tool におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2012-3569 2012-11-15 16:43 2012-11-8 Show GitHub Exploit DB Packet Storm
231925 6.8 警告 IBM - IBM WebSphere Application Server におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4853 2012-11-15 16:42 2012-10-29 Show GitHub Exploit DB Packet Storm
231926 4.3 警告 IBM - IBM WebSphere Application Server の Liberty Profile におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4851 2012-11-15 16:41 2012-10-29 Show GitHub Exploit DB Packet Storm
231927 7.5 危険 IBM - IBM WebSphere Application Server の Liberty Profile における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4850 2012-11-15 16:39 2012-10-29 Show GitHub Exploit DB Packet Storm
231928 4 警告 IBM - IBM Cognos Business Intelligence におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-189
数値処理の問題 		CVE-2012-4847 2012-11-15 16:38 2012-11-14 Show GitHub Exploit DB Packet Storm
231929 5 警告 IBM - IBM WebSphere Application Server および WebSphere Virtual Enterprise におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3330 2012-11-15 16:37 2012-10-29 Show GitHub Exploit DB Packet Storm
231930 5.8 警告 OpenStack - OpenStack Dashboard の views/auth_forms.py におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3540 2012-11-15 14:27 2012-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293331 - moxa oncell_gateway_firmware
oncell_gateway_g3111
oncell_gateway_g3151
oncell_gateway_g3211
oncell_gateway_g3251 		Moxa OnCell Gateway G3111, G3151, G3211, and G3251 devices with firmware before 1.4 do not use a sufficient source of entropy for SSH and SSL keys, which makes it easier for remote attackers to obtai… CWE-310
Cryptographic Issues 		CVE-2012-3039 2024-11-21 10:40 2013-08-10 Show GitHub Exploit DB Packet Storm
293332 - wordpress
swfupload_project
tinymce 		wordpress
swfupload
image_manager 		Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, TinyMCE Image Manager 1.1, and other products, allows remote attackers t… CWE-79
Cross-site Scripting 		CVE-2012-3414 2024-11-21 10:40 2013-07-19 Show GitHub Exploit DB Packet Storm
293333 - canarylabs trendlink The SaveToFile method in a certain ActiveX control in TrendDisplay.dll in Canary Labs TrendLink 9.0.2.27051 and earlier does not properly restrict the creation of files, which allows remote attackers… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3022 2024-11-21 10:40 2013-04-16 Show GitHub Exploit DB Packet Storm
293334 - thekelleys
redhat 		dnsmasq
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Dnsmasq before 2.63test1, when used with certain libvirt configurations, replies to requests from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplificat… CWE-20
 Improper Input Validation  		CVE-2012-3411 2024-11-21 10:40 2013-03-6 Show GitHub Exploit DB Packet Storm
293335 - ibm change_and_configuration_management_database
tivoli_service_request_manager
tivoli_asset_management_for_it
maximo_asset_management
maximo_asset_management_essentials 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1, Maximo Asset Management Essentials 7.1, Tivoli Asset Management for IT 7.1 and 7.2, Tivoli Service Request Manager 7.1 and… CWE-79
Cross-site Scripting 		CVE-2012-3328 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
293336 - ibm smartcloud_control_desk IBM SmartCloud Control Desk 7.5 allows remote authenticated users to bypass intended access restrictions via vectors involving an expired password. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3321 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
293337 - ibm maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
tivoli_service_request_manager
maximo_service_desk
change_and_configuration_management_databas… 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Ser… CWE-79
Cross-site Scripting 		CVE-2012-3327 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
293338 - ibm maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
tivoli_service_request_manager
maximo_service_desk
change_and_configuration_management_databas… 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Ser… CWE-79
Cross-site Scripting 		CVE-2012-3322 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
293339 - ibm maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
tivoli_service_request_manager
maximo_service_desk
change_and_configuration_management_databas… 		Cross-site scripting (XSS) vulnerability in the Tivoli Process Automation Engine (TPAE) in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asse… CWE-79
Cross-site Scripting 		CVE-2012-3316 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
293340 - hp arcsight_connector_appliance_firmware
arcsight_connector_appliance
arcsight_logger 		Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to obtain sensitive information, modify data, or cau… NVD-CWE-noinfo
CVE-2012-3286 2024-11-21 10:40 2013-02-17 Show GitHub Exploit DB Packet Storm