Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232231	4.7	警告	シトリックス・システムズ	-	Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性	CWE-16 環境設定	CVE-2012-3496	2012-12-7 15:34	2012-09-5	Show	GitHub Exploit DB Packet Storm

232232	2.1	注意	シトリックス・システムズ	-	Xen および Citrix XenServer におけるサービス運用妨害 (ホストクラッシュ) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3494	2012-12-7 15:32	2012-09-5	Show	GitHub Exploit DB Packet Storm

232233	2.7	注意	シトリックス・システムズ	-	Xen の PyGrub ブートローダにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-2625	2012-12-7 15:30	2012-07-4	Show	GitHub Exploit DB Packet Storm

232234	7.2	危険	マイクロソフト	-	Intel CPU で動作する 64bit OS や仮想化環境に権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2012-0217	2012-12-7 15:29	2012-06-13	Show	GitHub Exploit DB Packet Storm

232235	10	危険	ヒューレット・パッカード	-	HP Network Node Manager i における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3275	2012-12-7 15:15	2012-12-4	Show	GitHub Exploit DB Packet Storm

232236	10	危険	ヒューレット・パッカード	-	HP Intelligent Management Center におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3274	2012-12-7 15:15	2012-12-4	Show	GitHub Exploit DB Packet Storm

232237	5	警告	ヒューレット・パッカード	-	HP LaserJet Pro および LaserJet における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-3273	2012-12-7 15:11	2012-12-3	Show	GitHub Exploit DB Packet Storm

232238	4.3	警告	ヒューレット・パッカード	-	HP Color LaserJet および LaserJet におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3272	2012-12-7 15:10	2012-12-3	Show	GitHub Exploit DB Packet Storm

232239	5	警告	VMware	-	VMware SpringSource Spring Security における有効なユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2012-5055	2012-12-7 15:09	2012-10-9	Show	GitHub Exploit DB Packet Storm

232240	4.3	警告	VMware	-	VMware SpringSource Spring Security におけるクロスサイトリクエストフォージェリの脆弱性	CWE-94 コード・インジェクション	CVE-2011-2732	2012-12-7 15:07	2011-09-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293491	-	moodle	moodle	The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an ad…	CWE-200 Information Exposure	CVE-2012-5473	2024-11-21 10:44	2012-11-21	Show	GitHub Exploit DB Packet Storm

293492	-	moodle	moodle	lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 allows remote authenticated users to bypass intended access restrictions via a modified value of a frozen form field.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5472	2024-11-21 10:44	2012-11-21	Show	GitHub Exploit DB Packet Storm

293493	-	moodle	moodle	The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5471	2024-11-21 10:44	2012-11-21	Show	GitHub Exploit DB Packet Storm

293494	-	firebirdsql	firebird	TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL …	CWE-399 Resource Management Errors	CVE-2012-5529	2024-11-21 10:44	2012-11-20	Show	GitHub Exploit DB Packet Storm

293495	-	apple	cups	CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local use…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5519	2024-11-21 10:44	2012-11-20	Show	GitHub Exploit DB Packet Storm

293496	-	asial	monaca_debugger	The Asial Monaca Debugger application before 1.4.2 for Android allows remote attackers to obtain sensitive (1) account or (2) session ID information in a system log file via a crafted application.	CWE-200 Information Exposure	CVE-2012-5172	2024-11-21 10:44	2012-11-17	Show	GitHub Exploit DB Packet Storm

293497	-	mantisbt	mantisbt	core/email_api.php in MantisBT before 1.2.12 does not properly manage the sending of e-mail notifications about restricted bugs, which might allow remote authenticated users to obtain sensitive infor…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5523	2024-11-21 10:44	2012-11-16	Show	GitHub Exploit DB Packet Storm

293498	-	mantisbt	mantisbt	MantisBT before 1.2.12 does not use an expected default value during decisions about whether a user may modify the status of a bug, which allows remote authenticated users to bypass intended access r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5522	2024-11-21 10:44	2012-11-16	Show	GitHub Exploit DB Packet Storm

293499	-	vmware	player workstation	Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "s…	NVD-CWE-Other	CVE-2012-5459	2024-11-21 10:44	2012-11-14	Show	GitHub Exploit DB Packet Storm

293500	-	vmware	player workstation	VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a cra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5458	2024-11-21 10:44	2012-11-14	Show	GitHub Exploit DB Packet Storm