Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232301 4.3 警告 Dennis Blake - Drupal 用 Colorbox Node モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4474 2012-12-4 16:24 2012-07-11 Show GitHub Exploit DB Packet Storm
232302 3.5 注意 Christian Johansson - Drupal 用 Restrict node page view モジュールにおける未公開のノードにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4473 2012-12-4 16:21 2012-07-11 Show GitHub Exploit DB Packet Storm
232303 5.1 警告 David Alkire - Drupal 用 Drag & Drop Gallery モジュールにおける任意の PHP コードを実行される脆弱性 CWE-Other
その他 		CVE-2012-4472 2012-12-4 16:20 2012-07-11 Show GitHub Exploit DB Packet Storm
232304 5 警告 Dominique CLAUSE - Drupal 用 Search Autocomplete モジュールにおけるオートコンプリートを無効される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4471 2012-12-4 16:19 2012-07-11 Show GitHub Exploit DB Packet Storm
232305 7.5 危険 Philip Ludlam - Drupal 用 Listhandler モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4470 2012-12-4 16:13 2012-07-11 Show GitHub Exploit DB Packet Storm
232306 2.6 注意 Simon Rycroft - Drupal 用 Hashcash モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4469 2012-12-4 15:17 2012-06-21 Show GitHub Exploit DB Packet Storm
232307 4.3 警告 Privatemsg Project - Drupal 用 Privatemsg モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4468 2012-12-4 15:16 2012-06-20 Show GitHub Exploit DB Packet Storm
232308 2.1 注意 Python Software Foundation - Python Keyring におけるパスワードを取得される脆弱性 CWE-310
暗号の問題 		CVE-2012-4571 2012-12-4 14:30 2012-11-20 Show GitHub Exploit DB Packet Storm
232309 7.5 危険 libssh - libssh におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4560 2012-12-4 14:27 2012-11-20 Show GitHub Exploit DB Packet Storm
232310 7.5 危険 PS Project Management Team - libunity-webapps におけるサービス運用妨害 (メモリ破損およびクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4551 2012-12-4 14:25 2012-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293441 - redhat cloudforms Grinder in Red Hat CloudForms before 1.1 uses world-writable permissions for /var/lib/pulp/cache/grinder/, which allows local users to modify grinder cache files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5605 2024-11-21 10:44 2013-01-5 Show GitHub Exploit DB Packet Storm
293442 - redhat cloudforms proxies_controller.rb in Katello in Red Hat CloudForms before 1.1 does not properly check permissions, which allows remote authenticated users to read consumer certificates or change arbitrary users'… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5603 2024-11-21 10:44 2013-01-5 Show GitHub Exploit DB Packet Storm
293443 - libtiff libtiff Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5581 2024-11-21 10:44 2013-01-5 Show GitHub Exploit DB Packet Storm
293444 - redhat enterprise_virtualization_manager Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, when moving disks between storage domains, does not properly wipe-after-delete, which prevents disks from being securely deleted and mig… CWE-200
Information Exposure 		CVE-2012-5516 2024-11-21 10:44 2013-01-5 Show GitHub Exploit DB Packet Storm
293445 - torproject tor The connection_edge_process_relay_cell function in or/relay.c in Tor before 0.2.3.25 maintains circuits even if an unexpected SENDME cell arrives, which might allow remote attackers to cause a denial… CWE-399
 Resource Management Errors 		CVE-2012-5573 2024-11-21 10:44 2013-01-1 Show GitHub Exploit DB Packet Storm
293446 - cisco skinny_client_control_protocol_software
unified_ip_phone
unified_ip_phone_7906g 		The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows … CWE-20
 Improper Input Validation  		CVE-2012-5445 2024-11-21 10:44 2012-12-28 Show GitHub Exploit DB Packet Storm
293447 - linux linux_kernel The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service (daemon exit) via a crafted application… NVD-CWE-noinfo
CVE-2012-5532 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
293448 - openstack grizzly
folsom 		OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which a… CWE-200
Information Exposure 		CVE-2012-5625 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
293449 - openstack keystone tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud (Amazon EC2) is configured, uses world-readable permissions for /etc/keystone/ec2rc, which allows loca… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5483 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
293450 - citrix xenapp The XML Service interface in Citrix XenApp 6.5 and 6.5 Feature Pack 1 allows remote attackers to execute arbitrary code via unspecified vectors. NVD-CWE-noinfo
CVE-2012-5161 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm