Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
237511	7.8	危険	Fultek	-	Fultek WinTr Scada の Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-3011	2012-09-26 16:29	2012-09-18	Show	GitHub Exploit DB Packet Storm

237512	8.5	危険	DELL EMC (旧 EMC Corporation)	-	Windows 上で稼働する EMC RSA Authentication Agent および Client におけるトークン認証のステップを回避される脆弱性	CWE-287 不適切な認証	CVE-2012-2287	2012-09-26 16:08	2012-09-25	Show	GitHub Exploit DB Packet Storm

237513	7.5	危険	tinyguestbook	-	tinyguestbook の sign.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5201	2012-09-26 12:26	2012-01-3	Show	GitHub Exploit DB Packet Storm

237514	7.5	危険	DesDev Inc.	-	DedeCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5200	2012-09-26 12:26	2012-09-23	Show	GitHub Exploit DB Packet Storm

237515	4.3	警告	tinyguestbook	-	tinyguestbook の sign.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5199	2012-09-26 12:25	2011-12-23	Show	GitHub Exploit DB Packet Storm

237516	7.5	危険	Neturf	-	Neturf eCommerce Shopping Cart の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5198	2012-09-26 12:24	2012-09-23	Show	GitHub Exploit DB Packet Storm

237517	6.8	警告	Public Knowledge Project	-	Public Knowledge Project Open Harvester Systems におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5197	2012-09-26 12:23	2012-09-23	Show	GitHub Exploit DB Packet Storm

237518	6.8	警告	Public Knowledge Project	-	Public Knowledge Project Open Journal Systems におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5196	2012-09-26 12:23	2012-09-23	Show	GitHub Exploit DB Packet Storm

237519	6.8	警告	Public Knowledge Project	-	Public Knowledge Project Open Conference Systems におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5195	2012-09-26 12:22	2012-09-23	Show	GitHub Exploit DB Packet Storm

237520	4.3	警告	Tribulant Software	-	WordPress 用 Whois Search プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5194	2012-09-26 12:21	2012-01-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346171	-	easy_software_products gnome kde pdftohtml tetex xpdf debian gentoo redhat suse ubuntu	cups gpdf koffice kpdf pdftohtml tetex xpdf debian_linux linux kde enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linu…	Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly exe…	NVD-CWE-Other	CVE-2004-0888	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346172	-	rob_flynn gentoo slackware ubuntu	gaim linux slackware_linux ubuntu_linux	Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequ…	NVD-CWE-Other	CVE-2004-0891	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346173	-	mozilla conectiva redhat suse	mozilla thunderbird linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linux	Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to ex…	NVD-CWE-Other	CVE-2004-0903	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346174	-	mozilla netscape conectiva redhat	firefox mozilla thunderbird navigator linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation	Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide…	NVD-CWE-Other	CVE-2004-0904	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346175	-	mozilla netscape conectiva redhat suse	firefox mozilla navigator linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linux	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincin…	NVD-CWE-Other	CVE-2004-0905	2017-10-11 10:29	2004-09-14	Show	GitHub Exploit DB Packet Storm

346176	-	mozilla	mozilla thunderbird	The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, whic…	NVD-CWE-Other	CVE-2004-0906	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346177	-	mozilla	mozilla thunderbird	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows untrusted Javascript code to read and write to the clipboard, and possibly obtain sensitive informa…	NVD-CWE-Other	CVE-2004-0908	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346178	-	lesstif x.org xfree86_project gentoo redhat suse	lesstif x11r6 linux fedora_core suse_linux	Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4…	NVD-CWE-Other	CVE-2004-0914	2017-10-11 10:29	2005-01-10	Show	GitHub Exploit DB Packet Storm

346179	-	openpkg squid gentoo redhat trustix ubuntu	openpkg squid linux fedora_core secure_linux ubuntu_linux	The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets w…	CWE-399 Resource Management Errors	CVE-2004-0918	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346180	-	easy_software_products apple	cups mac_os_x mac_os_x_server	CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.	NVD-CWE-Other	CVE-2004-0923	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed