Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240511 5 警告 Moodle - Moodle の auth/cas/cas_form.html 内 のマルチ認証機能における資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2357 2012-07-24 15:54 2012-07-21 Show GitHub Exploit DB Packet Storm
240512 4 警告 Moodle - Moodle の question-bank 機能における機能制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2356 2012-07-24 15:52 2012-07-21 Show GitHub Exploit DB Packet Storm
240513 4 警告 Moodle - Moodle における question:use* 機能の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2355 2012-07-24 15:51 2012-07-21 Show GitHub Exploit DB Packet Storm
240514 4 警告 Moodle - Moodle における moodle/site:readallmessages 機能の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2354 2012-07-24 15:50 2012-07-21 Show GitHub Exploit DB Packet Storm
240515 4 警告 Moodle - Moodle における非表示フィールドから重要なユーザ情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2353 2012-07-24 15:46 2012-07-21 Show GitHub Exploit DB Packet Storm
240516 7.5 危険 Nullsoft - Winamp の bmp.w5s におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4045 2012-07-24 15:38 2012-06-28 Show GitHub Exploit DB Packet Storm
240517 5 警告 WordPress.org - WordPress における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3385 2012-07-24 15:38 2012-06-27 Show GitHub Exploit DB Packet Storm
240518 6.8 警告 WordPress.org - WordPress のカスタマイザにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3384 2012-07-24 15:37 2012-06-27 Show GitHub Exploit DB Packet Storm
240519 2.6 注意 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3383 2012-07-24 15:36 2012-06-27 Show GitHub Exploit DB Packet Storm
240520 2.6 注意 フェンリル株式会社 - Sleipnir Mobile for Android における WebView クラスに関する脆弱性 CWE-Other
その他 		CVE-2012-2646 2012-07-24 12:02 2012-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285901 - google chrome The SVGAnimateElement::calculateAnimatedValue function in core/svg/SVGAnimateElement.cpp in Blink, as used in Google Chrome before 33.0.1750.117, does not properly handle unexpected data types, which… CWE-20
 Improper Input Validation  		CVE-2013-6654 2024-11-21 10:59 2014-02-24 Show GitHub Exploit DB Packet Storm
285902 - google chrome Use-after-free vulnerability in the web contents implementation in Google Chrome before 33.0.1750.117 allows remote attackers to cause a denial of service or possibly have unspecified other impact vi… CWE-399
 Resource Management Errors 		CVE-2013-6653 2024-11-21 10:59 2014-02-24 Show GitHub Exploit DB Packet Storm
285903 - google chrome Directory traversal vulnerability in sandbox/win/src/named_pipe_dispatcher.cc in Google Chrome before 33.0.1750.117 on Windows allows attackers to bypass intended named-pipe policy restrictions in th… CWE-22
Path Traversal 		CVE-2013-6652 2024-11-21 10:59 2014-02-24 Show GitHub Exploit DB Packet Storm
285904 - ibm websphere_extreme_scale_client IBM WebSphere eXtreme Scale Client 7.1 through 8.6.0.4 does not properly isolate the cached data of different users, which allows remote authenticated users to obtain sensitive information in opportu… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6734 2024-11-21 10:59 2014-02-23 Show GitHub Exploit DB Packet Storm
285905 - ibm cognos_business_intelligence Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 … CWE-79
Cross-site Scripting 		CVE-2013-6732 2024-11-21 10:59 2014-02-23 Show GitHub Exploit DB Packet Storm
285906 - openstack swift The OpenStack Python client library for Swift (python-swiftclient) 1.0 through 1.9.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and… CWE-310
Cryptographic Issues 		CVE-2013-6396 2024-11-21 10:59 2014-02-19 Show GitHub Exploit DB Packet Storm
285907 - mozilla seamonkey
thunderbird
thunderbird_esr 		Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8, Thunderbird ESR 17.x through 17.0.10, and SeaMonkey before 2.20 allows user-assisted remote attackers to inject ar… CWE-79
Cross-site Scripting 		CVE-2013-6674 2024-11-21 10:59 2014-02-18 Show GitHub Exploit DB Packet Storm
285908 - ryan_ohara piranha The Piranha Configuration Tool in Piranha 0.8.6 does not properly restrict access to webpages, which allows remote attackers to bypass authentication and read or modify the LVS configuration via an H… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6492 2024-11-21 10:59 2014-02-15 Show GitHub Exploit DB Packet Storm
285909 - linuxcontainers lxc The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6441 2024-11-21 10:59 2014-02-15 Show GitHub Exploit DB Packet Storm
285910 - shibboleth
internet2 		opensaml The (1) BasicParserPool, (2) StaticBasicParserPool, (3) XML Decrypter, and (4) SAML Decrypter in Shibboleth OpenSAML-Java before 2.6.1 set the expandEntityReferences property to true, which allows re… CWE-200
Information Exposure 		CVE-2013-6440 2024-11-21 10:59 2014-02-15 Show GitHub Exploit DB Packet Storm