Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240641	4.3	警告	FreePBX	-	FreePBX におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4870	2012-09-11 09:49	2012-03-23	Show	GitHub Exploit DB Packet Storm

240642	7.5	危険	FreePBX	-	FreePBX の recordings/misc/callme_page.php における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4869	2012-09-11 09:36	2012-03-23	Show	GitHub Exploit DB Packet Storm

240643	7.5	危険	Kunena	-	Joomla! 用 Kunena コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4868	2012-09-10 16:23	2012-09-6	Show	GitHub Exploit DB Packet Storm

240644	5	警告	Vtiger	-	vtiger CRM におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-4867	2012-09-10 16:22	2012-09-6	Show	GitHub Exploit DB Packet Storm

240645	6.9	警告	Xtreme RAT	-	Xtreme RAT における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2012-4866	2012-09-10 16:21	2012-09-6	Show	GitHub Exploit DB Packet Storm

240646	9.3	危険	Oreans Technologies	-	Oreans Themida におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4865	2012-09-10 16:20	2012-09-6	Show	GitHub Exploit DB Packet Storm

240647	9.3	危険	Oreans Technologies	-	Oreans WinLicense におけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2012-4864	2012-09-10 16:19	2012-09-6	Show	GitHub Exploit DB Packet Storm

240648	6.9	警告	Foxit Software Inc	-	Foxit Reader の Facebook プラグインにおける権限を取得される脆弱性	CWE-Other その他	CVE-2012-4759	2012-09-10 15:34	2012-09-6	Show	GitHub Exploit DB Packet Storm

240649	6.9	警告	サイバーリンク株式会社	-	CyberLink PowerProducer における権限を取得される脆弱性	CWE-Other その他	CVE-2012-4758	2012-09-10 15:33	2012-09-6	Show	GitHub Exploit DB Packet Storm

240650	6.9	警告	サイバーリンク株式会社	-	CyberLink StreamAuthor における権限を取得される脆弱性	CWE-Other その他	CVE-2012-4757	2012-09-10 15:32	2012-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285441	-	apple	iphone_os	Use-after-free vulnerability in Safari in Apple iOS before 7.1.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an invalid URL.	NVD-CWE-Other	CVE-2014-1349	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285442	-	apple	iphone_os	Mail in Apple iOS before 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proxima…	CWE-310 Cryptographic Issues	CVE-2014-1348	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285443	-	apple	safari iphone_os	WebKit in Apple iOS before 7.1.2 and Apple Safari before 6.1.5 and 7.x before 7.0.5 does not properly encode domain names in URLs, which allows remote attackers to spoof the address bar via a crafted…	NVD-CWE-Other	CVE-2014-1345	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285444	-	apple	safari	WebKit, as used in Apple Safari before 6.1.5 and 7.x before 7.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1340	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285445	-	apple	safari iphone_os tvos	WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (m…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1325	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285446	-	apple	mac_os_x	iBooks Commerce in Apple OS X before 10.9.4 places Apple ID credentials in the iBooks log, which allows local users to obtain sensitive information by reading this file.	CWE-200 Information Exposure	CVE-2014-1317	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285447	-	linux canonical suse	linux_kernel ubuntu_linux suse_linux_enterprise_desktop suse_linux_enterprise_server linux_enterprise_high_availability_extension	The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive in…	CWE-200 Information Exposure	CVE-2014-1739	2024-11-21 11:04	2014-06-23	Show	GitHub Exploit DB Packet Storm

285448	-	symantec	web_gateway	Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unsp…	CWE-79 Cross-site Scripting	CVE-2014-1652	2024-11-21 11:04	2014-06-19	Show	GitHub Exploit DB Packet Storm

285449	-	symantec	web_gateway	SQL injection vulnerability in clientreport.php in the management console in Symantec Web Gateway (SWG) before 5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2014-1651	2024-11-21 11:04	2014-06-19	Show	GitHub Exploit DB Packet Storm

285450	-	symantec	web_gateway	SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vector…	CWE-89 SQL Injection	CVE-2014-1650	2024-11-21 11:04	2014-06-19	Show	GitHub Exploit DB Packet Storm