Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240911	5	警告	Lullabot	-	Drupal 用 Fivestar モジュールにおける投票の平均を操作される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2096	2012-08-17 15:01	2012-04-11	Show	GitHub Exploit DB Packet Storm

240912	7.8	危険	サムスン	-	Samsung NET-i viewer におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-119 バッファエラー	CVE-2012-4335	2012-08-17 14:59	2012-08-14	Show	GitHub Exploit DB Packet Storm

240913	10	危険	サムスン	-	Samsung NET-i viewer の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-DesignError	CVE-2012-4334	2012-08-17 14:58	2012-08-14	Show	GitHub Exploit DB Packet Storm

240914	10	危険	サムスン	-	Samsung NET-i viewer の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4333	2012-08-17 14:57	2012-08-14	Show	GitHub Exploit DB Packet Storm

240915	5	警告	Barandi Solutions	-	WordPress 用 ShareYourCart プラグインにおけるインストールパスを取得される脆弱性	CWE-200 情報漏えい	CVE-2012-4332	2012-08-17 14:50	2012-08-14	Show	GitHub Exploit DB Packet Storm

240916	10	危険	SPIP	-	SPIP における脆弱性	CWE-noinfo 情報不足	CVE-2012-4331	2012-08-17 14:48	2012-04-23	Show	GitHub Exploit DB Packet Storm

240917	7.8	危険	サムスン	-	Samsung D6000 TV およびその他の製品におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-4330	2012-08-17 14:47	2012-08-14	Show	GitHub Exploit DB Packet Storm

240918	7.8	危険	サムスン	-	Samsung D6000 TV およびその他の製品におけるサービス運用妨害 (連続的な再起動) の脆弱性	CWE-119 バッファエラー	CVE-2012-4329	2012-08-17 14:45	2012-08-14	Show	GitHub Exploit DB Packet Storm

240919	10	危険	vBulletin Solutions, Inc.	-	複数の vBulletin 製品における脆弱性	CWE-noinfo 情報不足	CVE-2012-4328	2012-08-17 14:38	2012-08-14	Show	GitHub Exploit DB Packet Storm

240920	4.3	警告	Piwigo	-	Piwigo の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2209	2012-08-17 14:36	2012-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286681	-	perl	cgi_application_module	The CGI::Application module before 4.50_50 and 4.50_51 for Perl, when run modes are not specified, allows remote attackers to obtain sensitive information (web queries and environment details) via ve…	CWE-200 Information Exposure	CVE-2013-7329	2024-11-21 11:00	2014-10-7	Show	GitHub Exploit DB Packet Storm

286682	-	linecorp	line	LINE 3.2.1.83 and earlier on Windows and 3.2.1 and earlier on OS X does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive …	CWE-310 Cryptographic Issues	CVE-2013-7144	2024-11-21 11:00	2014-08-16	Show	GitHub Exploit DB Packet Storm

286683	-	cobham	aviator_300 sailor_fleetbroadband_150 sailor_900_vsat aviator_350 sailor_fleetbroadband_250 explorer_bgan aviator_200 sailor_fleetbroadband_500 aviator_700d	Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtai…	NVD-CWE-Other	CVE-2013-7180	2024-11-21 11:00	2014-08-15	Show	GitHub Exploit DB Packet Storm

286684	-	zoll	monitor\/defibrillator	ZOLL Defibrillator / Monitor X Series has a default (1) supervisor password and (2) service password, which allows physically proximate attackers to modify device configuration and cause a denial of …	CWE-255 Credentials Management	CVE-2013-7395	2024-11-21 11:00	2014-08-13	Show	GitHub Exploit DB Packet Storm

286685	-	splunk	splunk	The "runshellscript echo.sh" script in Splunk before 5.0.5 allows remote authenticated users to execute arbitrary commands via a crafted string. NOTE: this issue was SPLIT from CVE-2013-6771 per ADT…	CWE-94 Code Injection	CVE-2013-7394	2024-11-21 11:00	2014-08-7	Show	GitHub Exploit DB Packet Storm

286686	-	apache	subversion	The daemonize.py module in Subversion 1.8.0 before 1.8.2 allows local users to gain privileges via a symlink attack on the pid file created for (1) svnwcsub.py or (2) irkerbridge.py when the --pidfil…	CWE-59 Link Following	CVE-2013-7393	2024-11-21 11:00	2014-07-29	Show	GitHub Exploit DB Packet Storm

286687	-	gitlist	gitlist	Gitlist allows remote attackers to execute arbitrary commands via shell metacharacters in a file name to Source/.	NVD-CWE-Other	CVE-2013-7392	2024-11-21 11:00	2014-07-22	Show	GitHub Exploit DB Packet Storm

286688	-	entity_api_project	entity_api	The Entity API module 7.x-1.x before 7.x-1.2 for Drupal, when using the (a) Views field or (b) area plugins, allows remote attackers to read restricted entities via the (1) field, (2) header, or (3) …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7391	2024-11-21 11:00	2014-07-20	Show	GitHub Exploit DB Packet Storm

286689	-	dlink	dir-645_firmware dir-645	Multiple cross-site scripting (XSS) vulnerabilities in D-Link DIR-645 Router (Rev. A1) with firmware before 1.04B11 allow remote attackers to inject arbitrary web script or HTML via the (1) deviceid …	CWE-79 Cross-site Scripting	CVE-2013-7389	2024-11-21 11:00	2014-07-7	Show	GitHub Exploit DB Packet Storm

286690	-	google trimble	sketchup	Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-7388	2024-11-21 11:00	2014-07-2	Show	GitHub Exploit DB Packet Storm