Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240931	7.5	危険	ImgPals	-	ImgPals Photo Host の approve.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4925	2012-09-19 16:20	2012-09-15	Show	GitHub Exploit DB Packet Storm

240932	9.3	危険	ASUSTeK Computer Inc.	-	ASUS Net4Switch 用 ipswcom.dll ActiveX コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4924	2012-09-19 16:18	2012-09-15	Show	GitHub Exploit DB Packet Storm

240933	4.3	警告	Endian	-	Endian Firewall におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4923	2012-09-19 16:17	2012-09-15	Show	GitHub Exploit DB Packet Storm

240934	4.3	警告	Mike Carr	-	Flogr の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4336	2012-09-19 16:17	2012-09-15	Show	GitHub Exploit DB Packet Storm

240935	4.3	警告	Python Software Foundation	-	Beaker における重要なセッションデータの一部を取得される脆弱性	CWE-310 暗号の問題	CVE-2012-3458	2012-09-19 16:16	2012-09-15	Show	GitHub Exploit DB Packet Storm

240936	4.3	警告	Kayako	-	Kayako Fusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3233	2012-09-19 16:14	2012-09-15	Show	GitHub Exploit DB Packet Storm

240937	6.8	警告	TestLink Development Team	-	TestLink におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2275	2012-09-19 16:12	2012-09-15	Show	GitHub Exploit DB Packet Storm

240938	4.3	警告	Banana Dance	-	Banana Dance の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5176	2012-09-19 16:11	2011-10-2	Show	GitHub Exploit DB Packet Storm

240939	7.5	危険	Banana Dance	-	Banana Dance の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5175	2012-09-19 16:09	2011-10-2	Show	GitHub Exploit DB Packet Storm

240940	7.2	危険	インテル	-	複数の Intel 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5174	2012-09-19 16:07	2011-12-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287051	-	moodle	moodle	Multiple cross-site request forgery (CSRF) vulnerabilities in mod/assign/locallib.php in the Assignment subsystem in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2…	CWE-352 Origin Validation Error	CVE-2014-0213	2024-11-21 11:01	2014-05-27	Show	GitHub Exploit DB Packet Storm

287052	-	pocoo	jinja2	FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: thi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0012	2024-11-21 11:01	2014-05-19	Show	GitHub Exploit DB Packet Storm

287053	-	canonical x	ubuntu_linux libxfont	Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to…	CWE-189 Numeric Errors	CVE-2014-0211	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

287054	-	x canonical	libxfont ubuntu_linux	Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_set…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0210	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

287055	-	x canonical	libxfont ubuntu_linux	Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a di…	CWE-189 Numeric Errors	CVE-2014-0209	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

287056	-	redhat	cloudforms_3.0_management_engine	SQL injection vulnerability in the saved_report_delete action in the ReportController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to execute arbitr…	CWE-89 SQL Injection	CVE-2014-0137	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

287057	-	redhat	cloudforms_3.0_management_engine	The CatalogController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to delete arbitrary catalogs via vectors involving guessing the catalog ID.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0078	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

287058	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0310	2024-11-21 11:01	2014-05-14	Show	GitHub Exploit DB Packet Storm

287059	-	microsoft	windows_server_2008 windows_server_2012	Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold allow remote attackers to cause a denial of service (iSCSI service outage) by sending many crafted packets, aka "iSCSI Target Remote …	CWE-20 Improper Input Validation	CVE-2014-0256	2024-11-21 11:01	2014-05-14	Show	GitHub Exploit DB Packet Storm

287060	-	microsoft	windows_server_2008 windows_server_2012	Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (iSCSI service outage) by sending many crafted packets, aka "iSCSI Target …	CWE-20 Improper Input Validation	CVE-2014-0255	2024-11-21 11:01	2014-05-14	Show	GitHub Exploit DB Packet Storm