Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241201	5	警告	IBM	-	IBM DB2 の SQLJ.DB2_INSTALL_JAR ストアドプロシージャにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-2194	2012-07-26 15:31	2012-06-7	Show	GitHub Exploit DB Packet Storm

241202	3.6	注意	Puppet	-	Puppet および Puppet Enterprise における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1989	2012-07-26 14:07	2012-06-27	Show	GitHub Exploit DB Packet Storm

241203	3.5	注意	Puppet	-	Puppet および Puppet Enterprise におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-1987	2012-07-26 13:57	2012-05-29	Show	GitHub Exploit DB Packet Storm

241204	10	危険	Google サムスン	-	複数の製品の Chromebook プラットフォーム上で稼働する Google Chrome OS における脆弱性	CWE-noinfo 情報不足	CVE-2012-4050	2012-07-26 11:57	2012-07-23	Show	GitHub Exploit DB Packet Storm

241205	2.1	注意	Puppet	-	Puppet および Puppet Enterprise における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1986	2012-07-25 17:54	2012-05-29	Show	GitHub Exploit DB Packet Storm

241206	5	警告	シマンテック	-	Symantec Web Gateway の管理コンソールにおける任意のパスワードを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2977	2012-07-25 16:23	2012-07-20	Show	GitHub Exploit DB Packet Storm

241207	7.5	危険	シマンテック	-	Symantec Web Gateway の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2961	2012-07-25 16:19	2012-07-20	Show	GitHub Exploit DB Packet Storm

241208	7.5	危険	シマンテック	-	Symantec Web Gateway の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2574	2012-07-25 15:39	2012-07-20	Show	GitHub Exploit DB Packet Storm

241209	4.4	警告	シマンテック	-	Symantec System Recovery および Backup Exec System Recovery における権限を取得される脆弱性	CWE-Other その他	CVE-2012-0305	2012-07-25 15:31	2012-07-20	Show	GitHub Exploit DB Packet Storm

241210	4	警告	Moodle	-	Moodle におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-Other その他	CVE-2012-3398	2012-07-25 14:56	2012-07-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286291	-	moodle	moodle	The My Home implementation in the block_html_pluginfile function in blocks/html/lib.php in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 does not properly res…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0216	2024-11-21 11:01	2014-05-27	Show	GitHub Exploit DB Packet Storm

286292	-	moodle	moodle	The blind-marking implementation in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 allows remote authenticated users to de-anonymize student identities by (1) …	CWE-200 Information Exposure	CVE-2014-0215	2024-11-21 11:01	2014-05-27	Show	GitHub Exploit DB Packet Storm

286293	-	moodle	moodle	login/token.php in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 creates a MoodleMobile web-service token with an infinite lifetime, which makes it easier for…	CWE-287 Improper Authentication	CVE-2014-0214	2024-11-21 11:01	2014-05-27	Show	GitHub Exploit DB Packet Storm

286294	-	moodle	moodle	Multiple cross-site request forgery (CSRF) vulnerabilities in mod/assign/locallib.php in the Assignment subsystem in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2…	CWE-352 Origin Validation Error	CVE-2014-0213	2024-11-21 11:01	2014-05-27	Show	GitHub Exploit DB Packet Storm

286295	-	pocoo	jinja2	FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: thi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0012	2024-11-21 11:01	2014-05-19	Show	GitHub Exploit DB Packet Storm

286296	-	canonical x	ubuntu_linux libxfont	Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to…	CWE-189 Numeric Errors	CVE-2014-0211	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

286297	-	x canonical	libxfont ubuntu_linux	Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_set…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0210	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

286298	-	x canonical	libxfont ubuntu_linux	Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a di…	CWE-189 Numeric Errors	CVE-2014-0209	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

286299	-	redhat	cloudforms_3.0_management_engine	SQL injection vulnerability in the saved_report_delete action in the ReportController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to execute arbitr…	CWE-89 SQL Injection	CVE-2014-0137	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm

286300	-	redhat	cloudforms_3.0_management_engine	The CatalogController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to delete arbitrary catalogs via vectors involving guessing the catalog ID.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0078	2024-11-21 11:01	2014-05-15	Show	GitHub Exploit DB Packet Storm