Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241211	5	警告	Ushahidi	-	Ushahidi Platform におけるコメント投稿者についての重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-3474	2012-08-14 16:55	2012-08-12	Show	GitHub Exploit DB Packet Storm

241212	6.4	警告	Ushahidi	-	Ushahidi Platform のコメントに関する API におけるレポートを生成される脆弱性	CWE-287 不適切な認証	CVE-2012-3473	2012-08-14 16:54	2012-08-12	Show	GitHub Exploit DB Packet Storm

241213	6.4	警告	Ushahidi	-	Ushahidi Platform におけるメッセージを一覧表示される脆弱性	CWE-287 不適切な認証	CVE-2012-3472	2012-08-14 16:50	2012-08-12	Show	GitHub Exploit DB Packet Storm

241214	7.5	危険	Ushahidi	-	Ushahidi Platform における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3471	2012-08-14 16:49	2012-08-12	Show	GitHub Exploit DB Packet Storm

241215	7.5	危険	Ushahidi	-	Ushahidi Platform における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3470	2012-08-14 16:49	2012-08-12	Show	GitHub Exploit DB Packet Storm

241216	7.5	危険	Ushahidi	-	Ushahidi Platform における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3469	2012-08-14 16:44	2012-08-12	Show	GitHub Exploit DB Packet Storm

241217	7.5	危険	Ushahidi	-	Ushahidi Platform における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3468	2012-08-14 16:43	2012-08-12	Show	GitHub Exploit DB Packet Storm

241218	4.3	警告	Escon Information Consulting	-	ESCON SupportPortal Professional Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2590	2012-08-14 16:38	2012-08-12	Show	GitHub Exploit DB Packet Storm

241219	4.3	警告	AfterLogic	-	AfterLogic MailSuite Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2587	2012-08-14 16:37	2012-08-12	Show	GitHub Exploit DB Packet Storm

241220	4.3	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2585	2012-08-14 16:35	2012-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286461	7.5	HIGH Network	mcafee	saas_control_console_platform	A directory traversal vulnerability in the web application in McAfee (now Intel Security) SaaS Control Console (SCC) Platform 6.14 before patch 1070, and 6.15 before patch 1076 allows unauthenticated…	CWE-22 Path Traversal	CVE-2013-7462	2024-11-21 11:01	2017-03-15	Show	GitHub Exploit DB Packet Storm

286462	5.5	MEDIUM Local	mcafee	change_control application_control	A write protection and execution bypass vulnerability in McAfee (now Intel Security) Change Control (MCC) 6.1.0 for Linux and earlier allows authenticated users to change files that are part of write…	CWE-284 Improper Access Control	CVE-2013-7461	2024-11-21 11:01	2017-03-15	Show	GitHub Exploit DB Packet Storm

286463	5.5	MEDIUM Local	mcafee	change_control application_control	A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part …	CWE-284 Improper Access Control	CVE-2013-7460	2024-11-21 11:01	2017-03-15	Show	GitHub Exploit DB Packet Storm

286464	9.8	CRITICAL Network	dlitz fedoraproject	pycrypto fedora	Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers to execute arbitrary code as demonstrated by a crafted iv p…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-7459	2024-11-21 11:01	2017-02-16	Show	GitHub Exploit DB Packet Storm

286465	6.1	MEDIUM Network	nodejs	node.js	The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via nested forbidden strings.	CWE-79 Cross-site Scripting	CVE-2013-7454	2024-11-21 11:01	2017-01-24	Show	GitHub Exploit DB Packet Storm

286466	6.1	MEDIUM Network	nodejs	node.js	The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via vectors related to UI redressing.	CWE-79 Cross-site Scripting	CVE-2013-7453	2024-11-21 11:01	2017-01-24	Show	GitHub Exploit DB Packet Storm

286467	6.1	MEDIUM Network	nodejs	node.js	The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via a crafted javascript URI.	CWE-79 Cross-site Scripting	CVE-2013-7452	2024-11-21 11:01	2017-01-24	Show	GitHub Exploit DB Packet Storm

286468	6.1	MEDIUM Network	nodejs	node.js	The validator module before 1.1.0 for Node.js allows remote attackers to bypass the XSS filter via a nested tag.	CWE-79 Cross-site Scripting	CVE-2013-7451	2024-11-21 11:01	2017-01-24	Show	GitHub Exploit DB Packet Storm

286469	3.3	LOW Local	redislabs debian	redis debian_linux	linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.	CWE-200 Information Exposure	CVE-2013-7458	2024-11-21 11:01	2016-08-10	Show	GitHub Exploit DB Packet Storm

286470	7.6	HIGH Network	libgd	libgd	gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (…	CWE-125 Out-of-bounds Read	CVE-2013-7456	2024-11-21 11:01	2016-08-7	Show	GitHub Exploit DB Packet Storm