Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241271 4.4 警告 GNU Project - GNU Automake における任意のコードを実行される脆弱性 CWE-264
CWE-362
CVE-2012-3386 2012-08-9 16:36 2012-07-9 Show GitHub Exploit DB Packet Storm
241272 10 危険 Ubisoft - Ubisoft Uplay PC 用 Web ブラウザのプラグインにおける任意のプログラムを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2012-4177 2012-08-9 16:27 2012-07-30 Show GitHub Exploit DB Packet Storm
241273 3.6 注意 eXtplorer - eXtplorer における任意のファイルを削除または上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3454 2012-08-9 16:26 2012-08-7 Show GitHub Exploit DB Packet Storm
241274 3.6 注意 Debian - logol における任意のファイルを削除または上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3453 2012-08-9 16:22 2012-08-7 Show GitHub Exploit DB Packet Storm
241275 3.3 注意 GNOME Project - gnome-screensaver における無人のワークステーションにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3452 2012-08-9 16:20 2012-08-7 Show GitHub Exploit DB Packet Storm
241276 3.6 注意 Open vSwitch - Open vSwitch における任意のファイルを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3449 2012-08-9 16:12 2012-08-7 Show GitHub Exploit DB Packet Storm
241277 4.3 警告 KDE project - KDE PIM における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-16
環境設定 		CVE-2012-3413 2012-08-9 16:10 2012-08-7 Show GitHub Exploit DB Packet Storm
241278 4.3 警告 ヒューレット・パッカード - HP Network Node Manager i におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2022 2012-08-9 15:45 2012-08-2 Show GitHub Exploit DB Packet Storm
241279 7.5 危険 Ganglia - Ganglia Web における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3448 2012-08-9 11:48 2012-08-6 Show GitHub Exploit DB Packet Storm
241280 2.6 注意 Puppet - Puppet および Puppet Enterprise におけるエージェントを偽装される脆弱性 CWE-287
不適切な認証 		CVE-2012-3408 2012-08-9 11:42 2012-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285991 - ibm infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management 		Cross-site request forgery (CSRF) vulnerability in the GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x before 11.0-FP5 and InfoSphere Master Data Manageme… CWE-352
 Origin Validation Error 		CVE-2014-0969 2024-11-21 11:03 2014-08-18 Show GitHub Exploit DB Packet Storm
285992 - ibm infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management 		SQL injection vulnerability in the GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x before 11.0-FP5 and InfoSphere Master Data Management Server for Produc… CWE-89
SQL Injection 		CVE-2014-0966 2024-11-21 11:03 2014-08-18 Show GitHub Exploit DB Packet Storm
285993 - ibm infosphere_biginsights IBM InfoSphere BigInsights 2.0 through 2.1.2 does not set the secure flag for the LTPA cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting it… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0905 2024-11-21 11:03 2014-08-18 Show GitHub Exploit DB Packet Storm
285994 - vtiger vtiger_crm Directory traversal vulnerability in kcfinder/browse.php in Vtiger CRM before 6.0.0 Security patch 1 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter… CWE-22
Path Traversal 		CVE-2014-1222 2024-11-21 11:03 2014-08-13 Show GitHub Exploit DB Packet Storm
285995 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF28, and 8.0.0 before 8.0.0.1 CF12 allows remote at… CWE-79
Cross-site Scripting 		CVE-2014-0953 2024-11-21 11:03 2014-08-12 Show GitHub Exploit DB Packet Storm
285996 - codeaurora android-msm The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly prevent write access to IOM… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0972 2024-11-21 11:03 2014-08-1 Show GitHub Exploit DB Packet Storm
285997 - ibm rhapsody_design_manager
rational_software_architect_design_manager 		Unspecified vulnerability in IBM Rational Software Architect Design Manager and Rational Rhapsody Design Manager 3.x and 4.x before 4.0.7 allows remote authenticated users to execute arbitrary code v… NVD-CWE-noinfo
CVE-2014-0948 2024-11-21 11:03 2014-07-30 Show GitHub Exploit DB Packet Storm
285998 - ibm rational_software_architect_design_manager Unspecified vulnerability in the server in IBM Rational Software Architect Design Manager 4.0.6 allows remote authenticated users to execute arbitrary code via a crafted update site. NVD-CWE-noinfo
CVE-2014-0947 2024-11-21 11:03 2014-07-30 Show GitHub Exploit DB Packet Storm
285999 - ibm maximo_for_nuclear_power
maximo_asset_management_essentials
maximo_service_desk
maximo_asset_management
maximo_for_utilities
maximo_for_transportation
maximo_for_life_sciences
ti… 		Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management 6.2 through 6.2.8, 6.x and 7.1 through 7.1.1.2, and 7.5 through 7.5.0.6; Maximo Asset Management 7.5 through 7.5.0.3… CWE-79
Cross-site Scripting 		CVE-2014-0915 2024-11-21 11:03 2014-07-30 Show GitHub Exploit DB Packet Storm
286000 - ibm maximo_for_nuclear_power
maximo_asset_management_essentials
maximo_service_desk
maximo_asset_management
maximo_for_utilities
maximo_for_transportation
maximo_for_life_sciences
ti… 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 6.x and 7.x through 7.5.0.6, Maximo Asset Management 7.5 through 7.5.0.3 and 7.5.1 through 7.5.1.2 for Sm… CWE-79
Cross-site Scripting 		CVE-2014-0914 2024-11-21 11:03 2014-07-30 Show GitHub Exploit DB Packet Storm