Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241551	4	警告	ヒューレット・パッカード	-	HP Virtual SAN Appliance 上で稼働する HP SAN/iQ におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-4362	2012-08-22 16:50	2012-08-20	Show	GitHub Exploit DB Packet Storm

241552	7.7	危険	ヒューレット・パッカード	-	HP Virtual SAN Appliance 上で稼働する HP SAN/iQ における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-4361	2012-08-22 16:48	2012-08-20	Show	GitHub Exploit DB Packet Storm

241553	7.8	危険	ヒューレット・パッカード	-	HP Serviceguard におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-3252	2012-08-22 16:47	2012-08-15	Show	GitHub Exploit DB Packet Storm

241554	7.7	危険	ヒューレット・パッカード	-	HP Virtual SAN Appliance 上で稼働する HP SAN/iQ における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-2986	2012-08-22 16:46	2012-08-20	Show	GitHub Exploit DB Packet Storm

241555	2.1	注意	Tecnick.com	-	TCExam の admin/code/tce_edit_answer.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4238	2012-08-22 16:44	2012-08-6	Show	GitHub Exploit DB Packet Storm

241556	6.8	警告	Tecnick.com	-	TCExam における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4237	2012-08-22 16:43	2012-08-6	Show	GitHub Exploit DB Packet Storm

241557	4.3	警告	Jease	-	Jease におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4052	2012-08-22 16:42	2012-08-20	Show	GitHub Exploit DB Packet Storm

241558	4.3	警告	Total Shop UK	-	Total Shop UK eCommerce Open Source におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4236	2012-08-22 16:40	2012-08-20	Show	GitHub Exploit DB Packet Storm

241559	4.9	警告	OpenStack	-	OpenStack Compute (Nova) の virt/disk/api.py における任意のファイルを上書される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3447	2012-08-22 16:34	2012-07-31	Show	GitHub Exploit DB Packet Storm

241560	5	警告	Debian	-	devotee における秘密のあだ名を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-2387	2012-08-22 16:24	2012-08-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285901	-	cisco	adaptive_security_appliance_software	The WebVPN portal in Cisco Adaptive Security Appliance (ASA) Software 8.4(.7.15) and earlier allows remote authenticated users to obtain sensitive information via a crafted JavaScript file, aka Bug I…	NVD-CWE-noinfo	CVE-2014-2151	2024-11-21 11:05	2014-06-19	Show	GitHub Exploit DB Packet Storm

285902	-	ntt	050_plus	The NTT 050 plus application before 4.2.1 for Android allows attackers to obtain sensitive information by leveraging the ability to read system log files.	CWE-200 Information Exposure	CVE-2014-2000	2024-11-21 11:05	2014-06-19	Show	GitHub Exploit DB Packet Storm

285903	-	iij	seil\%2fturbo_firmware seil\/turbo seil\%2fneu_2fe_plus_firmware seil\/neu_2fe_plus seil\%2fx86_firmware seil\/x86 seil\%2fx2_firmware seil\/x2 seil\%2fx1_firmware seil\/x1…	The PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 routers 1.00 through 3.10, SEIL/X1 routers 1.00 through 4.50, SEIL/X2 routers 1.00 through 4.50, SEIL/B1 routers 1.00 through 4.50, SEIL/Turbo rou…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-2004	2024-11-21 11:05	2014-06-16	Show	GitHub Exploit DB Packet Storm

285904	-	justsystems	just_online_update ichitaro	JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validate signatures of update modules, which allows remote attackers to spoof modules and execut…	CWE-20 Improper Input Validation	CVE-2014-2003	2024-11-21 11:05	2014-06-16	Show	GitHub Exploit DB Packet Storm

285905	-	cisco	ios_xr asr_9001 asr_9006 asr_9010 asr_9904 asr_9912 asr_9922	Cisco IOS XR 4.1.2 through 5.1.1 on ASR 9000 devices, when a Trident-based line card is used, allows remote attackers to cause a denial of service (NP chip and line card reload) via malformed IPv6 pa…	CWE-399 Resource Management Errors	CVE-2014-2176	2024-11-21 11:05	2014-06-14	Show	GitHub Exploit DB Packet Storm

285906	-	c-board_moyuku_project	c-board_moyuku	Cross-site scripting (XSS) vulnerability in C-BOARD Moyuku 1.01b6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-2002	2024-11-21 11:05	2014-06-14	Show	GitHub Exploit DB Packet Storm

285907	-	microsoft	lync_server	Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2010 and 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted URL containin…	CWE-79 Cross-site Scripting	CVE-2014-1823	2024-11-21 11:05	2014-06-11	Show	GitHub Exploit DB Packet Storm

285908	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	GDI+ in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Offi…	CWE-20 Improper Input Validation	CVE-2014-1818	2024-11-21 11:05	2014-06-11	Show	GitHub Exploit DB Packet Storm

285909	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	usp10.dll in Uniscribe (aka the Unicode Script Processor) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows S…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1817	2024-11-21 11:05	2014-06-11	Show	GitHub Exploit DB Packet Storm

285910	-	microsoft	xml_core_services	Microsoft XML Core Services (aka MSXML) 3.0 and 6.0 does not properly restrict the information transmitted by Internet Explorer during a download action, which allows remote attackers to discover (1)…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1816	2024-11-21 11:05	2014-06-11	Show	GitHub Exploit DB Packet Storm