Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
245521 2.6 注意 マイクロソフト - Windows Phone 7 に SSL サーバ証明書の検証不備の脆弱性 CWE-310
暗号の問題
CVE-2012-2993 2012-09-19 10:39 2012-09-18 Show GitHub Exploit DB Packet Storm
245522 7.5 危険 CoSoSys Ltd - Endpoint Protector 4 の認証機能に脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-2994 2012-09-19 10:37 2012-09-18 Show GitHub Exploit DB Packet Storm
245523 3.5 注意 シスコシステムズ - Cisco IOS の SSLVPN の実装におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 CWE-DesignError
CVE-2012-3924 2012-09-18 16:57 2012-09-16 Show GitHub Exploit DB Packet Storm
245524 3.5 注意 シスコシステムズ - Cisco IOS の SSLVPN の実装におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2012-3923 2012-09-18 16:56 2012-09-16 Show GitHub Exploit DB Packet Storm
245525 5 警告 シスコシステムズ - 複数の Cisco 製品で使用される Cisco ACE モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-3919 2012-09-18 16:54 2012-09-16 Show GitHub Exploit DB Packet Storm
245526 5 警告 シスコシステムズ - Cisco IOS の DMVPN トンネルの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2012-3915 2012-09-18 16:54 2012-09-16 Show GitHub Exploit DB Packet Storm
245527 6.8 警告 シスコシステムズ - Cisco ISE 3300 シリーズの ISE 管理者ユーザインターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-3908 2012-09-18 16:53 2012-04-11 Show GitHub Exploit DB Packet Storm
245528 5 警告 シスコシステムズ - Cisco IPS 4200 シリーズセンサーの sensorApp におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2012-3901 2012-09-18 16:53 2010-07-22 Show GitHub Exploit DB Packet Storm
245529 5 警告 シスコシステムズ - Cisco IPS 4200 シリーズセンサー上で稼働する sensorApp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-3899 2012-09-18 16:52 2012-09-16 Show GitHub Exploit DB Packet Storm
245530 6.3 警告 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 CWE-Other
その他
CVE-2012-3895 2012-09-18 16:52 2012-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252711 9.8 CRITICAL
Network
cantata_project cantata An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The wrapper script 'mount.cifs.wrapper' uses the shell to forward the arguments to the actual mount.cifs binary.… CWE-20
 Improper Input Validation 
CVE-2018-12562 2024-11-21 12:45 2018-06-19 Show GitHub Exploit DB Packet Storm
252712 8.8 HIGH
Network
cantata_project cantata An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain p… CWE-20
 Improper Input Validation 
CVE-2018-12561 2024-11-21 12:45 2018-06-19 Show GitHub Exploit DB Packet Storm
252713 6.5 MEDIUM
Network
cantata_project cantata An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/ker… CWE-22
Path Traversal
CVE-2018-12560 2024-11-21 12:45 2018-06-19 Show GitHub Exploit DB Packet Storm
252714 8.8 HIGH
Network
cantata_project cantata An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The mount target path check in mounter.cpp `mpOk()` is insufficient. A regular user can consequently mount a CIF… CWE-22
Path Traversal
CVE-2018-12559 2024-11-21 12:45 2018-06-19 Show GitHub Exploit DB Packet Storm
252715 9.8 CRITICAL
Network
zuul-ci zuul An issue was discovered in Zuul 3.x before 3.1.0. If nodes become offline during the build, the no_log attribute of a task is ignored. If the unreachable error occurred in a task used with a loop var… CWE-200
Information Exposure
CVE-2018-12557 2024-11-21 12:45 2018-06-19 Show GitHub Exploit DB Packet Storm
252716 9.8 CRITICAL
Network
quick_chat_project quick_chat A SQL injection issue was discovered in the Quick Chat plugin before 4.00 for WordPress. CWE-89
SQL Injection
CVE-2018-12534 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
252717 9.8 CRITICAL
Network
metinfo metinfo An issue was discovered in MetInfo 6.0.0. install\index.php allows remote attackers to write arbitrary PHP code into config_db.php, a different vulnerability than CVE-2018-7271. CWE-94
Code Injection
CVE-2018-12531 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
252718 6.5 MEDIUM
Network
metinfo metinfo An issue was discovered in MetInfo 6.0.0. admin/app/batch/csvup.php allows remote attackers to delete arbitrary files via a flienamecsv=../ directory traversal. This can be exploited via CSRF. CWE-22
Path Traversal
CVE-2018-12530 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
252719 9.8 CRITICAL
Network
redhat richfaces JBoss RichFaces 3.1.0 through 3.3.4 allows unauthenticated remote attackers to inject expression language (EL) expressions and execute arbitrary Java code via a /DATA/ substring in a path with an org… CWE-917
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
CVE-2018-12533 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
252720 9.8 CRITICAL
Network
redhat richfaces JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language (EL) variable mapper and execute arbitrary Java code via a MediaOutputResource'… CWE-917
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
CVE-2018-12532 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm