Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250291 7.5 危険 Segue Project - Segue における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1255 2012-06-1 12:03 2012-06-1 Show GitHub Exploit DB Packet Storm
250292 4.3 警告 Segue Project - Segue におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1254 2012-06-1 12:02 2012-06-1 Show GitHub Exploit DB Packet Storm
250293 7.5 危険 Jaow - Jaow の add_ons.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2952 2012-05-31 14:52 2012-05-29 Show GitHub Exploit DB Packet Storm
250294 7.5 危険 Plogger Project - Plogger の plog-rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2951 2012-05-31 14:52 2012-05-29 Show GitHub Exploit DB Packet Storm
250295 3.3 注意 Puppet - Puppet および Puppet Enterprise における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1906 2012-05-31 14:25 2012-05-29 Show GitHub Exploit DB Packet Storm
250296 4.3 警告 ikiwiki - ikiwiki のメタプラグイン (Plugin/meta.pm) におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0220 2012-05-31 14:15 2012-05-29 Show GitHub Exploit DB Packet Storm
250297 10 危険 ZTE - ZTE Score M デバイス上の Android 用 ZTE sync_agent プログラムにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2949 2012-05-31 14:11 2012-05-29 Show GitHub Exploit DB Packet Storm
250298 6.5 警告 Pligg - Pligg CMS の captcha モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2435 2012-05-30 11:22 2012-05-27 Show GitHub Exploit DB Packet Storm
250299 1.2 注意 ヒューレット・パッカード - HP Linux Imaging and Printing の send_data_to_stdout 関数における任意のファイルを上書される脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-2722 2012-05-29 16:10 2012-05-25 Show GitHub Exploit DB Packet Storm
250300 10 危険 xArrow - xArrow のサーバ機能における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2012-2429 2012-05-29 15:57 2012-05-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291101 - apple tvos
iphone_os 		CrashHouseKeeping in Crash Reporting in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to change arbitrary file permissions by leveraging a symlink. CWE-59
Link Following 		CVE-2014-1272 2024-11-21 11:03 2014-03-14 Show GitHub Exploit DB Packet Storm
291102 - apple iphone_os
tvos 		CoreCapture in Apple iOS before 7.1 and Apple TV before 6.1 does not properly validate IOKit API calls, which allows attackers to cause a denial of service (assertion failure and device crash) via a … CWE-20
 Improper Input Validation  		CVE-2014-1271 2024-11-21 11:03 2014-03-14 Show GitHub Exploit DB Packet Storm
291103 - apple tvos
iphone_os 		The Configuration Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 does not properly evaluate the expiration date of a mobile configuration profile, which allows attackers to bypass… CWE-20
 Improper Input Validation  		CVE-2014-1267 2024-11-21 11:03 2014-03-14 Show GitHub Exploit DB Packet Storm
291104 - ibm aix ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and m… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0899 2024-11-21 11:03 2014-03-11 Show GitHub Exploit DB Packet Storm
291105 - telligent evolution Cross-site scripting (XSS) vulnerability in controlpanel/loading.aspx in Telligent Evolution before 6.1.19.36103, 7.x before 7.1.12.36162, 7.5.x, and 7.6.x before 7.6.7.36651 allows remote attackers … CWE-79
Cross-site Scripting 		CVE-2014-1223 2024-11-21 11:03 2014-02-28 Show GitHub Exploit DB Packet Storm
291106 - apple safari
mac_os_x
mac_os_x_server
webkit 		WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1270 2024-11-21 11:03 2014-02-27 Show GitHub Exploit DB Packet Storm
291107 - apple safari
mac_os_x
mac_os_x_server
webkit 		WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1269 2024-11-21 11:03 2014-02-27 Show GitHub Exploit DB Packet Storm
291108 - apple safari
mac_os_x
mac_os_x_server
webkit 		WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1268 2024-11-21 11:03 2014-02-27 Show GitHub Exploit DB Packet Storm
291109 - apple mac_os_x
mac_os_x_server 		The systemsetup program in the Date and Time subsystem in Apple OS X before 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1265 2024-11-21 11:03 2014-02-27 Show GitHub Exploit DB Packet Storm
291110 - apple mac_os_x Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstan… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1264 2024-11-21 11:03 2014-02-27 Show GitHub Exploit DB Packet Storm