Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250951 9.3 危険 anyconnect - AnyConnect におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4148 2012-03-27 18:42 2010-11-1 Show GitHub Exploit DB Packet Storm
250952 7.5 危険 avactis - Pentasoft Avactis Shopping Cart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4147 2012-03-27 18:42 2010-11-1 Show GitHub Exploit DB Packet Storm
250953 4.3 警告 Attachmate - Web 2008 の Attachmate Reflection におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4146 2012-03-27 18:42 2010-11-1 Show GitHub Exploit DB Packet Storm
250954 5 警告 ASP indir - Kisisel Radyo Script におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4145 2012-03-27 18:42 2010-11-1 Show GitHub Exploit DB Packet Storm
250955 7.5 危険 ASP indir - Kisisel Radyo Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4144 2012-03-27 18:42 2010-11-1 Show GitHub Exploit DB Packet Storm
250956 6.8 警告 phpcheckz - phpCheckZ の chart.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4143 2012-03-27 18:42 2010-11-1 Show GitHub Exploit DB Packet Storm
250957 4.3 警告 IBM - IBM Tivoli Access Manager for e-business の TAM コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4120 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
250958 10 危険 ヒューレット・パッカード - HP StorageWorks Storage Mirroring における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4116 2012-03-27 18:42 2010-12-20 Show GitHub Exploit DB Packet Storm
250959 9 危険 ヒューレット・パッカード - HP StorageWorks Modular Smart Array P2000 G3 における権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-4115 2012-03-27 18:42 2010-12-17 Show GitHub Exploit DB Packet Storm
250960 4.3 警告 ヒューレット・パッカード - HP DDMI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4114 2012-03-27 18:42 2010-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297401 - adobe shockwave_player Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4174, CVE-2012-4… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4173 2024-11-21 10:42 2012-10-24 Show GitHub Exploit DB Packet Storm
297402 - adobe shockwave_player Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4173, CVE-2012-4174, CVE-2012-4… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4172 2024-11-21 10:42 2012-10-24 Show GitHub Exploit DB Packet Storm
297403 - cipherdyne fwknop Buffer overflow in the run_last_args function in client/fwknop.c in fwknop before 2.0.3, when processing --last, might allow local users to cause a denial of service (client crash) and possibly execu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-4436 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
297404 - cipherdyne fwknop fwknop before 2.0.3 does not properly validate IP addresses, which allows remote authenticated users to cause a denial of service (server crash) via a long IP address. CWE-20
 Improper Input Validation  		CVE-2012-4435 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
297405 9.8 CRITICAL
Network 		openstack
fedoraproject
redhat 		swift
fedora
enterprise_linux_server
storage
storage_for_public_cloud
gluster_storage_server_for_on-premise
gluster_storage_management_console 		OpenStack Object Storage (swift) before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arb… CWE-502
 Deserialization of Untrusted Data 		CVE-2012-4406 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
297406 - jcore jcore SQL injection vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to execute arbitrary SQL commands via the memberloginid cookie. CWE-89
SQL Injection 		CVE-2012-4232 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
297407 - jcore jcore Cross-site scripting (XSS) vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to inject arbitrary web script or HTML via the path parameter. CWE-79
Cross-site Scripting 		CVE-2012-4231 2024-11-21 10:42 2012-10-23 Show GitHub Exploit DB Packet Storm
297408 - oracle
sun 		jdk
jre 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality and … NVD-CWE-noinfo
CVE-2012-4416 2024-11-21 10:42 2012-10-17 Show GitHub Exploit DB Packet Storm
297409 - mozilla
suse
canonical
redhat 		firefox
seamonkey
thunderbird
thunderbird_esr
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_software_development_kit
ubuntu_linux
enterprise_linux_server 		Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, Thunderbird before 16.0.1, Thunderbird ESR 10.x before 10.0.9, and SeaMonkey before 2.13.1 omit a security check in the defaultValue fun… CWE-346
 Origin Validation Error 		CVE-2012-4193 2024-11-21 10:42 2012-10-12 Show GitHub Exploit DB Packet Storm
297410 - mozilla seamonkey
thunderbird
firefox 		Mozilla Firefox 16.0, Thunderbird 16.0, and SeaMonkey 2.13 allow remote attackers to bypass the Same Origin Policy and read the properties of a Location object via a crafted web site, a related issue… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4192 2024-11-21 10:42 2012-10-12 Show GitHub Exploit DB Packet Storm