Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251291	5	警告	アップル	-	Apple iOS の CFNetwork における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0641	2012-03-13 14:23	2012-03-8	Show	GitHub Exploit DB Packet Storm

251292	4	警告	Redmine	-	Redmine におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0327	2012-03-13 12:02	2012-03-13	Show	GitHub Exploit DB Packet Storm

251293	2.6	注意	Tetsuya Aoyama	-	twicca におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0326	2012-03-13 12:02	2012-03-13	Show	GitHub Exploit DB Packet Storm

251294	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0634	2012-03-13 10:14	2012-03-8	Show	GitHub Exploit DB Packet Storm

251295	7.5	危険	アップル	-	複数の Apple 製品で使用される libresolv における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-3453	2012-03-12 14:14	2012-02-2	Show	GitHub Exploit DB Packet Storm

251296	7.6	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-3845	2012-03-9 15:48	2012-03-8	Show	GitHub Exploit DB Packet Storm

251297	4.3	警告	アップル	-	Apple Safari におけるアドレスバーを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3844	2012-03-9 15:43	2012-03-8	Show	GitHub Exploit DB Packet Storm

251298	5	警告	シマンテック	-	Symantec pcAnywhere 製品の awhost32 サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0292	2012-03-9 15:06	2012-03-1	Show	GitHub Exploit DB Packet Storm

251299	4	警告	CloudBees	-	Jenkins におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0325	2012-03-9 12:03	2012-03-9	Show	GitHub Exploit DB Packet Storm

251300	4.3	警告	CloudBees	-	Jenkins におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0324	2012-03-9 12:02	2012-03-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280871	-	symantec	encryption_management_server pgp_universal_server	Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-7288	2024-11-21 11:16	2015-02-1	Show	GitHub Exploit DB Packet Storm

280872	-	symantec	encryption_management_server pgp_universal_server	The key-management component in Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allows remote attackers to trigger unintended content in outbound e-mail messages via a…	CWE-74 Injection	CVE-2014-7287	2024-11-21 11:16	2015-02-1	Show	GitHub Exploit DB Packet Storm

280873	-	broadcom symantec	symantec_critical_system_protection data_center_security	SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 a…	CWE-89 SQL Injection	CVE-2014-7289	2024-11-21 11:16	2015-01-22	Show	GitHub Exploit DB Packet Storm

280874	-	debian	mime-support	run-mailcap in the Debian mime-support package before 3.52-1+deb7u1 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename.	CWE-77 Command Injection	CVE-2014-7209	2024-11-21 11:16	2015-01-7	Show	GitHub Exploit DB Packet Storm

280875	-	nyu	opensso_integration	Open redirect vulnerability in the logon page in NYU OpenSSO Integration 2.1 and earlier for Ex Libris Patron Directory Services (PDS) allows remote attackers to redirect users to arbitrary web sites…	NVD-CWE-Other	CVE-2014-7294	2024-11-21 11:16	2015-01-3	Show	GitHub Exploit DB Packet Storm

280876	-	nyu	opensso_integration	Cross-site scripting (XSS) vulnerability in the logon page in NYU OpenSSO Integration 2.1 and earlier for Ex Libris Patron Directory Services (PDS) allows remote attackers to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2014-7293	2024-11-21 11:16	2015-01-3	Show	GitHub Exploit DB Packet Storm

280877	-	gnome redhat	gnome-shell enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node	GNOME Shell 3.14.x before 3.14.1, when the Screen Lock feature is used, does not limit the aggregate memory consumption of all active PrtSc requests, which allows physically proximate attackers to ex…	CWE-399 Resource Management Errors	CVE-2014-7300	2024-11-21 11:16	2014-12-26	Show	GitHub Exploit DB Packet Storm

280878	-	sideway	hapi_crumb	The Crumb plugin before 3.0.0 for Node.js does not properly restrict token access in situations where a hapi route handler has CORS enabled, which allows remote attackers to obtain sensitive informat…	CWE-284 Improper Access Control	CVE-2014-7193	2024-11-21 11:16	2014-12-25	Show	GitHub Exploit DB Packet Storm

280879	-	symantec	deployment_solution	Buffer overflow in AClient in Symantec Deployment Solution 6.9 and earlier on Windows XP and Server 2003 allows local users to gain privileges via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-7286	2024-11-21 11:16	2014-12-23	Show	GitHub Exploit DB Packet Storm

280880	-	gparted	gparted	GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via shell metacharacters in a crafted filesystem label.	CWE-77 Command Injection	CVE-2014-7208	2024-11-21 11:16	2014-12-20	Show	GitHub Exploit DB Packet Storm