Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 12:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251511	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2354	2011-10-21 11:43	2011-10-12	Show	GitHub Exploit DB Packet Storm

251512	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2352	2011-10-21 11:42	2011-10-12	Show	GitHub Exploit DB Packet Storm

251513	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2341	2011-10-21 11:42	2011-10-12	Show	GitHub Exploit DB Packet Storm

251514	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2339	2011-10-21 11:41	2011-10-12	Show	GitHub Exploit DB Packet Storm

251515	4.3	警告	マイクロソフト	-	複数の Microsoft SharePoint 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1893	2011-10-20 16:20	2011-09-13	Show	GitHub Exploit DB Packet Storm

251516	9.3	危険	マイクロソフト	-	Microsoft Office 2003 および 2007 における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1980	2011-10-20 16:19	2011-09-13	Show	GitHub Exploit DB Packet Storm

251517	9.3	危険	マイクロソフト	-	Microsoft Office 2007 および 2010 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1982	2011-10-20 16:19	2011-09-13	Show	GitHub Exploit DB Packet Storm

251518	7.2	危険	マイクロソフト	-	Windows Server 2003 および 2008 の WINS における権限昇格の脆弱性性	CWE-264 認可・権限・アクセス制御	CVE-2011-1984	2011-10-20 16:19	2011-09-13	Show	GitHub Exploit DB Packet Storm

251519	9.3	危険	マイクロソフト	-	Microsoft Excel 2003 における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-1986	2011-10-20 16:18	2011-09-13	Show	GitHub Exploit DB Packet Storm

251520	9.3	危険	マイクロソフト	-	複数の Microsoft Excel 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1987	2011-10-20 16:18	2011-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295381	-	yoono	yoono_for_firefox	Cross-site scripting (XSS) vulnerability in the Add friends module in the Yoono extension before 7.7.8 for Firefox allows remote attackers to inject arbitrary web script or HTML via the create field …	CWE-79 Cross-site Scripting	CVE-2012-1215	2024-11-21 10:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

295382	-	yoono	yoono_desktop	Cross-site scripting (XSS) vulnerability in the Add friends module in Yoono Desktop Application before 1.8.21 allows remote attackers to inject arbitrary web script or HTML via the create field in a …	CWE-79 Cross-site Scripting	CVE-2012-1214	2024-11-21 10:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

295383	-	nova-cms	nova_cms	Multiple PHP remote file inclusion vulnerabilities in Nova CMS allow remote attackers to execute arbitrary PHP code via a URL in the (1) fileType parameter to optimizer/index.php, (2) id parameter to…	CWE-94 Code Injection	CVE-2012-1200	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295384	-	secureideas	basic_analysis_and_security_engine	base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote attackers to execute arbitrary code by uploading contents of the file with an executable extension via a create actio…	CWE-20 Improper Input Validation	CVE-2012-1198	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295385	-	acd_systems	acdsee	Integer overflow in the IDE_ACDStd.apl module for ACDSee 14.1 Build 137 allows remote attackers to execute arbitrary code via crafted "image dimension values" in a BMP file, which triggers a heap-bas…	CWE-189 Numeric Errors	CVE-2012-1197	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295386	-	secureideas	basic_analysis_and_security_engine	Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) BASE_path parameter to …	CWE-94 Code Injection	CVE-2012-1199	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295387	-	landesk	lenovo_thinkmanagement_console	Directory traversal vulnerability in the VulCore web service (WSVulnerabilityCore/VulCore.asmx) in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. (dot…	CWE-22 Path Traversal	CVE-2012-1196	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295388	-	landesk	lenovo_thinkmanagement_console	Unrestricted file upload vulnerability in andesk/managementsuite/core/core.anonymous/ServerSetup.asmx in the ServerSetup web service in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1195	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295389	-	microsoft	windows_server_2008	The resolver in the DNS Server service in Microsoft Windows Server 2008 before R2 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query,…	NVD-CWE-Other	CVE-2012-1194	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm

295390	-	powerdns	powerdns_recursor	The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote att…	NVD-CWE-Other	CVE-2012-1193	2024-11-21 10:36	2012-02-18	Show	GitHub Exploit DB Packet Storm