Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256411	4.3	警告	レッドハット Glyph & Cog, LLC ターボリナックスサイバートラスト株式会社 CUPS	-	Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0166	2010-06-1 12:01	2009-04-16	Show	GitHub Exploit DB Packet Storm

256412	4.3	警告	Glyph & Cog, LLC アップルサイバートラスト株式会社 CUPS ターボリナックスレッドハット	-	Xpdf および CUPS の JBIG2 デコーダーにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0147	2010-06-1 12:01	2009-04-16	Show	GitHub Exploit DB Packet Storm

256413	4.3	警告	Glyph & Cog, LLC アップルサイバートラスト株式会社 CUPS ターボリナックスレッドハット	-	Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-0146	2010-06-1 12:01	2009-04-16	Show	GitHub Exploit DB Packet Storm

256414	4.3	警告	アドビシステムズ	-	Adobe Shockwave Player におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1282	2010-05-31 18:27	2010-05-11	Show	GitHub Exploit DB Packet Storm

256415	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の iml32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1281	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

256416	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1280	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

256417	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0987	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

256418	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0986	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

256419	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0130	2010-05-28 18:44	2010-05-11	Show	GitHub Exploit DB Packet Storm

256420	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0129	2010-05-28 18:43	2010-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298461	-	novell	suse_cloud	The server in Crowbar, as used in SUSE Cloud 1.0, uses weak permissions for the production.log file, which has unspecified impact and attack vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0434	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

298462	-	opensuse	opensuse	yast2-add-on-creator in SUSE inst-source-utils 2008.11.26 before 2008.11.26-0.9.1 and 2012.9.13 before 2012.9.13-0.8.1 allows local users to gain privileges via a crafted (1) file name or (2) directo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0427	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

298463	-	novell	suse_linux_enterprise_for_sap_applications	Race condition in sap_suse_cluster_connector before 1.0.0-0.8.1 in SUSE Linux Enterprise for SAP Applications 11 SP2 allows local users to have an unspecified impact via vectors related to a tmp/ dir…	CWE-362 Race Condition	CVE-2012-0426	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

298464	-	opensuse	opensuse	LanItems.ycp in save_y2logs in yast2-network before 2.24.4 in SUSE YaST writes cleartext Wi-Fi credentials to the y2log log file, which allows context-dependent attackers to obtain sensitive informat…	CWE-200 Information Exposure	CVE-2012-0425	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

298465	-	opensuse	zypper	zypp-refresh-wrapper in SUSE Zypper before 1.3.20 and 1.6.x before 1.6.166 allows local users to create files in arbitrary directories, or possibly have unspecified other impact, via a pathname in th…	NVD-CWE-noinfo	CVE-2012-0420	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

298466	-	novell	suse_manager	Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE Manager 1.2 for SUSE Linux Enterprise (SLE) 11 SP1 allows remote attackers to inject arbitrary web script or HTML via an imag…	CWE-79 Cross-site Scripting	CVE-2012-0414	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

298467	-	wikiwig_project	wikiwig	Multiple cross-site scripting (XSS) vulnerabilities in spell-check-savedicts.php in the SpellChecker module in Xinha, as used in WikiWig 5.01 and possibly other products, allow remote attackers to in…	CWE-79 Cross-site Scripting	CVE-2011-5267	2024-11-21 10:34	2013-11-6	Show	GitHub Exploit DB Packet Storm

298468	-	novell	groupwise	An ActiveX control in gwcls1.dll in the client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote attackers to execute arbitrary code via (1) a pointer argument to the Set…	CWE-94 Code Injection	CVE-2012-0439	2024-11-21 10:34	2013-02-24	Show	GitHub Exploit DB Packet Storm

298469	-	featurific_for_wordpress_project	featurific-for-wordpress	Cross-site scripting (XSS) vulnerability in cached_image.php in the Featurific For WordPress plugin 1.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the snum par…	CWE-79 Cross-site Scripting	CVE-2011-5265	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

298470	-	marcel_brinkkemper	lazyest-backup	Cross-site scripting (XSS) vulnerability in lazyest-backup.php in the Lazyest Backup plugin before 0.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xml_or_al…	CWE-79 Cross-site Scripting	CVE-2011-5264	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm