Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256471 10 危険 アップル - Apple Mac OS X の Mail における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0508 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
256472 6.8 警告 アップル - Apple Mac OS X の画像 RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0507 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
256473 6.8 警告 アップル - Apple Mac OS X の画像 RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0506 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
256474 6.8 警告 アップル - Apple Mac OS X の ImageIO における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0505 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
256475 7.5 危険 アップル - Apple Mac OS X の iChat サーバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0504 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
256476 6.5 警告 アップル - Apple Mac OS X の iChat サーバにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0503 2010-04-14 17:10 2010-03-29 Show GitHub Exploit DB Packet Storm
256477 4.3 警告 アップル - Apple Mac OS X の iChat サーバにおけるメッセージの監査を回避可能な脆弱性 CWE-DesignError
CVE-2010-0502 2010-04-14 17:10 2010-03-29 Show GitHub Exploit DB Packet Storm
256478 5 警告 アップル
レッドハット
jabberd 2.x project		 - Jabber Studio jabberd の SASL ネゴシエーションにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-1329 2010-04-14 17:10 2006-03-21 Show GitHub Exploit DB Packet Storm
256479 7.2 危険 アップル - Apple Mac OS X の FTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0501 2010-04-14 17:10 2010-03-29 Show GitHub Exploit DB Packet Storm
256480 7.5 危険 アップル - Apple Mac OS X の FreeRADIUS サーバにおけるネットワーク接続を確立される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0524 2010-04-14 17:10 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296581 - netweblogic login_with_ajax Cross-site scripting (XSS) vulnerability in login-with-ajax.php in the Login With Ajax (aka login-with-ajax) plugin before 3.0.4.1 for WordPress allows remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2012-2759 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
296582 - atlassian
gliffy 		jira
gliffy
confluence_server 		The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to re… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2928 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
296583 - tm_software tempo
tempo6.3.0
tempo6.3.2 		The TM Software Tempo plugin before 6.4.3.1, 6.5.x before 6.5.0.2, and 7.x before 7.0.3 for Atlassian JIRA does not properly restrict the capabilities of third-party XML parsers, which allows remote … CWE-399
 Resource Management Errors 		CVE-2012-2927 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
296584 - xelex mobiletrack The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted (1) FTP or (2) HTTP sessio… CWE-255
Credentials Management 		CVE-2012-2567 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
296585 - xelex mobiletrack The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a (1) LOCATE, (2) TRACK, (3) UPDATECFG, (4) UPDATE… CWE-287
CWE-20
Improper Authentication
 Improper Input Validation  		CVE-2012-2562 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
296586 - simple_php_agenda simple_php_agenda SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action. CWE-89
SQL Injection 		CVE-2012-2925 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
296587 9.1 CRITICAL
Network 		atlassian fisheye
confluence
jira
crucible
crowd
confluence_server
bamboo 		Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before 4.0.7, and 4.1 before 4.1.10; FishEye and Crucible before 2.5.8, 2.6 before 2.6.8, and 2.7 before 2.7.12; Bamboo before 3.3.4 and 3.4… NVD-CWE-noinfo
CVE-2012-2926 2024-11-21 10:39 2012-05-23 Show GitHub Exploit DB Packet Storm
296588 - hypermethod elearning_server PHP remote file inclusion vulnerability in admin/setup.inc.php in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. CWE-94
Code Injection 		CVE-2012-2924 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
296589 - hypermethod elearning_server SQL injection vulnerability in news.php4 in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary SQL commands via the nid parameter. CWE-89
SQL Injection 		CVE-2012-2923 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm
296590 - drupal drupal The request_path function in includes/bootstrap.inc in Drupal 7.14 and earlier allows remote attackers to obtain sensitive information via the q[] parameter to index.php, which reveals the installati… CWE-200
Information Exposure 		CVE-2012-2922 2024-11-21 10:39 2012-05-22 Show GitHub Exploit DB Packet Storm