Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225671 9.3 危険 サムスン
Meizu		 - Samsung GALAXY および Meizu MX など Android デバイスにおける任意の物理メモリを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6422 2012-12-25 17:53 2012-12-18 Show GitHub Exploit DB Packet Storm
225672 7.2 危険 シマンテック - Symantec Endpoint Protection の管理コンソールにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4348 2012-12-25 17:50 2012-12-10 Show GitHub Exploit DB Packet Storm
225673 1.2 注意 Linux - Linux Kernel の rio_ioctl 関数における Ethernet アダプタへデータを書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2313 2012-12-25 17:46 2012-06-13 Show GitHub Exploit DB Packet Storm
225674 7.1 危険 Linux - Linux Kernel の fs/ext4/super.c におけるファイルシステムグループデータの不整合を誘発される脆弱性 CWE-189
数値処理の問題 		CVE-2012-2100 2012-12-25 17:44 2012-07-3 Show GitHub Exploit DB Packet Storm
225675 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4782 2012-12-25 17:11 2012-12-11 Show GitHub Exploit DB Packet Storm
225676 9.3 危険 マイクロソフト - Microsoft Windows における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-4774 2012-12-25 17:08 2012-12-11 Show GitHub Exploit DB Packet Storm
225677 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2556 2012-12-25 17:05 2012-12-11 Show GitHub Exploit DB Packet Storm
225678 10 危険 Wansview
ShenZhen Foscam Intelligent Technology		 - 複数のネットワークカメラに認証回避の脆弱性 CWE-287
不適切な認証 		CVE-2012-3002 2012-12-25 16:44 2012-10-11 Show GitHub Exploit DB Packet Storm
225679 10 危険 Carlo Gavazzi - Carlo Gavazzi EOS-Box のファームウェアにおける管理アクセス権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-6428 2012-12-25 16:37 2012-12-19 Show GitHub Exploit DB Packet Storm
225680 7.5 危険 Carlo Gavazzi - Carlo Gavazzi EOS-Box のファームウェアにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-6427 2012-12-25 16:33 2012-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313501 8.8 HIGH
Network 		qnap qts
quts_hero 		A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a … CWE-120
CWE-121
Classic Buffer Overflow
Stack-based Buffer Overflow 		CVE-2023-51367 2024-09-11 22:27 2024-09-7 Show GitHub Exploit DB Packet Storm
313502 6.5 MEDIUM
Network 		zoom workplace
workplace_desktop
workplace_virtual_desktop_infrastructure
rooms 		Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access. CWE-522
 Insufficiently Protected Credentials 		CVE-2024-39818 2024-09-11 22:27 2024-08-15 Show GitHub Exploit DB Packet Storm
313503 6.5 MEDIUM
Network 		terminalfour terminalfour A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows authenticated users to use specific features to access internal services including sensitive information on the… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-22217 2024-09-11 22:19 2024-08-16 Show GitHub Exploit DB Packet Storm
313504 5.4 MEDIUM
Network 		yogeshojha rengine reNgine is an automated reconnaissance framework for web applications. Versions 2.1.2 and prior are susceptible to Stored Cross-Site Scripting (XSS) attacks. This vulnerability occurs when scanning a… CWE-79
Cross-site Scripting 		CVE-2024-43381 2024-09-11 22:02 2024-08-17 Show GitHub Exploit DB Packet Storm
313505 9.8 CRITICAL
Network 		h3c magic_b1st_firmware H3C Magic B1ST v100R012 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root. CWE-798
 Use of Hard-coded Credentials 		CVE-2024-42638 2024-09-11 21:53 2024-08-17 Show GitHub Exploit DB Packet Storm
313506 7.5 HIGH
Network 		google android In sdpu_compare_uuid_with_attr of sdp_utils.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution pri… CWE-120
Classic Buffer Overflow 		CVE-2024-34727 2024-09-11 21:43 2024-08-16 Show GitHub Exploit DB Packet Storm
313507 8.2 HIGH
Network 		xpdfreader xpdf In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read fro… CWE-908
 Use of Uninitialized Resource 		CVE-2024-7868 2024-09-11 21:40 2024-08-16 Show GitHub Exploit DB Packet Storm
313508 8.8 HIGH
Network 		xyzscripts insert_php_code_snippet Cross-Site Request Forgery (CSRF) vulnerability in xyzscripts.Com Insert PHP Code Snippet.This issue affects Insert PHP Code Snippet: from n/a through 1.3.6. CWE-352
 Origin Validation Error 		CVE-2024-43275 2024-09-11 21:33 2024-08-15 Show GitHub Exploit DB Packet Storm
313509 - - - Inclusion of Functionality from Untrusted Control Sphere(CWE-829) in the Command Centre Server and Workstations may allow an attacker to perform Remote Code Execution (RCE). This issue affects: Comm… - CVE-2024-43690 2024-09-11 14:15 2024-09-11 Show GitHub Exploit DB Packet Storm
313510 - - - Versions of the package dset before 3.1.4 are vulnerable to Prototype Pollution via the dset function due improper user input sanitization. This vulnerability allows the attacker to inject malicious … - CVE-2024-21529 2024-09-11 14:15 2024-09-11 Show GitHub Exploit DB Packet Storm