Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226901	7.5	危険	Google	-	Windows 上で稼働する Google Chrome の IPC レイヤにおけるデータ構造の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0830	2013-02-20 13:29	2013-01-10	Show	GitHub Exploit DB Packet Storm

226902	4.3	警告	ヒューレット・パッカード	-	HP ArcSight アプライアンス製品にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2960	2013-02-20 12:18	2012-08-7	Show	GitHub Exploit DB Packet Storm

226903	9	危険	日立	-	Hitachi Tuning Manager および JP1/Performance Management における複数の脆弱性	CWE-352 CWE-79	-	2013-02-20 09:53	2013-02-18	Show	GitHub Exploit DB Packet Storm

226904	4.3	警告	Stoneware	-	Stoneware webNetwork におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4352	2013-02-19 16:52	2012-09-12	Show	GitHub Exploit DB Packet Storm

226905	6.9	警告	シマンテック	-	Symantec PGP Desktop および Encryption Desktop における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-4351	2013-02-19 16:51	2013-02-13	Show	GitHub Exploit DB Packet Storm

226906	5.2	警告	Linux	-	Linux Kernel の Xen netback 機能におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0217	2013-02-19 16:48	2013-02-14	Show	GitHub Exploit DB Packet Storm

226907	2.1	注意	Linux	-	Linux Kernel の fs/binfmt_script.c の load_script 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-4530	2013-02-19 16:46	2013-01-11	Show	GitHub Exploit DB Packet Storm

226908	4.9	警告	Linux	-	Linux Kernel の kernel/kmod.c の __request_module 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-4398	2013-02-19 16:45	2013-02-18	Show	GitHub Exploit DB Packet Storm

226909	6.8	警告	ヒューレット・パッカード	-	HP ArcSight Connector Appliance および ArcSight Logger における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-5199	2013-02-19 16:42	2013-02-14	Show	GitHub Exploit DB Packet Storm

226910	5	警告	ヒューレット・パッカード	-	HP ArcSight Connector Appliance および ArcSight Logger における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-5198	2013-02-19 16:41	2013-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214971	6.5	MEDIUM Network	intelliants	subrion	admin/blocks.php in Subrion CMS through 4.2.1 allows PHP Object Injection (with resultant file deletion) via serialized data in the subpages value within a block to blocks/edit.	CWE-502 Deserialization of Untrusted Data	CVE-2020-12469	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214972	7.8	HIGH Local	intelliants	subrion	Subrion CMS 4.2.1 allows CSV injection via a phrase value within a language. This is related to phrases/add/ and languages/download/.	NVD-CWE-Other	CVE-2020-12468	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214973	6.5	MEDIUM Network	intelliants	subrion	Subrion CMS 4.2.1 allows session fixation via an alphanumeric value in a session cookie.	CWE-384 Session Fixation	CVE-2020-12467	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214974	7.2	HIGH Network	mono	monox	MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program.	NVD-CWE-noinfo	CVE-2020-12473	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214975	5.4	MEDIUM Network	mono	monox	MonoX through 5.1.40.5152 allows stored XSS via User Status, Blog Comments, or Blog Description.	CWE-79 Cross-site Scripting	CVE-2020-12472	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214976	6.7	MEDIUM Local	linux netapp	linux_kernel cloud_backup steelstore_cloud_integrated_storage hci_storage_nodes aff_a700s active_iq_unified_manager hci_compute_node solidfire_\&_hci_storage_node solidfir…	usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.	CWE-416 Use After Free	CVE-2020-12464	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214977	6.7	MEDIUM Local	linux netapp	linux_kernel cloud_backup steelstore_cloud_integrated_storage solidfire_\&_hci_management_node active_iq_unified_manager hci_compute_node solidfire_baseboard_management_controll…	An array overflow was discovered in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c in the Linux kernel before 5.5.10, aka CID-b102f0c522cf. An oversized packet with too many rx fragmen…	CWE-120 Classic Buffer Overflow	CVE-2020-12465	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214978	6.1	MEDIUM Network	ninjaforms	ninja_forms	The ninja-forms plugin before 3.4.24.2 for WordPress allows CSRF with resultant XSS.	CWE-352 Origin Validation Error	CVE-2020-12462	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214979	8.8	HIGH Network	php-fusion	php-fusion	PHP-Fusion 9.03.50 allows SQL Injection because maincore.php has an insufficient protection mechanism. An attacker can develop a crafted payload that can be inserted into the sort_order GET parameter…	CWE-89 SQL Injection	CVE-2020-12461	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

214980	5.3	MEDIUM Network	gitlab	gitlab	GitLab 10.8 through 12.9 has a vulnerability that allows someone to mirror a repository even if the feature is not activated.	CWE-276 Incorrect Default Permissions	CVE-2020-12277	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm