Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228281	10	危険	Google	-	Google Chrome における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-5142	2012-12-13 15:20	2012-12-11	Show	GitHub Exploit DB Packet Storm

228282	10	危険	Google	-	Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2012-5141	2012-12-13 15:17	2012-12-11	Show	GitHub Exploit DB Packet Storm

228283	10	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-5140	2012-12-13 15:17	2012-12-11	Show	GitHub Exploit DB Packet Storm

228284	10	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-5139	2012-12-13 15:04	2012-12-11	Show	GitHub Exploit DB Packet Storm

228285	4.4	警告	アドビシステムズ	-	Adobe ColdFusion における共有ホスティングでのサンドボックスのパーミッションを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5675	2012-12-13 14:59	2012-12-11	Show	GitHub Exploit DB Packet Storm

228286	5	警告	VICTOR JONSSON	-	WordPress 用 Simple Gmail Login プラグインにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6313	2012-12-13 11:33	2012-12-11	Show	GitHub Exploit DB Packet Storm

228287	4.3	警告	Video Lead Form	-	WordPress 用 Video Lead Form プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6312	2012-12-13 11:29	2012-12-11	Show	GitHub Exploit DB Packet Storm

228288	7.2	危険	シマンテック	-	Symantec Network Access Control における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-4349	2012-12-13 10:58	2012-12-10	Show	GitHub Exploit DB Packet Storm

228289	5	警告	Google	-	Android のブラウザアプリにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-6301	2012-12-13 10:57	2012-12-10	Show	GitHub Exploit DB Packet Storm

228290	10	危険	CA Technologies	-	Unix および Linux 上で稼働する CA XCOM Data Transport における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-5973	2012-12-13 10:56	2012-12-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198371	6.5	MEDIUM Network	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc reader	Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the font parsing…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11210	2024-11-21 12:07	2017-08-12	Show	GitHub Exploit DB Packet Storm

198372	6.5	MEDIUM Network	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc reader	Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability that occurs when re…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11209	2024-11-21 12:07	2017-08-12	Show	GitHub Exploit DB Packet Storm

198373	6.5	MEDIUM Network	synology	chat	Server-side request forgery (SSRF) vulnerability in link preview in Synology Chat before 1.1.0-0806 allows remote authenticated users to access intranet resources via unspecified vectors.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-11148	2024-11-21 12:07	2017-08-12	Show	GitHub Exploit DB Packet Storm

198374	6.5	MEDIUM Network	fedoraproject mit	fedora kerberos kerberos_5	In MIT Kerberos 5 (aka krb5) 1.7 and later, an authenticated attacker can cause a KDC assertion failure by sending invalid S4U2Self or S4U2Proxy requests.	CWE-617 Reachable Assertion	CVE-2017-11368	2024-11-21 12:07	2017-08-10	Show	GitHub Exploit DB Packet Storm

198375	7.4	HIGH Network	tenable	nessus	When linking a Nessus scanner or agent to Tenable.io or other manager, Nessus 6.x before 6.11 does not verify the manager's TLS certificate when making the initial outgoing connection. This could all…	CWE-295 Improper Certificate Validation	CVE-2017-11506	2024-11-21 12:07	2017-08-9	Show	GitHub Exploit DB Packet Storm

198376	7.5	HIGH Network	synology	photo_station	An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to obtain sensitive system information via unspecified vectors.	CWE-200 Information Exposure	CVE-2017-11155	2024-11-21 12:07	2017-08-9	Show	GitHub Exploit DB Packet Storm

198377	7.2	HIGH Network	synology	photo_station	Unrestricted file upload vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to create arbitrary PHP scripts via the type paramete…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-11154	2024-11-21 12:07	2017-08-9	Show	GitHub Exploit DB Packet Storm

198378	9.8	CRITICAL Network	synology	photo_station	Deserialization vulnerability in synophoto_csPhotoMisc.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to gain administrator privileges via a crafted serialized p…	CWE-502 Deserialization of Untrusted Data	CVE-2017-11153	2024-11-21 12:07	2017-08-9	Show	GitHub Exploit DB Packet Storm

198379	7.5	HIGH Network	synology	photo_station	Directory traversal vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to write arbitrary files via the path parameter.	CWE-22 Path Traversal	CVE-2017-11152	2024-11-21 12:07	2017-08-9	Show	GitHub Exploit DB Packet Storm

198380	9.8	CRITICAL Network	synology	photo_station	A vulnerability in synotheme_upload.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to upload arbitrary files without authentication via the logo_upload action.	CWE-287 Improper Authentication	CVE-2017-11151	2024-11-21 12:07	2017-08-9	Show	GitHub Exploit DB Packet Storm