Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228361 5 警告 サムスン - Samsung Kies Air におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5859 2012-12-5 15:59 2012-12-3 Show GitHub Exploit DB Packet Storm
228362 4.3 警告 サムスン - Samsung Kies Air における端末内の任意のコンテンツを読み取られる脆弱性 CWE-287
不適切な認証 		CVE-2012-5858 2012-12-5 15:57 2012-12-3 Show GitHub Exploit DB Packet Storm
228363 7.5 危険 FlashTux - WeeChat 用 プラグイン API における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5534 2012-12-5 15:48 2012-11-18 Show GitHub Exploit DB Packet Storm
228364 6.8 警告 CMS Made Simple - CMS Made Simple におけるクロスサイトリクエストフォージェリ脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5450 2012-12-5 14:30 2012-10-17 Show GitHub Exploit DB Packet Storm
228365 6 警告 OrangeHRM - OrangeHRM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5367 2012-12-5 14:26 2012-12-3 Show GitHub Exploit DB Packet Storm
228366 1.9 注意 シトリックス・システムズ - Xen におけるサービス運用妨害 (ホストハング) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-2934 2012-12-5 13:21 2012-06-12 Show GitHub Exploit DB Packet Storm
228367 1.9 注意 シトリックス・システムズ - Xen 用 MMIO オペレーションエミュレータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3432 2012-12-5 13:05 2012-07-26 Show GitHub Exploit DB Packet Storm
228368 1.9 注意 シトリックス・システムズ - Xen におけるサービス運用妨害 (ゲストクラッシュ) の脆弱性 CWE-DesignError
CVE-2012-0218 2012-12-5 12:22 2012-06-12 Show GitHub Exploit DB Packet Storm
228369 5 警告 Joomla! - Joomla! における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1599 2012-12-5 11:58 2012-03-27 Show GitHub Exploit DB Packet Storm
228370 7.5 危険 Joomla! - Joomla! における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1598 2012-12-5 11:55 2012-03-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198411 5.9 MEDIUM
Network 		stashcat heinekingmedia An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. For authentication, the user password is hashed directly with SH… CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2017-11131 2024-11-21 12:07 2017-08-1 Show GitHub Exploit DB Packet Storm
198412 8.1 HIGH
Network 		stashcat heinekingmedia An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. The product's protocol only tries to ensure confidentiality. In … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2017-11130 2024-11-21 12:07 2017-08-1 Show GitHub Exploit DB Packet Storm
198413 9.8 CRITICAL
Network 		stashcat heinekingmedia An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android. The keystore is locked with a hard-coded password. Therefore, everyone with access to the keystore can read the content o… CWE-798
 Use of Hard-coded Credentials 		CVE-2017-11129 2024-11-21 12:07 2017-08-1 Show GitHub Exploit DB Packet Storm
198414 5.5 MEDIUM
Local 		libid3tag_project libid3tag The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (NULL Pointer Dereference and application crash) via a crafted mp3 file. CWE-476
 NULL Pointer Dereference 		CVE-2017-11550 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
198415 5.5 MEDIUM
Local 		timidity\+\+_project timidity\+\+ The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mid file. NOTE: CPU consumption might be … CWE-834
 Excessive Iteration 		CVE-2017-11549 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
198416 5.5 MEDIUM
Local 		xiph libao The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11548 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
198417 5.5 MEDIUM
Local 		timidity\+\+_project timidity\+\+ The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mid file. NOTE: a crash might be releva… CWE-125
Out-of-bounds Read 		CVE-2017-11547 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
198418 5.5 MEDIUM
Local 		timidity\+\+_project timidity\+\+ The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mid file. NOTE: a cra… CWE-369
 Divide By Zero 		CVE-2017-11546 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
198419 5.5 MEDIUM
Local 		sound_exchange_project
debian 		sound_exchange
debian_linux 		The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conve… CWE-369
 Divide By Zero 		CVE-2017-11359 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
198420 5.5 MEDIUM
Local 		sound_exchange_project
debian 		sound_exchange
debian_linux 		The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted hcom file. CWE-125
Out-of-bounds Read 		CVE-2017-11358 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm