Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228831	6.8	警告	リアルネットワークス	-	RealNetworks RealPlayer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4987	2012-11-6 14:36	2012-11-4	Show	GitHub Exploit DB Packet Storm

228832	3.6	注意	アップル	-	Apple iOS 6.0.1 未満のパスコードロックの実装におけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3750	2012-11-6 14:33	2012-11-3	Show	GitHub Exploit DB Packet Storm

228833	6.8	警告	Irfan Skiljan	-	IrfanView 用 FlashPix PlugIn で使用される libfpx におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0025	2012-11-6 14:23	2012-11-2	Show	GitHub Exploit DB Packet Storm

228834	7.5	危険	Morbus Iff	-	Drupal 用 Activism モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4498	2012-11-6 14:21	2012-08-29	Show	GitHub Exploit DB Packet Storm

228835	2.1	注意	Devsaran	-	Drupal 用 Elegant Theme モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4497	2012-11-6 14:19	2012-08-15	Show	GitHub Exploit DB Packet Storm

228836	2.1	注意	Roy Baxter	-	Drupal 用 Better Revisions モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4493	2012-11-6 14:18	2012-08-8	Show	GitHub Exploit DB Packet Storm

228837	4	警告	Boombatower	-	Drupal 用 Subuser モジュールにおけるロールを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4487	2012-11-6 14:07	2012-07-25	Show	GitHub Exploit DB Packet Storm

228838	6.8	警告	Boombatower	-	Drupal 用 Subuser モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-4486	2012-11-6 14:04	2012-07-25	Show	GitHub Exploit DB Packet Storm

228839	7.5	危険	Curtis Galloway	-	libexif の exif-entry.c の exif_entry_get_value 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2841	2012-11-6 12:28	2012-07-12	Show	GitHub Exploit DB Packet Storm

228840	7.5	危険	Curtis Galloway	-	libexif の exif-entry.c の exif_convert_utf16_to_utf8 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-2840	2012-11-6 12:27	2012-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199121	7.8	HIGH Local	microsoft	malware_protection_engine	The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Se…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11940	2024-11-21 12:08	2017-12-8	Show	GitHub Exploit DB Packet Storm

199122	7.8	HIGH Local	microsoft	malware_protection_engine	The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Se…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11937	2024-11-21 12:08	2017-12-8	Show	GitHub Exploit DB Packet Storm

199123	5.3	MEDIUM Network	synology	photo_station	An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain sensitive system information…	CWE-200 Information Exposure	CVE-2017-12080	2024-11-21 12:08	2017-12-5	Show	GitHub Exploit DB Packet Storm

199124	7.5	HIGH Network	synology	photo_station	Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain arbitrary files via p…	CWE-200 Information Exposure	CVE-2017-12079	2024-11-21 12:08	2017-12-5	Show	GitHub Exploit DB Packet Storm

199125	6.7	MEDIUM Local	postgresql	postgresql	PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, 9.3.x before 9.3.20, and 9.2.x before 9.2.24 runs under a non-root operating system account, and database su…	CWE-59 Link Following	CVE-2017-12172	2024-11-21 12:08	2017-11-23	Show	GitHub Exploit DB Packet Storm

199126	7.8	HIGH Local	libxls_project	libxls	An exploitable out-of-bounds vulnerability exists in the xls_addCell function of libxls 1.4. A specially crafted XLS file with a formula record can cause memory corruption resulting in remote code ex…	CWE-787 Out-of-bounds Write	CVE-2017-12111	2024-11-21 12:08	2017-11-21	Show	GitHub Exploit DB Packet Storm

199127	7.8	HIGH Local	libxls_project	libxls	An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.	CWE-190 Integer Overflow or Wraparound	CVE-2017-12110	2024-11-21 12:08	2017-11-21	Show	GitHub Exploit DB Packet Storm

199128	7.8	HIGH Local	microsoft	excel	Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corru…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11884	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

199129	7.5	HIGH Network	microsoft	aspnetcore	.NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to remotely cause a denial of service attack against a .NET Core web application by improperly handling web requests, aka ".NET CORE Deni…	NVD-CWE-noinfo	CVE-2017-11883	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

199130	7.8	HIGH Local	microsoft	office	Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, and Microsoft Office 2016 allow an attacker to run arbitrary code in the context of t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11882	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm