Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228881 4.3 警告 Joomla! - Joomla! 用 Language Switcher モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4532 2012-11-2 14:01 2012-09-13 Show GitHub Exploit DB Packet Storm
228882 4.3 警告 Joomla! - Joomla! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4531 2012-11-2 14:00 2012-09-13 Show GitHub Exploit DB Packet Storm
228883 10 危険 General Electric Company - GE Intelligent Platforms Proficy Real-Time Information Portal におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3026 2012-11-2 13:59 2012-08-14 Show GitHub Exploit DB Packet Storm
228884 10 危険 General Electric Company - GE Intelligent Platforms Proficy Real-Time Information Portal におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3021 2012-11-2 13:57 2012-08-14 Show GitHub Exploit DB Packet Storm
228885 10 危険 General Electric Company - GE Intelligent Platforms Proficy Real-Time Information Portal におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3010 2012-11-2 13:57 2012-08-14 Show GitHub Exploit DB Packet Storm
228886 2.1 注意 シトリックス・システムズ - Xen の PV ドメインビルダーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4544 2012-11-2 13:52 2012-10-31 Show GitHub Exploit DB Packet Storm
228887 4.3 警告 Pebble - Pebble におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5170 2012-11-2 12:02 2012-11-2 Show GitHub Exploit DB Packet Storm
228888 4.3 警告 Pebble - Pebble における HTTP ヘッダインジェクションの脆弱性 CWE-Other
その他 		CVE-2012-4023 2012-11-2 12:02 2012-11-2 Show GitHub Exploit DB Packet Storm
228889 5 警告 Pebble - Pebble において記事が閲覧不能になる脆弱性 CWE-Other
その他 		CVE-2012-4022 2012-11-2 12:01 2012-11-2 Show GitHub Exploit DB Packet Storm
228890 6.5 警告 株式会社マインド - MosP勤怠管理システムにおける認証不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4021 2012-11-2 12:01 2012-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198471 6.1 MEDIUM
Network 		nexusphp_project nexusphp Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type parameter to shoutbox.php. CWE-79
Cross-site Scripting 		CVE-2017-12680 2024-11-21 12:10 2017-08-19 Show GitHub Exploit DB Packet Storm
198472 7.5 HIGH
Network 		libtiff libtiff The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation for short files, which allows remote attackers to cause a denial of service (allocation failure and appl… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-12944 2024-11-21 12:10 2017-08-19 Show GitHub Exploit DB Packet Storm
198473 9.8 CRITICAL
Network 		dlink dir-600_b1_firmware D-Link DIR-600 Rev Bx devices with v2.x firmware allow remote attackers to read passwords via a model/__show_info.php?REQUIRE_FILE= absolute path traversal attack, as demonstrated by discovering the … CWE-22
Path Traversal 		CVE-2017-12943 2024-11-21 12:10 2017-08-19 Show GitHub Exploit DB Packet Storm
198474 9.8 CRITICAL
Network 		rarlab unrar libunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack::LongLZ function. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-12942 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm
198475 9.8 CRITICAL
Network 		rarlab unrar libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpack::Unpack20 function. CWE-125
Out-of-bounds Read 		CVE-2017-12941 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm
198476 9.8 CRITICAL
Network 		rarlab unrar libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function. CWE-125
Out-of-bounds Read 		CVE-2017-12940 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm
198477 9.8 CRITICAL
Network 		unity3d unity_editor A Remote Code Execution vulnerability was identified in all Windows versions of Unity Editor, e.g., before 5.3.8p2, 5.4.x before 5.4.5p5, 5.5.x before 5.5.4p3, 5.6.x before 5.6.3p1, and 2017.x before… CWE-20
 Improper Input Validation  		CVE-2017-12939 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm
198478 7.5 HIGH
Network 		rarlab unrar UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file. CWE-22
Path Traversal 		CVE-2017-12938 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm
198479 8.8 HIGH
Network 		graphicsmagick
debian 		graphicsmagick
debian_linux 		The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has a colormap heap-based buffer over-read. CWE-125
Out-of-bounds Read 		CVE-2017-12937 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm
198480 8.8 HIGH
Network 		graphicsmagick
debian 		graphicsmagick
debian_linux 		The ReadWMFImage function in coders/wmf.c in GraphicsMagick 1.3.26 has a use-after-free issue for data associated with exception reporting. CWE-416
 Use After Free 		CVE-2017-12936 2024-11-21 12:10 2017-08-18 Show GitHub Exploit DB Packet Storm