Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249361	6.8	警告	アップルサイバートラスト株式会社 NTP Project ヒューレット・パッカードターボリナックスオラクル VMware レッドハット	-	NTP の ntpq における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-0159	2012-03-27 11:35	2009-04-14	Show	GitHub Exploit DB Packet Storm

249362	5	警告	アップルサイバートラスト株式会社レッドハットオラクル NTP Project	-	NTP における証明書チェーンの有効性を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-0021	2012-03-27 11:01	2009-01-7	Show	GitHub Exploit DB Packet Storm

249363	5	警告	アップルサイバートラスト株式会社 PNG Development Group オラクル VMware レッドハット	-	libpng に含まれる pngrutil.c におけるメモリリークの脆弱性	CWE-399 リソース管理の問題	CVE-2010-2249	2012-03-27 10:32	2010-06-26	Show	GitHub Exploit DB Packet Storm

249364	7.5	危険	アップルサイバートラスト株式会社 Mozilla Foundation PNG Development Group オラクル VMware フェンリル株式会社レッドハット	-	libpng に脆弱性	CWE-119 バッファエラー	CVE-2010-1205	2012-03-27 10:29	2010-07-6	Show	GitHub Exploit DB Packet Storm

249365	7.8	危険	アップルサイバートラスト株式会社 PNG Development Group Lunascape オラクル VMware フェンリル株式会社レッドハット	-	libpng における圧縮された補助チャンクの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-0205	2012-03-27 10:22	2010-03-4	Show	GitHub Exploit DB Packet Storm

249366	7.5	危険	クアンタムデル IBM	-	複数のテープライブラリ製品におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-1844	2012-03-26 18:12	2012-03-22	Show	GitHub Exploit DB Packet Storm

249367	5	警告	クアンタムデル	-	Quantum Scalar i500 および Dell ML6000 における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1841	2012-03-26 18:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

249368	5	警告	LG-Nortel	-	LG-Nortel ELO GS24M に複数の脆弱性	CWE-287 不適切な認証	CVE-2012-1838	2012-03-26 16:29	2012-03-22	Show	GitHub Exploit DB Packet Storm

249369	7.5	危険	Webglimpse	-	WebGlimpse に OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-1795	2012-03-26 16:24	2012-03-20	Show	GitHub Exploit DB Packet Storm

249370	7.5	危険	Pydio	-	AjaXplorer におけるログインのアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-1840	2012-03-26 16:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316181	-		pam-pgsql	pam-pgsql	SQL injection vulnerability in the libpam-pgsql library before 0.5.2 allows attackers to execute arbitrary SQL statements.	CWE-89 SQL Injection	CVE-2004-0366	2024-02-9 12:14	2004-05-4	Show	GitHub Exploit DB Packet Storm

316182	-		washington	pine	Integer signedness error in rfc2231_get_param from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negat…	CWE-129 Improper Validation of Array Index	CVE-2003-0721	2024-02-9 12:14	2003-09-17	Show	GitHub Exploit DB Packet Storm

316183	7.5	HIGH Network	polycom	viewstation_512 viewstation_h.323 viewstation_sp_384 viewstation_mp viewstation_128 viewstation_dcp viewstation_v.35 viewstation_fx_vs4000	The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute …	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2002-0628	2024-02-9 12:14	2003-01-7	Show	GitHub Exploit DB Packet Storm

316184	9.8	CRITICAL Network	3com	superstack_ii_ps_hub_40_firmware	The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the ser…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2001-1291	2024-02-9 12:14	2001-07-12	Show	GitHub Exploit DB Packet Storm

316185	9.8	CRITICAL Network	lightwavemo	consoleserver_3200_firmware	Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which could allow remote attackers to conduct brute force password guessing.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2001-0395	2024-02-9 12:14	2001-07-2	Show	GitHub Exploit DB Packet Storm

316186	9.8	CRITICAL Network	archilles	newsworld	admin_news.php in Archilles Newsworld up to 1.3.0 allows attackers to bypass authentication by obtaining the password hash for another user, for example through another Newsworld vulnerability, and s…	CWE-522 Insufficiently Protected Credentials	CVE-2005-3435	2024-02-9 12:13	2005-11-2	Show	GitHub Exploit DB Packet Storm

316187	7.5	HIGH Network	openssl canonical	openssl ubuntu_linux	The default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a more cryptographically strong algorithm, which makes it easier for remote attackers to forge certi…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2005-2946	2024-02-9 12:13	2005-09-17	Show	GitHub Exploit DB Packet Storm

316188	-		armagetronad	armagetron_advanced armagetron	Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier allows remote attackers to cause a denial of service (application crash) via a packet with a large (1) descriptor ID or (2) clai…	CWE-129 Improper Validation of Array Index	CVE-2005-0369	2024-02-9 12:13	2005-05-2	Show	GitHub Exploit DB Packet Storm

316189	9.8	CRITICAL Network	citrusdb	citrusdb	CitrusDB 0.3.6 and earlier generates easily predictable MD5 hashes of the user name for the id_hash cookie, which allows remote attackers to bypass authentication and gain privileges by calculating t…	CWE-916 Use of Password Hash With Insufficient Computational Effort	CVE-2005-0408	2024-02-9 12:13	2005-02-14	Show	GitHub Exploit DB Packet Storm

316190	7.5	HIGH Network	teekai	tracking_online	TeeKai Tracking Online 1.0 uses weak encryption of web usage statistics in data/userlog/log.txt, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 has…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2002-2058	2024-02-9 12:13	2002-12-31	Show	GitHub Exploit DB Packet Storm