Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201091 9.6 緊急
Network 		マイクロソフト - Microsoft Office 2016 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-7277 2016-12-21 17:41 2016-12-13 Show GitHub Exploit DB Packet Storm
201092 5.5 警告
Local 		マイクロソフト - 複数の Microsoft Office 製品におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-125
境界外読み取り 		CVE-2016-7276 2016-12-21 17:41 2016-12-13 Show GitHub Exploit DB Packet Storm
201093 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Office 製品における権限昇格の脆弱性 CWE-19
CWE-264
CVE-2016-7275 2016-12-21 17:41 2016-12-13 Show GitHub Exploit DB Packet Storm
201094 6.5 警告
Network 		マイクロソフト - 複数の Microsoft Windows および Office 製品の GDI コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-7257 2016-12-21 17:27 2016-12-13 Show GitHub Exploit DB Packet Storm
201095 8.8 重要
Network 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の Graphics コンポーネントにおける任意のコードを実行される脆弱性 CWE-19
データ処理 		CVE-2016-7273 2016-12-21 17:24 2016-12-13 Show GitHub Exploit DB Packet Storm
201096 7.5 重要
Network 		マイクロソフト - Microsoft Internet Explorer 11 および Microsoft Edge のスクリプトエンジンにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-7287 2016-12-21 17:21 2016-12-13 Show GitHub Exploit DB Packet Storm
201097 4.3 警告
Network 		マイクロソフト - Microsoft Internet Explorer 10 および 11 におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-7284 2016-12-21 17:21 2016-12-13 Show GitHub Exploit DB Packet Storm
201098 8.8 重要
Network 		マイクロソフト - Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-7283 2016-12-21 17:21 2016-12-13 Show GitHub Exploit DB Packet Storm
201099 6.1 警告
Network 		マイクロソフト - Microsoft Internet Explorer 9 から 11 および Microsoft Edge におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7282 2016-12-21 17:21 2016-12-13 Show GitHub Exploit DB Packet Storm
201100 5.3 警告
Network 		マイクロソフト - Microsoft Internet Explorer 10 から 11 および Microsoft Edge の Web ワーカーの実装における同一生成元ポリシーを回避される脆弱性 CWE-254
セキュリティ機能 		CVE-2016-7281 2016-12-21 17:21 2016-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290911 - php
suse 		php
linux_enterprise_server 		The default soap.wsdl_cache_dir setting in (1) php.ini-production and (2) php.ini-development in PHP through 5.6.7 specifies the /tmp directory, which makes it easier for local users to conduct WSDL … CWE-74
Injection 		CVE-2013-6501 2024-11-21 10:59 2015-03-30 Show GitHub Exploit DB Packet Storm
290912 - websvn
debian 		websvn
debian_linux 		WebSVN 2.3.3 allows remote authenticated users to read arbitrary files via a symlink attack in a commit. CWE-200
Information Exposure 		CVE-2013-6892 2024-11-21 10:59 2015-01-22 Show GitHub Exploit DB Packet Storm
290913 - phpthumb_project phpthumb The default configuration of phpThumb before 1.7.12 has a false value for the disable_debug option, which allows remote attackers to conduct Server-Side Request Forgery (SSRF) attacks via the src par… NVD-CWE-Other
CVE-2013-6919 2024-11-21 10:59 2014-12-28 Show GitHub Exploit DB Packet Storm
290914 - rpm
debian 		rpm
debian_linux 		Race condition in RPM 4.11.1 and earlier allows remote attackers to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the sig… CWE-74
Injection 		CVE-2013-6435 2024-11-21 10:59 2014-12-17 Show GitHub Exploit DB Packet Storm
290915 - fedup_project fedup fedup 0.9.0 in Fedora 19, 20, and 21 uses a temporary directory with a static name for its download cache, which allows local users to cause a denial of service (prevention of system updates). CWE-17
Code 		CVE-2013-6494 2024-11-21 10:59 2014-12-2 Show GitHub Exploit DB Packet Storm
290916 - clamav clamav clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service (crash) as demonstrated by the jwplayer.js file. CWE-17
Code 		CVE-2013-6497 2024-11-21 10:59 2014-12-2 Show GitHub Exploit DB Packet Storm
290917 - qemu qemu Array index error in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image. CWE-94
Code Injection 		CVE-2013-6399 2024-11-21 10:59 2014-11-5 Show GitHub Exploit DB Packet Storm
290918 - deeproot_linux deepofix The SMTP server in DeepOfix 3.3 and earlier allows remote attackers to bypass authentication via an empty password, which triggers an LDAP anonymous bind. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6796 2024-11-21 10:59 2014-10-27 Show GitHub Exploit DB Packet Storm
290919 - redhat conga Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive information via a crafted request to the (1) homebase, (2) cluster, (3) storage, (4) portal_skins/custom, or (5) logs Luci extension. CWE-200
Information Exposure 		CVE-2013-6496 2024-11-21 10:59 2014-10-6 Show GitHub Exploit DB Packet Storm
290920 - ibm tivoli_storage_manager The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5… CWE-281
 Improper Preservation of Permissions 		CVE-2013-6335 2024-11-21 10:59 2014-08-26 Show GitHub Exploit DB Packet Storm