Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201361 5.3 警告
Network 		Exponent CMS project - Exponent CMS の framework/modules/users/controllers/usersController.php における SQL インジェクションの脆弱性 CWE-200
情報漏えい 		CVE-2016-9284 2016-11-16 10:22 2016-11-3 Show GitHub Exploit DB Packet Storm
201362 7.5 重要
Network 		Exponent CMS project - Exponent CMS の framework/core/subsystems/expRouter.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9283 2016-11-16 10:22 2016-11-4 Show GitHub Exploit DB Packet Storm
201363 7.5 重要
Network 		Exponent CMS project - Exponent CMS の framework/modules/search/controllers/searchController.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9282 2016-11-16 10:22 2016-11-3 Show GitHub Exploit DB Packet Storm
201364 9.1 緊急
Network 		Exponent CMS project - Exponent CMS におけるブラインド SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9272 2016-11-16 10:22 2016-11-6 Show GitHub Exploit DB Packet Storm
201365 6.1 警告
Network 		MoinMoin - MoinMoin における "JavaScript インジェクション" 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7148 2016-11-15 17:56 2016-10-31 Show GitHub Exploit DB Packet Storm
201366 6.1 警告
Network 		MoinMoin - MoinMoin における "JavaScript インジェクション" 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7146 2016-11-15 17:56 2016-10-31 Show GitHub Exploit DB Packet Storm
201367 7.2 重要
Network 		Dotclear - Dotclear の "Install or upgrade manually" モジュールのブログの外観における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-9268 2016-11-15 17:33 2016-11-8 Show GitHub Exploit DB Packet Storm
201368 7.8 重要
Local 		Git for Windows project - Windows 用 Git における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-9274 2016-11-15 17:15 2016-11-5 Show GitHub Exploit DB Packet Storm
201369 7.8 重要
Local 		Teradata Corporation - Teradata Studio Express の studioexpressinstall におけるシステムファイルを上書きされる脆弱性 CWE-264
CWE-59
CVE-2016-7490 2016-11-15 17:09 2016-10-3 Show GitHub Exploit DB Packet Storm
201370 9.8 緊急
Network 		Teradata Corporation - Teradata Virtual Machine Community Edition の /opt/teradata/gsctools/bin/t2a.pl における昇格されたコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-7489 2016-11-15 17:08 2016-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290801 - strongswan strongswan strongSwan 5.0.2 through 5.1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and charon daemon crash) via a crafted IKEv1 fragmentation packet. NVD-CWE-Other
CVE-2013-6076 2024-11-21 10:58 2013-11-3 Show GitHub Exploit DB Packet Storm
290802 - strongswan strongswan The compare_dn function in utils/identification.c in strongSwan 4.3.3 through 5.1.1 allows (1) remote attackers to cause a denial of service (out-of-bounds read, NULL pointer dereference, and daemon … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6075 2024-11-21 10:58 2013-11-3 Show GitHub Exploit DB Packet Storm
290803 - cart66 cart66_lite_plugin Cross-site request forgery (CSRF) vulnerability in Cart66Product.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allows remote attackers to hijack the authentication of administrators for… CWE-352
 Origin Validation Error 		CVE-2013-5977 2024-11-21 10:58 2013-11-2 Show GitHub Exploit DB Packet Storm
290804 - ca
broadcom 		web_agents
siteminder 		Cross-site scripting (XSS) vulnerability in CA SiteMinder 12.0 through 12.51, and SiteMinder 6 Web Agents, allows remote attackers to inject arbitrary web script or HTML via vectors involving a " (do… CWE-79
Cross-site Scripting 		CVE-2013-5968 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm
290805 - triplc nano-10_plc_firmware
nano-10_plc 		Triangle Research International (aka Tri) Nano-10 PLC devices with firmware r81 and earlier do not properly handle large length values in MODBUS data, which allows remote attackers to cause a denial … CWE-20
 Improper Input Validation  		CVE-2013-5741 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm
290806 - ingo_renner apache_solr Cross-site scripting (XSS) vulnerability in the Apache Solr for TYPO3 (solr) extension before 2.8.3 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-6289 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm
290807 - ingo_renner apache_solr Unspecified vulnerability in the Apache Solr for TYPO3 (solr) extension before 2.8.3 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize." NVD-CWE-noinfo
CVE-2013-6288 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm
290808 9.3 CRITICAL
Adjacent 		juniper junos Juniper Junos 10.4 before 10.4S15, 11.4 before 11.4R9, 11.4X27 before 11.4X27.44, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.2 before 12.2R6, 12.3 before 12.3R3, 1… CWE-200
Information Exposure 		CVE-2013-6014 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm
290809 - juniper junos Juniper Junos 12.1X44 before 12.1.X44-D20 and 12.1X45 before 12.1X45-D15, when the no-validate option is enabled, does not properly handle configuration validation errors during the config commit pha… CWE-287
Improper Authentication 		CVE-2013-6012 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm
290810 - fengoffice feng_office Cross-site scripting (XSS) vulnerability in Feng Office 2.3.2-rc and earlier allows remote attackers to inject arbitrary web script or HTML via an arbitrary ref_XXX parameter. CWE-79
Cross-site Scripting 		CVE-2013-5744 2024-11-21 10:58 2013-10-29 Show GitHub Exploit DB Packet Storm