Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201461 5.8 警告 Apache Software Foundation
オラクル		 - Apache Tomcat におけるリクエスト長の誤った識別を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4286 2016-11-22 16:00 2013-09-23 Show GitHub Exploit DB Packet Storm
201462 6.8 警告 日本電気
Apache Software Foundation
オラクル		 - Apache Tomcat のフォーム認証機能におけるセッションにリクエストを挿入される脆弱性 CWE-287
不適切な認証 		CVE-2013-2067 2016-11-22 16:00 2013-05-3 Show GitHub Exploit DB Packet Storm
201463 5 警告 アップル
OpenSSL Project
ヒューレット・パッカード
オラクル		 - OpenSSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-3571 2016-11-22 15:58 2014-05-14 Show GitHub Exploit DB Packet Storm
201464 5.8 警告 アップル
オラクル
OpenBSD		 - OpenSSH の sshd における環境による制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2532 2016-11-22 15:58 2014-03-16 Show GitHub Exploit DB Packet Storm
201465 6.4 警告 Apache Software Foundation
オラクル		 - Apache Tomcat の java/org/apache/coyote/http11/filters/ChunkedInputFilter.java における HTTP リクエストスマグリング攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2014-0227 2016-11-22 15:58 2014-06-24 Show GitHub Exploit DB Packet Storm
201466 4 警告 オラクル - Oracle MySQL の MySQL Server における Server : Optimizer に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-0409 2016-11-22 15:57 2015-01-20 Show GitHub Exploit DB Packet Storm
201467 5 警告 アップル
日本電気
OpenSSL Project
ヒューレット・パッカード
オラクル		 - OpenSSL の crypto/asn1/a_type.c の ASN1_TYPE_cmp 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-0286 2016-11-22 15:56 2015-03-19 Show GitHub Exploit DB Packet Storm
201468 10 危険 日本電気
アップル
サイバートラスト株式会社
ヒューレット・パッカード
オラクル
GNU Project
日立		 - glibc ライブラリにバッファオーバーフローの脆弱性 CWE-119
CWE-Other
CVE-2015-0235 2016-11-22 15:56 2015-01-28 Show GitHub Exploit DB Packet Storm
201469 5 警告 ヒューレット・パッカード
日本電気
日立
オラクル
NTP Project		 - NTP の ntpd の ntp_proto.c の receive 関数における意図しない関連付けの変更を誘発される脆弱性 CWE-Other
その他 		CVE-2014-9296 2016-11-22 15:56 2014-11-3 Show GitHub Exploit DB Packet Storm
201470 7.5 危険 MySQL AB
オラクル		 - Oracle MySQL の MySQL Server における Server : Security : Encryption に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-0411 2016-11-22 15:55 2015-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291331 - microweber microweber Directory traversal vulnerability in userfiles/modules/admin/backup/delete.php in Microweber before 0.830 allows remote attackers to delete arbitrary files via a .. (dot dot) in the file parameter. CWE-22
Path Traversal 		CVE-2013-5984 2024-11-21 10:58 2014-05-12 Show GitHub Exploit DB Packet Storm
291332 - simplerisk simplerisk Cross-site scripting (XSS) vulnerability in management/prioritize_planning.php in SimpleRisk before 20130916-001 allows remote attackers to inject arbitrary web script or HTML via the new_project par… CWE-79
Cross-site Scripting 		CVE-2013-5749 2024-11-21 10:58 2014-05-12 Show GitHub Exploit DB Packet Storm
291333 - simplerisk simplerisk Cross-site request forgery (CSRF) vulnerability in management/prioritize_planning.php in SimpleRisk before 20130916-001 allows remote attackers to hijack the authentication of users for requests that… CWE-352
 Origin Validation Error 		CVE-2013-5748 2024-11-21 10:58 2014-05-12 Show GitHub Exploit DB Packet Storm
291334 - hp network_node_manager_i Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 9.0, 9.10, and 9.20 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-6220 2024-11-21 10:58 2014-05-10 Show GitHub Exploit DB Packet Storm
291335 - bradesco_gateway_plugin_project bradesco_gateway Cross-site scripting (XSS) vulnerability in falha.php in the Bradesco Gateway plugin 2.0 for Wordpress, as used in the WP e-Commerce plugin, allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2013-5916 2024-11-21 10:58 2014-05-9 Show GitHub Exploit DB Packet Storm
291336 - uclouvain openjpeg OpenJPEG 1.5.1 allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read. CWE-20
 Improper Input Validation  		CVE-2013-6053 2024-11-21 10:58 2014-04-28 Show GitHub Exploit DB Packet Storm
291337 - joomlaboat com_youtubegallery Cross-site scripting (XSS) vulnerability in includes/flvthumbnail.php in the Youtube Gallery (com_youtubegallery) component 3.4.0 for Joomla! allows remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2013-5956 2024-11-21 10:58 2014-04-25 Show GitHub Exploit DB Packet Storm
291338 - revive-adserver
openx 		revive_adserver
openx 		Multiple cross-site request forgery (CSRF) vulnerabilities in OpenX 2.8.11 and earlier allow remote attackers to hijack the authentication of administrators for requests that delete (1) users via adm… CWE-352
 Origin Validation Error 		CVE-2013-5954 2024-11-21 10:58 2014-04-25 Show GitHub Exploit DB Packet Storm
291339 - t-mobile
asus 		tm-ac1900
rt-ac68u_firmware
rt-ac68u 		The Network Analysis tab (Main_Analysis_Content.asp) in the ASUS RT-AC68U and other RT series routers with firmware before 3.0.0.4.374.5047 allows remote authenticated users to execute arbitrary comm… CWE-78
OS Command  		CVE-2013-5948 2024-11-21 10:58 2014-04-22 Show GitHub Exploit DB Packet Storm
291340 - hp hp-ux_whitelisting Unspecified vulnerability in HP HP-UX Whitelisting (aka WLI) before A.01.02.02 on HP-UX B.11.31 allows local users to bypass intended access restrictions via unknown vectors. NVD-CWE-noinfo
CVE-2013-6219 2024-11-21 10:58 2014-04-20 Show GitHub Exploit DB Packet Storm