Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201511 7.8 重要
Local 		Foxit Software Inc - Mac および Linux 用 Foxit Reader における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-8856 2016-11-4 12:34 2016-10-18 Show GitHub Exploit DB Packet Storm
201512 6.2 警告
Local 		Botan project - Botan の特定のパディングオプションを持つ RSA 暗号解読における平文に復元される脆弱性 CWE-200
情報漏えい 		CVE-2016-8871 2016-11-4 12:31 2016-10-28 Show GitHub Exploit DB Packet Storm
201513 4 警告
Local 		docker2aci project - docker2aci におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2016-8579 2016-11-4 11:22 2016-10-11 Show GitHub Exploit DB Packet Storm
201514 7.5 重要
Network 		Moodle - Moodle における重要な情報を取得される脆弱性 CWE-200
CWE-89
CVE-2016-7919 2016-11-4 10:41 2016-10-6 Show GitHub Exploit DB Packet Storm
201515 8.8 重要
Network 		シトリックス・システムズ - Citrix NetScaler ADC における許可されていないリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-9028 2016-11-4 10:09 2016-10-25 Show GitHub Exploit DB Packet Storm
201516 5.5 警告
Local 		リアルネットワークス - RealNetworks RealPlayer の qcpfformat.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-9018 2016-11-4 09:42 2016-10-21 Show GitHub Exploit DB Packet Storm
201517 7.5 重要
Network 		Artifex Software - Artifex Software MuJS における重要な情報を取得される脆弱性 CWE-200
CWE-Other
CVE-2016-9017 2016-11-4 09:41 2016-10-25 Show GitHub Exploit DB Packet Storm
201518 6.2 警告
Local 		Bitcoin Knots Project - Bitcoin Knots のデバッグコンソールにおける重要な情報を格納される脆弱性 CWE-200
CWE-310
CVE-2016-8889 2016-11-2 17:28 2016-10-27 Show GitHub Exploit DB Packet Storm
201519 9.8 緊急
Network 		Pivotal Software, Inc. - Redis におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8339 2016-11-2 16:46 2016-09-26 Show GitHub Exploit DB Packet Storm
201520 9.8 緊急
Network 		libcsp project - libcsp ライブラリの csp_if_zmqhub.c の zmq インターフェースにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8598 2016-11-2 16:41 2016-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290621 - juniper junos_space
junos_space_virtual_appliance
junos_space_ja1500_appliance 		Cross-site scripting (XSS) vulnerability in the web-based interface in Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, allows remote attackers to inject ar… CWE-79
Cross-site Scripting 		CVE-2013-5095 2024-11-21 10:57 2013-08-16 Show GitHub Exploit DB Packet Storm
290622 - alienvault open_source_security_information_management Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) before 4.3.0 allow remote attackers to inject arbitrary web script or HTML via th… CWE-79
Cross-site Scripting 		CVE-2013-5300 2024-11-21 10:57 2013-08-16 Show GitHub Exploit DB Packet Storm
290623 - phpfox phpfox SQL injection vulnerability in PHPFox before 3.6.0 (build6) allows remote attackers to execute arbitrary SQL commands via the search[sort_by] parameter to user/browse/view_/. CWE-89
SQL Injection 		CVE-2013-5121 2024-11-21 10:57 2013-08-15 Show GitHub Exploit DB Packet Storm
290624 - phpfox phpfox SQL injection vulnerability in PHPFox before 3.6.0 (build4) allows remote attackers to execute arbitrary SQL commands via the search[gender] parameter to user/browse/view_/. CWE-89
SQL Injection 		CVE-2013-5120 2024-11-21 10:57 2013-08-15 Show GitHub Exploit DB Packet Storm
290625 - franz_holzinger static_methods Cross-site scripting (XSS) vulnerability in the Static Methods since 2007 (div2007) extension before 0.10.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified ve… CWE-79
Cross-site Scripting 		CVE-2013-5100 2024-11-21 10:57 2013-08-10 Show GitHub Exploit DB Packet Storm
290626 - anchor anchor_cms Cross-site scripting (XSS) vulnerability in article.php in Anchor CMS 0.9.1, when comments are enabled, allows remote attackers to inject arbitrary web script or HTML via the Name field. NOTE: some … CWE-79
Cross-site Scripting 		CVE-2013-5099 2024-11-21 10:57 2013-08-10 Show GitHub Exploit DB Packet Storm
290627 - mikejolley download_monitor Cross-site scripting (XSS) vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the sort par… CWE-79
Cross-site Scripting 		CVE-2013-5098 2024-11-21 10:57 2013-08-10 Show GitHub Exploit DB Packet Storm
290628 5.4 MEDIUM
Network 		otrs otrs_itsm
otrs 		Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) ITSM 3.0.x before 3.0.9, 3.1.x before 3.1.10, and 3.2.x before 3.2.7 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2013-4718 2024-11-21 10:56 2021-08-10 Show GitHub Exploit DB Packet Storm
290629 8.8 HIGH
Network 		otrs otrs_itsm
otrs 		Multiple SQL injection vulnerabilities in Open Ticket Request System (OTRS) Help Desk 3.0.x before 3.0.22, 3.1.x before 3.1.18, and 3.2.x before 3.2.9 allow remote authenticated users to execute arbi… CWE-89
SQL Injection 		CVE-2013-4717 2024-11-21 10:56 2021-08-10 Show GitHub Exploit DB Packet Storm
290630 5.5 MEDIUM
Network 		prestashop prestashop PrestaShop before 1.4.11 allows logout CSRF. CWE-352
 Origin Validation Error 		CVE-2013-4792 2024-11-21 10:56 2020-02-14 Show GitHub Exploit DB Packet Storm