Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201571 8.8 重要
Network 		IBM - IBM Security Guardium Database Activity Monitor における管理者アカウントになりすまされる脆弱性 CWE-Other
その他 		CVE-2016-0241 2016-10-25 18:01 2016-10-3 Show GitHub Exploit DB Packet Storm
201572 3.7
Network 		IBM - IBM Security Guardium Database Activity Monitor における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-0240 2016-10-25 18:01 2016-10-3 Show GitHub Exploit DB Packet Storm
201573 8.8 重要
Network 		IBM - IBM Security Guardium Database Activity Monitor における管理者権限で HTTP リクエストを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0239 2016-10-25 18:01 2016-09-14 Show GitHub Exploit DB Packet Storm
201574 8.8 重要
Network 		IBM - IBM Security Guardium Database Activity Monitor における root 権限で任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2016-0236 2016-10-25 18:01 2016-10-3 Show GitHub Exploit DB Packet Storm
201575 5.9 警告
Network 		Google - SHA-1 におけるなりすまし攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2005-4900 2016-10-25 16:50 2005-02-15 Show GitHub Exploit DB Packet Storm
201576 7.2 重要
Network 		Huge-IT - Joomla! 用 Huge-IT Catalog における SQL インジェクションの脆弱性 CWE-79
CWE-89
CVE-2016-1000119 2016-10-25 14:41 2016-07-17 Show GitHub Exploit DB Packet Storm
201577 7.2 重要
Network 		Huge-IT - Huge-IT Slideshow におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-89
CVE-2016-1000118 2016-10-25 14:41 2016-07-17 Show GitHub Exploit DB Packet Storm
201578 7.2 重要
Network 		Huge-IT - Huge-IT Slideshow におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-89
CVE-2016-1000117 2016-10-25 14:41 2016-07-17 Show GitHub Exploit DB Packet Storm
201579 7.2 重要
Network 		Huge-IT - Huge-IT Portfolio Gallery manager における SQL インジェクションの脆弱性 CWE-79
CWE-89
CVE-2016-1000116 2016-10-25 14:41 2016-07-15 Show GitHub Exploit DB Packet Storm
201580 7.2 重要
Network 		Huge-IT - Huge-IT Portfolio Gallery manager における SQL インジェクションの脆弱性 CWE-79
CWE-89
CVE-2016-1000115 2016-10-25 14:41 2016-07-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290421 - littlecms little_cms_color_engine Little CMS (lcms2) before 2.5, as used in OpenJDK 7 and possibly other products, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to (1) c… NVD-CWE-Other
CVE-2013-4160 2024-11-21 10:54 2014-01-22 Show GitHub Exploit DB Packet Storm
290422 - ibm integrated_management_module_2
bladecenter
flex_system_manager_node_7955
flex_system_manager_node_8731
flex_system_manager_node_8734
flex_system_x220_compute_node
flex_system_x240_c… 		Integrated Management Module (IMM) 2 1.00 through 2.00 on IBM System X and Flex System servers supports SSL cipher suites with short keys, which makes it easier for remote attackers to defeat cryptog… CWE-310
Cryptographic Issues 		CVE-2013-4030 2024-11-21 10:54 2014-01-21 Show GitHub Exploit DB Packet Storm
290423 - oracle hyperion_interactive_reporting Unspecified vulnerability in the Hyperion Strategic Finance component in Oracle Hyperion 11.1.2.1 and 11.1.2.2 allows remote authenticated users to affect confidentiality, integrity, and availability… NVD-CWE-noinfo
CVE-2013-3830 2024-11-21 10:54 2014-01-16 Show GitHub Exploit DB Packet Storm
290424 - opensuse opensuse The image creation configuration in aaa_base before 16.26.1 for openSUSE 13.1 KDE adds the root user to the "users" group when installing from a live image, which allows local users to obtain sensiti… CWE-200
Information Exposure 		CVE-2013-3713 2024-11-21 10:54 2014-01-11 Show GitHub Exploit DB Packet Storm
290425 - barebones textwrangler
bbedit
yojimbo 		The software update mechanism as used in Bare Bones Software Yojimbo before 4.0, TextWrangler before 4.5.3, and BBEdit before 10.5.5 does not properly download and verify updates before installation,… CWE-20
 Improper Input Validation  		CVE-2013-3667 2024-11-21 10:54 2014-01-1 Show GitHub Exploit DB Packet Storm
290426 - microsoft internet_explorer Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted CSpliceTreeEngine… CWE-399
 Resource Management Errors 		CVE-2013-3846 2024-11-21 10:54 2013-12-29 Show GitHub Exploit DB Packet Storm
290427 - suse
novell 		studio_onsite
suse_lifecycle_management_server
webyast 		WebYaST 1.3 uses weak permissions for config/initializers/secret_token.rb, which allows local users to gain privileges by reading the Rails secret token from this file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3709 2024-11-21 10:54 2013-12-24 Show GitHub Exploit DB Packet Storm
290428 - ibm websphere_portal IBM WebSphere Portal 8.0.0.x before 8.0.0.1 CF09, when Content Template Catalog 4.0 is used, does not require administrative privileges for Portal Application Archive (PAA) file installation, which a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4012 2024-11-21 10:54 2013-12-23 Show GitHub Exploit DB Packet Storm
290429 - novell client The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via an IOCTL call for an invalid IOCTL. CWE-20
 Improper Input Validation  		CVE-2013-3705 2024-11-21 10:54 2013-12-23 Show GitHub Exploit DB Packet Storm
290430 - ibm spss_collaboration_and_deployment_services The Portal application in IBM SPSS Collaboration and Deployment Services 4.2.1 before 4.2.1.3 IF3 and 5.0 before FP3 allows remote attackers to discover an internal password via unspecified vectors. CWE-200
Information Exposure 		CVE-2013-4070 2024-11-21 10:54 2013-12-21 Show GitHub Exploit DB Packet Storm