Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201621 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の BitmapData クラスにおける任意のコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-7875 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201622 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の NetConnection クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7874 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201623 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の PSDK クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7873 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201624 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の MovieClip クラスにおける任意のコードを実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-7872 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201625 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の Worker クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7871 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201626 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の RegExp クラスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7870 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201627 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の RegExp クラスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7869 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201628 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の RegExp クラスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7868 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201629 9.8 緊急
Network 		アドビシステムズ - Adobe Flash Player の RegExp クラスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7867 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
201630 8.1 重要
Network 		Django Software Foundation
Canonical
Fedora Project		 - Django における DNS リバインディング攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9014 2016-12-15 17:22 2016-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291601 5.4 MEDIUM
Network 		ibm spss_modeler IBM SPSS Modeler before 16 on UNIX allows remote authenticated users to bypass intended access restrictions via an SSO token. IBM X-Force ID: 89855. CWE-284
Improper Access Control 		CVE-2013-6739 2024-11-21 10:59 2018-04-28 Show GitHub Exploit DB Packet Storm
291602 7.8 HIGH
Local 		s3dvt_project s3dvt The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and ea… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6876 2024-11-21 10:59 2018-04-7 Show GitHub Exploit DB Packet Storm
291603 5.4 MEDIUM
Network 		redhat jbpm Multiple cross-site scripting (XSS) vulnerabilities in JBPM KIE Workbench 6.0.x allow remote authenticated users to inject arbitrary web script or HTML via vectors related to task name html inputs. CWE-79
Cross-site Scripting 		CVE-2013-6465 2024-11-21 10:59 2017-12-20 Show GitHub Exploit DB Packet Storm
291604 9.8 CRITICAL
Network 		seagate blackarmor_nas_220_firmware Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php. CWE-77
Command Injection 		CVE-2013-6924 2024-11-21 10:59 2017-10-11 Show GitHub Exploit DB Packet Storm
291605 6.5 MEDIUM
Network 		google chrome Google Chrome caches TLS sessions before certificate validation occurs. CWE-295
Improper Certificate Validation  		CVE-2013-6662 2024-11-21 10:59 2017-04-14 Show GitHub Exploit DB Packet Storm
291606 7.5 HIGH
Network 		google skia SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash). NVD-CWE-noinfo
CVE-2013-6648 2024-11-21 10:59 2017-04-14 Show GitHub Exploit DB Packet Storm
291607 9.8 CRITICAL
Network 		google chrome A use-after-free in AnimationController::endAnimationUpdate in Google Chrome. CWE-416
 Use After Free 		CVE-2013-6647 2024-11-21 10:59 2017-04-12 Show GitHub Exploit DB Packet Storm
291608 3.1 LOW
Network 		cloudera cdh The JobHistory Server in Cloudera CDH 4.x before 4.6.0 and 5.x before 5.0.0 Beta 2, when using MRv2/YARN with HTTP authentication, allows remote authenticated users to obtain sensitive job informatio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6446 2024-11-21 10:59 2017-03-24 Show GitHub Exploit DB Packet Storm
291609 - php
suse 		php
linux_enterprise_server 		The default soap.wsdl_cache_dir setting in (1) php.ini-production and (2) php.ini-development in PHP through 5.6.7 specifies the /tmp directory, which makes it easier for local users to conduct WSDL … CWE-74
Injection 		CVE-2013-6501 2024-11-21 10:59 2015-03-30 Show GitHub Exploit DB Packet Storm
291610 - websvn
debian 		websvn
debian_linux 		WebSVN 2.3.3 allows remote authenticated users to read arbitrary files via a symlink attack in a commit. CWE-200
Information Exposure 		CVE-2013-6892 2024-11-21 10:59 2015-01-22 Show GitHub Exploit DB Packet Storm