Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201821 8.3 重要
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-5573 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
201822 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE における AWT に関する脆弱性 CWE-Other
その他 		CVE-2016-5568 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
201823 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE における 2D に関する脆弱性 CWE-Other
その他 		CVE-2016-5556 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
201824 4.3 警告
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における JMX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5554 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
201825 3.1
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5542 2016-11-9 16:40 2016-10-18 Show GitHub Exploit DB Packet Storm
201826 2.6 注意 日本電気
Apache Software Foundation
オラクル		 - Apache Tomcat の AsyncContextImpl.java における重要なリクエスト情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2071 2016-11-9 16:39 2013-05-9 Show GitHub Exploit DB Packet Storm
201827 8.1 重要
Network 		レッドハット
日本電気
Fedora Project
The Go Project		 - Go の net/http パッケージにおける任意のプロキシサーバに CGI アプリケーションのアウトバウンド HTTP トラフィックをリダイレクトされる脆弱性 CWE-Other
CWE-Other
CVE-2016-5386 2016-11-9 16:35 2016-07-18 Show GitHub Exploit DB Packet Storm
201828 - - Claybird
寺尾 進
日本電気
Micco
アップル
Schezo
Lunascape
pon software
フェンリル株式会社		 - Windows プログラムの DLL 読み込みに脆弱性 - - 2016-11-9 16:25 2010-08-26 Show GitHub Exploit DB Packet Storm
201829 2.6 注意 日本電気
OpenSSL Project
オラクル		 - OpenSSL の s3_srvr.c の ssl3_get_client_key_exchange 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-1787 2016-11-9 15:45 2015-03-19 Show GitHub Exploit DB Packet Storm
201830 5 警告 アップル
日本電気
OpenSSL Project
日立
オラクル		 - OpenSSL の SSLv2 の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-0293 2016-11-9 15:45 2015-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291501 - friends_of_symfony_project fosuserbundle The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service (CPU consumption) via a long password that triggers an expens… CWE-399
 Resource Management Errors 		CVE-2013-5750 2024-11-21 10:58 2013-09-25 Show GitHub Exploit DB Packet Storm
291502 - tenable securitycenter Cross-site scripting (XSS) vulnerability in devform.php in Tenable SecurityCenter 4.6 through 4.7 allows remote attackers to inject arbitrary web script or HTML via the message parameter. CWE-79
Cross-site Scripting 		CVE-2013-5911 2024-11-21 10:58 2013-09-24 Show GitHub Exploit DB Packet Storm
291503 - sophos unified_threat_management_software Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro Security Gateway) before 9.105 has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2013-5932 2024-11-21 10:58 2013-09-24 Show GitHub Exploit DB Packet Storm
291504 - real-estate-php-script real_estate_php_script SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter. CWE-89
SQL Injection 		CVE-2013-5931 2024-11-21 10:58 2013-09-24 Show GitHub Exploit DB Packet Storm
291505 - real-estate-php-script real_estate_php_script Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote attackers to inject arbitrary web script or HTML via the bos parameter. CWE-79
Cross-site Scripting 		CVE-2013-5930 2024-11-21 10:58 2013-09-24 Show GitHub Exploit DB Packet Storm
291506 - platinum_seo_project platinum_seo_plugin Cross-site scripting (XSS) vulnerability in platinum_seo_pack.php in the Platinum SEO plugin before 1.3.8 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parame… CWE-79
Cross-site Scripting 		CVE-2013-5918 2024-11-21 10:58 2013-09-23 Show GitHub Exploit DB Packet Storm
291507 - rodrigo_coimbra nospam_pti SQL injection vulnerability in wp-comments-post.php in the NOSpam PTI plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the comment_post_ID parameter. CWE-89
SQL Injection 		CVE-2013-5917 2024-11-21 10:58 2013-09-23 Show GitHub Exploit DB Packet Storm
291508 - dahuasecurity dvr2104h
dvr0404hd-a
dvr1604hd-l
dvr2104hc
dvr5216a
dvr5104he
dvr3204lf-al
dvr5204a
dvr3204hf-s
dvr0404hd-s
dvr0804
dvr5104h
dvr5804
dvr2116h
dvr2404lf-al 		The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain ad… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5754 2024-11-21 10:58 2013-09-17 Show GitHub Exploit DB Packet Storm
291509 - sap netweaver Directory traversal vulnerability in SAP NetWeaver 7.x allows remote attackers to read arbitrary files via unspecified vectors. CWE-22
Path Traversal 		CVE-2013-5751 2024-11-21 10:58 2013-09-17 Show GitHub Exploit DB Packet Storm
291510 - wireshark wireshark The dissect_mq_rr function in epan/dissectors/packet-mq.c in the MQ dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not properly determine when to enter a certain loop, which… CWE-20
 Improper Input Validation  		CVE-2013-5721 2024-11-21 10:58 2013-09-16 Show GitHub Exploit DB Packet Storm