Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201921 9.8 緊急
Network 		マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-7020 2016-10-11 16:07 2016-07-12 Show GitHub Exploit DB Packet Storm
201922 9.8 緊急
Network 		DELL EMC (旧 EMC Corporation) - EMC Unisphere for VMAX Virtual Appliance および Solutions Enabler Virtual Appliance における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6646 2016-10-11 12:02 2016-10-4 Show GitHub Exploit DB Packet Storm
201923 8.8 重要
Network 		DELL EMC (旧 EMC Corporation) - EMC Unisphere for VMAX Virtual Appliance および Solutions Enabler Virtual Appliance における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6645 2016-10-11 12:02 2016-10-4 Show GitHub Exploit DB Packet Storm
201924 9.8 緊急
Network 		DELL EMC (旧 EMC Corporation) - EMC Replication Manager および EMC Networker Module for Microsoft のクライアントにおける任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0913 2016-10-11 12:02 2016-10-4 Show GitHub Exploit DB Packet Storm
201925 9.1 緊急
Network 		Beckhoff Automation - Beckhoff Embedded PC Images およびオートメーションデバイス仕様の TwinCAT コンポーネントにおけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5415 2016-10-11 11:59 2014-11-17 Show GitHub Exploit DB Packet Storm
201926 9.1 緊急
Network 		Beckhoff Automation - Beckhoff Embedded PC Images およびオートメーションデバイス仕様の TwinCAT コンポーネントにおけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2014-5414 2016-10-11 11:59 2014-11-17 Show GitHub Exploit DB Packet Storm
201927 7.5 重要
Network 		American Auto-Matrix - American Auto-Matrix Aspect-Nexus および Aspect-Matrix Building Automation Front-End Solutions アプリケーションにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-2307 2016-10-11 11:51 2016-09-29 Show GitHub Exploit DB Packet Storm
201928 8.1 重要
Network 		- HPE KeyView の Filter SDK における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2016-4390 2016-10-11 10:25 2016-09-29 Show GitHub Exploit DB Packet Storm
201929 8.1 重要
Network 		- HPE KeyView の Filter SDK における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2016-4389 2016-10-11 10:25 2016-09-29 Show GitHub Exploit DB Packet Storm
201930 8.1 重要
Network 		- HPE KeyView の Filter SDK における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2016-4388 2016-10-11 10:25 2016-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291211 - apache xml_security_for_c\+\+ Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 does not properly validate length values, which allows remote attackers to cause a denial of service or bypass the CVE-2009-021… CWE-20
 Improper Input Validation  		CVE-2013-2155 2024-11-21 10:51 2013-08-21 Show GitHub Exploit DB Packet Storm
291212 - apache xml_security_for_c\+\+ Stack-based buffer overflow in the XML Signature Reference functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows context-depend… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2154 2024-11-21 10:51 2013-08-21 Show GitHub Exploit DB Packet Storm
291213 - apache xml_security_for_c\+\+ The XML digital signature functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows context-dependent attackers to reuse signatures… CWE-310
Cryptographic Issues 		CVE-2013-2153 2024-11-21 10:51 2013-08-21 Show GitHub Exploit DB Packet Storm
291214 - apache cxf The streaming XML parser in Apache CXF 2.5.x before 2.5.10, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to cause a denial of service (CPU and memory consumption) via crafted XM… CWE-399
 Resource Management Errors 		CVE-2013-2160 2024-11-21 10:51 2013-08-20 Show GitHub Exploit DB Packet Storm
291215 - canonical
opensuse
perlmonks 		ubuntu_linux
opensuse
module\ 		The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special u… CWE-20
 Improper Input Validation  		CVE-2013-2145 2024-11-21 10:51 2013-08-20 Show GitHub Exploit DB Packet Storm
291216 - apache cloudstack Multiple cross-site scripting (XSS) vulnerabilities in Apache CloudStack before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Physical network name to the Zone wizar… CWE-79
Cross-site Scripting 		CVE-2013-2136 2024-11-21 10:51 2013-08-20 Show GitHub Exploit DB Packet Storm
291217 - debian
canonical
redhat
haproxy 		debian_linux
ubuntu_linux
enterprise_linux_load_balancer
haproxy 		HAProxy 1.4 before 1.4.24 and 1.5 before 1.5-dev19, when configured to use hdr_ip or other "hdr_*" functions with a negative occurrence count, allows remote attackers to cause a denial of service (ne… CWE-20
CWE-284
 Improper Input Validation 
Improper Access Control 		CVE-2013-2175 2024-11-21 10:51 2013-08-19 Show GitHub Exploit DB Packet Storm
291218 - canonical ubuntu_linux Race condition in the post-installation script (mysql-server-5.5.postinst) for MySQL Server 5.5 for Debian GNU/Linux and Ubuntu Linux creates a configuration file with world-readable permissions befo… CWE-362
Race Condition 		CVE-2013-2162 2024-11-21 10:51 2013-08-19 Show GitHub Exploit DB Packet Storm
291219 - mongodb
canonical
opensuse 		mongodb
ubuntu_linux
opensuse 		bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) vi… NVD-CWE-Other
CVE-2013-2132 2024-11-21 10:51 2013-08-16 Show GitHub Exploit DB Packet Storm
291220 - apache ofbiz Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and 12.04.01 allows remote attackers to execute arbitrary Unified Expression Language (UEL) function… CWE-20
 Improper Input Validation  		CVE-2013-2250 2024-11-21 10:51 2013-08-16 Show GitHub Exploit DB Packet Storm