Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202001 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3001 2016-09-28 16:23 2016-09-15 Show GitHub Exploit DB Packet Storm
202002 4.3 警告
Network 		IBM - IBM Connections のヘルプサービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3000 2016-09-28 16:23 2016-09-15 Show GitHub Exploit DB Packet Storm
202003 6.5 警告
Network 		IBM - IBM Connections における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2999 2016-09-28 16:23 2016-09-15 Show GitHub Exploit DB Packet Storm
202004 3.1
Network 		IBM - IBM WebSphere MQ におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-0379 2016-09-28 16:23 2016-06-2 Show GitHub Exploit DB Packet Storm
202005 3.7
Network 		IBM - IBM Security Guardium における重要なクエリ文字列情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0248 2016-09-28 16:23 2016-09-14 Show GitHub Exploit DB Packet Storm
202006 8.8 重要
Local 		Moxa Inc. - Moxa Active OPC Server における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-5793 2016-09-28 15:14 2016-09-20 Show GitHub Exploit DB Packet Storm
202007 7.5 重要
Network 		シスコシステムズ - Cisco FirePOWER Management Center および FireSIGHT システム ソフトウェアにおける do-not-decrypt 設定を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6411 2016-09-28 15:06 2016-09-21 Show GitHub Exploit DB Packet Storm
202008 6.5 警告
Network 		シスコシステムズ - Cisco IOS および IOS XE の Cisco Application-hosting Framework コンポーネントにおける任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6410 2016-09-28 15:06 2016-09-21 Show GitHub Exploit DB Packet Storm
202009 7.5 重要
Network 		シスコシステムズ - Cisco IOS および IOS XE の Data in Motion コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-6409 2016-09-28 15:05 2016-09-21 Show GitHub Exploit DB Packet Storm
202010 7.8 重要
Local 		シスコシステムズ - Cisco IOS および IOS XE の iox におけるゲスト OS 上で任意の IOx Linux コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6414 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291041 - emc smarts_network_configuration_manager Multiple unspecified vulnerabilities in the System Management (aka SysAdmin) Console in EMC Smarts Network Configuration Manager (NCM) through 9.2 have unknown impact and attack vectors, a different … NVD-CWE-noinfo
CVE-2013-2717 2024-11-21 10:52 2013-03-29 Show GitHub Exploit DB Packet Storm
291042 - thomas_seidl search_api Cross-site scripting (XSS) vulnerability in the admin view in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain permissions to inject… CWE-79
Cross-site Scripting 		CVE-2013-2715 2024-11-21 10:52 2013-03-28 Show GitHub Exploit DB Packet Storm
291043 - mailup wp-mailup ajax.functions.php in the MailUp plugin before 1.3.2 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2640 2024-11-21 10:52 2013-03-23 Show GitHub Exploit DB Packet Storm
291044 - linux linux_kernel net/bridge/br_mdb.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a crafted application. CWE-399
 Resource Management Errors 		CVE-2013-2636 2024-11-21 10:52 2013-03-22 Show GitHub Exploit DB Packet Storm
291045 - linux linux_kernel The rtnl_fill_ifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from ke… CWE-399
 Resource Management Errors 		CVE-2013-2635 2024-11-21 10:52 2013-03-22 Show GitHub Exploit DB Packet Storm
291046 - linux linux_kernel net/dcb/dcbnl.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application. CWE-399
 Resource Management Errors 		CVE-2013-2634 2024-11-21 10:52 2013-03-22 Show GitHub Exploit DB Packet Storm
291047 - matomo matomo Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of par… CWE-20
 Improper Input Validation  		CVE-2013-2633 2024-11-21 10:52 2013-03-22 Show GitHub Exploit DB Packet Storm
291048 - google v8
chrome 		Google V8 before 3.17.13, as used in Google Chrome before 27.0.1444.3, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted J… NVD-CWE-Other
CVE-2013-2632 2024-11-21 10:52 2013-03-22 Show GitHub Exploit DB Packet Storm
291049 - curl_project curl lib/curl.rb in the Curl Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. CWE-94
Code Injection 		CVE-2013-2617 2024-11-21 10:52 2013-03-21 Show GitHub Exploit DB Packet Storm
291050 - rubygems mini_magick lib/mini_magick.rb in the MiniMagick Gem 1.3.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. CWE-94
Code Injection 		CVE-2013-2616 2024-11-21 10:52 2013-03-21 Show GitHub Exploit DB Packet Storm