Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202061	5.4	警告 Network	IBM	-	IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-2954	2016-09-2 12:00	2016-08-16	Show	GitHub Exploit DB Packet Storm

202062	6.5	警告 Network	NetApp	-	NetApp OnCommand System Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2016-5047	2016-09-2 11:43	2016-08-30	Show	GitHub Exploit DB Packet Storm

202063	6.5	警告 Network	NetApp	-	NetApp Clustered Data ONTAP における重要なクラスタおよびテナント情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3064	2016-09-2 11:43	2016-08-30	Show	GitHub Exploit DB Packet Storm

202064	5.5	警告 Local	Debian	-	Debian Wheezy の linux-image パッケージの "aufs 3.2.x+setfl-debian" パッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-7118	2016-09-2 11:17	2016-08-31	Show	GitHub Exploit DB Packet Storm

202065	7.8	重要 Local	Linux	-	Linux Kernel の net/socket.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-2686	2016-09-1 17:17	2015-03-26	Show	GitHub Exploit DB Packet Storm

202066	7.8	重要 Local	Debian Canonical OpenBSD	-	OpenSSH の sshd の session.c 内の do_setup_env 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-8325	2016-09-1 17:10	2015-11-24	Show	GitHub Exploit DB Packet Storm

202067	5.4	警告 Network	DNN	-	DotNetNuke のユーザプロフィールの経歴セクションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-7119	2016-09-1 16:10	2016-03-16	Show	GitHub Exploit DB Packet Storm

202068	8.8	重要 Network	NUUO INC. ネットギア	-	NUUO NVRmini 2 および NETGEAR ReadyNAS Surveillance の cgi-bin/cgi_main におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-5680	2016-09-1 16:07	2016-08-4	Show	GitHub Exploit DB Packet Storm

202069	8.8	重要 Network	NUUO INC. ネットギア	-	NUUO NVRmini 2 および NETGEAR ReadyNAS Surveillance の cgi-bin/cgi_main における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-5679	2016-09-1 16:07	2016-08-4	Show	GitHub Exploit DB Packet Storm

202070	9.8	緊急 Network	NUUO INC.	-	NUUO NVRmini 2 および NVRsolo における管理アクセス権を取得される脆弱性	CWE-Other その他	CVE-2016-5678	2016-09-1 16:07	2016-08-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290911	-	apache	santuario_xml_security_for_java	jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signatu…	CWE-310 Cryptographic Issues	CVE-2013-2172	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290912	-	openstack opensuse	havana opensuse grizzly folsom	XML injection vulnerability in account/utils.py in OpenStack Swift Folsom, Grizzly, and Havana allows attackers to trigger invalid or spoofed Swift responses via an account name.	CWE-94 Code Injection	CVE-2013-2161	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290913	-	openstack	keystone	OpenStack Keystone Folsom, Grizzly before 2013.1.3, and Havana, when using LDAP with Anonymous binding, allows remote attackers to bypass authentication via an empty password.	CWE-287 Improper Authentication	CVE-2013-2157	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290914	-	apache	xml_security_for_c\+\+	Heap-based buffer overflow in the Exclusive Canonicalization functionality (xsec/canon/XSECC14n20010315.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows remote a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2156	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290915	-	apache	xml_security_for_c\+\+	Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 does not properly validate length values, which allows remote attackers to cause a denial of service or bypass the CVE-2009-021…	CWE-20 Improper Input Validation	CVE-2013-2155	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290916	-	apache	xml_security_for_c\+\+	Stack-based buffer overflow in the XML Signature Reference functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows context-depend…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2154	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290917	-	apache	xml_security_for_c\+\+	The XML digital signature functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows context-dependent attackers to reuse signatures…	CWE-310 Cryptographic Issues	CVE-2013-2153	2024-11-21 10:51	2013-08-21	Show	GitHub Exploit DB Packet Storm

290918	-	apache	cxf	The streaming XML parser in Apache CXF 2.5.x before 2.5.10, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to cause a denial of service (CPU and memory consumption) via crafted XM…	CWE-399 Resource Management Errors	CVE-2013-2160	2024-11-21 10:51	2013-08-20	Show	GitHub Exploit DB Packet Storm

290919	-	canonical opensuse perlmonks	ubuntu_linux opensuse module\	The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special u…	CWE-20 Improper Input Validation	CVE-2013-2145	2024-11-21 10:51	2013-08-20	Show	GitHub Exploit DB Packet Storm

290920	-	apache	cloudstack	Multiple cross-site scripting (XSS) vulnerabilities in Apache CloudStack before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Physical network name to the Zone wizar…	CWE-79 Cross-site Scripting	CVE-2013-2136	2024-11-21 10:51	2013-08-20	Show	GitHub Exploit DB Packet Storm