Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202211 9.8 緊急
Network 		Expat
アップル
Mozilla Foundation
openSUSE project
Canonical
Debian
SUSE		 - Expat におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-0718 2016-09-5 18:21 2016-05-18 Show GitHub Exploit DB Packet Storm
202212 9.8 緊急
Network 		Open vSwitch
レッドハット		 - Open vSwitch の ovs-vswitchd の lib/flow.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2074 2016-09-5 18:17 2016-03-28 Show GitHub Exploit DB Packet Storm
202213 7.5 危険 Google
HarfBuzz project		 - Google Chrome で使用される HarfBuzz におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-2052 2016-09-5 18:17 2016-01-20 Show GitHub Exploit DB Packet Storm
202214 6.8 警告 Mozilla Foundation - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1953 2016-09-5 18:17 2016-03-8 Show GitHub Exploit DB Packet Storm
202215 8.1 重要
Network 		Squid-cache.org
Canonical
オラクル		 - Squid におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4052 2016-09-5 18:00 2016-04-20 Show GitHub Exploit DB Packet Storm
202216 7.8 重要
Local 		有限会社AKABEi SOFT2 - 有限会社AKABEi SOFT2 製の複数のゲーム製品における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-4853 2016-09-5 17:51 2016-08-31 Show GitHub Exploit DB Packet Storm
202217 6.1 警告
Network 		レッツPHP! - シンプルチャットにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4851 2016-09-5 17:44 2016-08-23 Show GitHub Exploit DB Packet Storm
202218 6.1 警告
Network 		ClipBucket - ClipBucket におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4848 2016-09-5 17:39 2016-08-18 Show GitHub Exploit DB Packet Storm
202219 6.5 警告
Network 		Python Software Foundation - CPython の smtplib ライブラリにおける TLS の保護を回避される脆弱性 CWE-Other
その他 		CVE-2016-0772 2016-09-5 16:45 2016-06-25 Show GitHub Exploit DB Packet Storm
202220 8.6 重要
Network 		vBulletin Solutions, Inc. - vBulletin のメディアファイルのアップロード機能における SSRF 攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2016-6483 2016-09-5 15:17 2016-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291141 - omron openwnn The OMRON OpenWnn application before 1.3.6 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local f… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2301 2024-11-21 10:51 2013-03-30 Show GitHub Exploit DB Packet Storm
291142 - asterisk open_source
certified_asterisk
business_edition
digiumphones 		The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; Asterisk Business Edition (BE) C.3.x … CWE-200
Information Exposure 		CVE-2013-2264 2024-11-21 10:51 2013-04-2 Show GitHub Exploit DB Packet Storm
291143 - arubanetworks arubaos Cross-site scripting (XSS) vulnerability in the dashboard of the ArubaOS Administration WebUI in Aruba Networks ArubaOS 6.2.x before 6.2.0.3, 6.1.3.x before 6.1.3.7, 6.1.x-FIPS before 6.1.4.3-FIPS, a… CWE-79
Cross-site Scripting 		CVE-2013-2290 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
291144 - isc dhcp libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustio… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2494 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
291145 - isc bind libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2266 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
291146 - pm9 flickwnn The FlickWnn (aka OpenWnn/Flick support) application 2.02 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an applicatio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2300 2024-11-21 10:51 2013-03-28 Show GitHub Exploit DB Packet Storm
291147 - terillion terillion_reviews_plugin Cross-site scripting (XSS) vulnerability in the Terillion Reviews plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ProfileId field. CWE-79
Cross-site Scripting 		CVE-2013-2501 2024-11-21 10:51 2013-03-23 Show GitHub Exploit DB Packet Storm
291148 - siteminder_federation
siteminder_agent_for_sharepoint
siteminder_for_secure_proxy_server 		r6.0
2010
12.0
6.0
12.1
12.5 		CA SiteMinder Federation (FSS) 12.5, 12.0, and r6; Federation (Standalone) 12.1 and 12.0; Agent for SharePoint 2010; and SiteMinder for Secure Proxy Server 6.0, 12.0, and 12.5 does not properly verif… CWE-20
 Improper Input Validation  		CVE-2013-2279 2024-11-21 10:51 2013-03-22 Show GitHub Exploit DB Packet Storm
291149 - puppetlabs
puppet
canonical 		puppet
puppet_enterprise
ubuntu_linux 		The default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2, allows r… NVD-CWE-noinfo
CVE-2013-2275 2024-11-21 10:51 2013-03-21 Show GitHub Exploit DB Packet Storm
291150 - puppetlabs
puppet 		puppet
puppet_enterprise 		Puppet 2.6.x before 2.6.18 and Puppet Enterprise 1.2.x before 1.2.7 allows remote authenticated users to execute arbitrary code on the puppet master, or an agent with puppet kick enabled, via a craft… NVD-CWE-noinfo
CVE-2013-2274 2024-11-21 10:51 2013-03-21 Show GitHub Exploit DB Packet Storm