Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202261 5.4 警告
Network 		IBM - IBM FileNet Workplace におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3054 2016-08-9 15:08 2016-07-22 Show GitHub Exploit DB Packet Storm
202262 8.8 重要
Network 		IBM - IBM Security QRadar SIEM における root 権限で任意の OS コマンドを実行される脆弱性 CWE-Other
その他 		CVE-2016-2875 2016-08-9 15:08 2016-07-29 Show GitHub Exploit DB Packet Storm
202263 3.7
Network 		IBM - IBM AIX および VIOS の mustendd ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0281 2016-08-9 15:08 2016-07-28 Show GitHub Exploit DB Packet Storm
202264 6.5 警告
Network 		レッドハット - マルチテナント環境の Red Hat OpenShift Enterprise で使用される Kubernetes の API サーバにおける重要なプロジェクトおよびユーザ情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5392 2016-08-9 12:39 2016-07-14 Show GitHub Exploit DB Packet Storm
202265 6.1 警告
Network 		レッドハット - Red Hat Satellite の spacewalk-java におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3097 2016-08-9 12:39 2016-07-26 Show GitHub Exploit DB Packet Storm
202266 6.1 警告
Network 		レッドハット - Red Hat Satellite の spacewalk-java におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3080 2016-08-9 12:39 2016-07-26 Show GitHub Exploit DB Packet Storm
202267 6.1 警告
Network 		Django Software Foundation
Debian		 - Django の contrib/admin/static/admin/js/admin/RelatedObjectLookups.js におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6186 2016-08-9 12:21 2016-07-18 Show GitHub Exploit DB Packet Storm
202268 5.1 警告
Local 		OpenShift - OpenShift Origin の openshift-node における秘密鍵情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2015-8945 2016-08-9 11:53 2015-07-30 Show GitHub Exploit DB Packet Storm
202269 6.5 警告
Adjacent 		AmazonBasics
Lenovo
Logitech
デル		 - 複数の Lenovo 製品で使用される Lenovo Ultraslim ドングルのファームウェアにおける暗号化されたキーボード入力をシステムに挿入される脆弱性 CWE-310
暗号の問題 		CVE-2016-6257 2016-08-9 11:42 2016-07-27 Show GitHub Exploit DB Packet Storm
202270 5.5 警告
Local 		Apache Software Foundation - Apache POI の XLSX2CSV の example における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2016-5000 2016-08-9 11:28 2016-07-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290341 - joomla joomla\! Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-3058 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290342 - joomla joomla\! Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3057 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290343 - joomla joomla\! Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vecto… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3056 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290344 - strongswan strongswan strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature. CWE-287
Improper Authentication 		CVE-2013-2944 2024-11-21 10:52 2013-05-2 Show GitHub Exploit DB Packet Storm
290345 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of servi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3080 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290346 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (V… CWE-94
Code Injection 		CVE-2013-3079 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290347 - sap basis_communication_services SAP BASIS Communication Services 4.6B through 7.30 allows remote authenticated users to execute arbitrary commands via unspecified vectors. NVD-CWE-noinfo
CVE-2013-3063 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290348 - sap production_planning_and_control The CP_RC_TRANSACTION_CALL_BY_SET function in the Engineering Workbench component in SAP Production Planning and Control allows remote authenticated users to bypass intended transaction restrictions … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3062 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290349 - sap healthcare_industry_solution
erp_central_component 		The ISHMED-PATRED_TRANSACT_RFCCALL function in the IS-H Industry-Specific Component Hospital subsystem in SAP Healthcare Industry Solution, and the SAP ERP central component (aka ECC 6), allows remot… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3061 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290350 - crunchify foursquare-checkins Cross-site request forgery (CSRF) vulnerability in the FourSquare Checkins plugin before 1.3 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that in… CWE-352
 Origin Validation Error 		CVE-2013-2709 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm