Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202291 8.8 重要
Network 		Mozilla Foundation - Mozilla Firefox の nsBidi::BracketData::AddOpening 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2838 2016-08-8 15:59 2016-08-2 Show GitHub Exploit DB Packet Storm
202292 8.8 重要
Network 		Mozilla Foundation - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2836 2016-08-8 15:59 2016-08-2 Show GitHub Exploit DB Packet Storm
202293 8.8 重要
Network 		Mozilla Foundation - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-2835 2016-08-8 15:59 2016-08-2 Show GitHub Exploit DB Packet Storm
202294 4.3 警告
Network 		Mozilla Foundation - Mozilla Firefox におけるユーザを追跡される脆弱性 CWE-200
情報漏えい 		CVE-2016-2830 2016-08-8 15:59 2016-08-2 Show GitHub Exploit DB Packet Storm
202295 5 警告 レッドハット - Red Hat Enterprise Application Platform および WildFly の Web コンソール におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-5220 2016-08-5 17:45 2015-10-15 Show GitHub Exploit DB Packet Storm
202296 6.1 警告
Network 		Nofollow Links - WordPressプラグイン「Nofollow Links」におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4833 2016-08-5 17:39 2016-07-20 Show GitHub Exploit DB Packet Storm
202297 8.1 重要
Network 		インテル - Intel Crosswalk Project に SSL サーバ証明書の検証が行われなくなる脆弱性 CWE-20
CWE-310
CWE-Other
CVE-2016-5672 2016-08-5 17:29 2016-07-29 Show GitHub Exploit DB Packet Storm
202298 7.8 重要
Local 		パルスセキュア - Windows 上で稼動する複数の Pulse Secure 製品のクライアントサイドのコンポーネントにおける管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2408 2016-08-5 16:27 2016-07-24 Show GitHub Exploit DB Packet Storm
202299 6.2 警告
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6259 2016-08-5 15:51 2015-07-26 Show GitHub Exploit DB Packet Storm
202300 8.8 重要
Network 		Crestron Electronics, Inc. - Crestron Electronics DM-TXRX-100-STR デバイスのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-5671 2016-08-5 14:29 2016-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291031 - apache struts Apache Struts 2 before 2.3.14.2 allows remote attackers to execute arbitrary OGNL code via a crafted request that is not properly handled when using the includeParams attribute in the (1) URL or (2) … CWE-94
Code Injection 		CVE-2013-1966 2024-11-21 10:50 2013-07-11 Show GitHub Exploit DB Packet Storm
291032 - apache struts
struts2-showcase 		Apache Struts Showcase App 2.0.0 through 2.3.13, as used in Struts 2 before 2.3.14.3, allows remote attackers to execute arbitrary OGNL code via a crafted parameter name that is not properly handled … CWE-94
Code Injection 		CVE-2013-1965 2024-11-21 10:50 2013-07-11 Show GitHub Exploit DB Packet Storm
291033 - videolan vlc_media_player The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1954 2024-11-21 10:50 2013-07-11 Show GitHub Exploit DB Packet Storm
291034 - videolan vlc_media_player Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1868 2024-11-21 10:50 2013-07-11 Show GitHub Exploit DB Packet Storm
291035 - strongswan strongswan Buffer overflow in the atodn function in strongSwan 2.0.0 through 4.3.4, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (p… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2054 2024-11-21 10:50 2013-07-10 Show GitHub Exploit DB Packet Storm
291036 - xelerance openswan Buffer overflow in the atodn function in Openswan before 2.6.39, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2053 2024-11-21 10:50 2013-07-10 Show GitHub Exploit DB Packet Storm
291037 - libreswan libreswan Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2052 2024-11-21 10:50 2013-07-10 Show GitHub Exploit DB Packet Storm
291038 - redhat enterprise_linux The Tomcat 6 DIGEST authentication functionality as used in Red Hat Enterprise Linux 6 allows remote attackers to bypass intended access restrictions by performing a replay attack after a nonce becom… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2051 2024-11-21 10:50 2013-07-10 Show GitHub Exploit DB Packet Storm
291039 - redhat enterprise_linux
jboss_enterprise_web_server 		The (1) tomcat5, (2) tomcat6, and (3) tomcat7 init scripts, as used in the RPM distribution of Tomcat for JBoss Enterprise Web Server 1.0.2 and 2.0.0, and Red Hat Enterprise Linux 5 and 6, allow loca… CWE-59
Link Following 		CVE-2013-1976 2024-11-21 10:50 2013-07-10 Show GitHub Exploit DB Packet Storm
291040 - libtirpc_project libtirpc The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an i… CWE-399
 Resource Management Errors 		CVE-2013-1950 2024-11-21 10:50 2013-07-10 Show GitHub Exploit DB Packet Storm