Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202291 6.1 警告
Network 		anti-plagiarism project - WordPress 用 anti-plagiarism プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000128 2016-10-19 16:52 2016-02-9 Show GitHub Exploit DB Packet Storm
202292 6.1 警告
Network 		ajax-random-post project - WordPress 用 ajax-random-post プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000127 2016-10-19 16:52 2016-02-9 Show GitHub Exploit DB Packet Storm
202293 6.1 警告
Network 		Admin Font Editor - WordPress 用 Admin Font Editor プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000126 2016-10-19 16:52 2016-02-9 Show GitHub Exploit DB Packet Storm
202294 7.5 重要
Network 		OpenStack - 複数の OpenStack 製品のイメージパーサにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-5162 2016-10-19 16:26 2015-04-27 Show GitHub Exploit DB Packet Storm
202295 7.8 重要
Local 		インテル - Intel SSD Toolbox の updater サブシステムにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8101 2016-10-19 14:19 2016-10-4 Show GitHub Exploit DB Packet Storm
202296 5.5 警告
Local 		インテル - Intel Integrated Performance Primitives Cryptography における RSA 秘密鍵を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-8100 2016-10-19 14:19 2016-10-4 Show GitHub Exploit DB Packet Storm
202297 7.8 重要
Local 		マイクロソフト - Microsoft Windows 10 の Windows 診断ハブの標準コレクターサービスにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-7188 2016-10-18 18:11 2016-10-11 Show GitHub Exploit DB Packet Storm
202298 9.8 緊急
Network 		マイクロソフト - 複数の Microsoft 製品の Graphics コンポーネントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-7182 2016-10-18 18:11 2016-10-11 Show GitHub Exploit DB Packet Storm
202299 7.8 重要
Local 		マイクロソフト - 複数の Microsoft 製品の Graphics Device Interface における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3396 2016-10-18 18:11 2016-10-11 Show GitHub Exploit DB Packet Storm
202300 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルの Graphics コンポーネントにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3270 2016-10-18 18:11 2016-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291931 - microfocus arcsight_enterprise_security_manager Cross-site scripting (XSS) vulnerability in the web interface in HP ArcSight Enterprise Security Manager (ESM) before 5.5 allows remote attackers to inject arbitrary web script or HTML via unspecifie… CWE-79
Cross-site Scripting 		CVE-2013-4815 2024-11-21 10:56 2013-09-21 Show GitHub Exploit DB Packet Storm
291932 - iij seil_x2_firmware
seil\/x2
seil\%2fturbo_firmware
seil\/turbo
seil\%2fneu_2fe_plus_firmware
seil\/neu_2fe_plus
seil\%2fb1_firmware
seil\/b1
seil\%2fx86_firmware
seil\/x86 		Buffer overflow in the PPP Access Concentrator (PPPAC) on the SEIL/x86 with firmware before 2.82, SEIL/X1 with firmware before 4.32, SEIL/X2 with firmware before 4.32, SEIL/B1 with firmware before 4.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4709 2024-11-21 10:56 2013-09-21 Show GitHub Exploit DB Packet Storm
291933 - dlink des-3810_firmware
des-3810 		The SSH implementation on D-Link Japan DES-3810 devices with firmware before R2.20.011 allows remote authenticated users to cause a denial of service (device hang) by leveraging login access. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4707 2024-11-21 10:56 2013-09-21 Show GitHub Exploit DB Packet Storm
291934 - dlink dwl-2100ap
dwl-2100ap_firmware 		The SSH implementation on the D-Link Japan DWL-2100AP with firmware before R252JP-RC572 allows remote authenticated users to cause a denial of service (reboot) by leveraging login access. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4706 2024-11-21 10:56 2013-09-21 Show GitHub Exploit DB Packet Storm
291935 - eucalyptus eucalyptus The gather log service in Eucalyptus before 3.3.1 allows remote attackers to read log files via an unspecified request to the (1) Cluster Controller (CC) or (2) Node Controller (NC) component. CWE-200
Information Exposure 		CVE-2013-4766 2024-11-21 10:56 2013-09-17 Show GitHub Exploit DB Packet Storm
291936 - chamanet chamacargo Cross-site scripting (XSS) vulnerability in ChamaNet ChamaCargo 7.0000 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-4704 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291937 - hp procurve_manager
identity_driven_manager 		The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote attackers to execute arbitrary commands via a… CWE-94
Code Injection 		CVE-2013-4813 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291938 - hp procurve_manager
identity_driven_manager 		UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert… CWE-20
 Improper Input Validation  		CVE-2013-4811 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291939 - hp procurve_manager
identity_driven_manager 		UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName a… CWE-20
 Improper Input Validation  		CVE-2013-4812 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291940 - hp procurve_manager
identity_driven_manager 		Multiple SQL injection vulnerabilities in GetEventsServlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allow remote attackers to execute arbitr… CWE-89
SQL Injection 		CVE-2013-4809 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm