Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202491	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge のスクリプトエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3382	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

202492	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3331	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

202493	5.3	警告 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における特定のファイルの存在を検出される脆弱性	CWE-200 情報漏えい	CVE-2016-3267	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

202494	7.3	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-7211	2016-10-18 16:56	2016-10-11	Show	GitHub Exploit DB Packet Storm

202495	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-7185	2016-10-18 16:56	2016-10-11	Show	GitHub Exploit DB Packet Storm

202496	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3376	2016-10-18 16:56	2016-10-11	Show	GitHub Exploit DB Packet Storm

202497	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のトランザクションマネージャのカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3341	2016-10-18 16:56	2016-10-11	Show	GitHub Exploit DB Packet Storm

202498	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3266	2016-10-18 16:56	2016-10-11	Show	GitHub Exploit DB Packet Storm

202499	7.5	重要 Network	マイクロソフト	-	Microsoft Edge の Chakra JavaScript エンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7194	2016-10-18 15:26	2016-10-11	Show	GitHub Exploit DB Packet Storm

202500	7.5	重要 Network	マイクロソフト	-	Microsoft Edge の Chakra JavaScript エンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7190	2016-10-18 15:26	2016-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292161	-	uclouvain	openjpeg	Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might allow remote attackers to execute arbitrary code via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6045	2024-11-21 10:58	2013-12-13	Show	GitHub Exploit DB Packet Storm

292162	-	islonline	isl_desktop_plugin isl_light	The ISL Desktop plugin for Windows before 1.4.7 for ISL Light 3.5.4 and earlier allows remote authenticated users to obtain sensitive information by pasting the clipboard contents that have been copi…	CWE-200 Information Exposure	CVE-2013-6237	2024-11-21 10:58	2013-12-11	Show	GitHub Exploit DB Packet Storm

292163	-	livezilla	livezilla	Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla before 5.1.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a name in the call administrator feature, (2) uns…	CWE-79 Cross-site Scripting	CVE-2013-6224	2024-11-21 10:58	2013-12-11	Show	GitHub Exploit DB Packet Storm

292164	-	emc	rsa_security_analytics rsa_netwitness_nextgen	EMC RSA Security Analytics (SA) 10.x before 10.3, and RSA NetWitness NextGen 9.8, does not ensure that SA Core requests originate from the SA REST UI, which allows remote attackers to bypass intended…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6180	2024-11-21 10:58	2013-12-10	Show	GitHub Exploit DB Packet Storm

292165	-	nagiosql	nagiosql	Multiple cross-site scripting (XSS) vulnerabilities in NagiosQL 3.2 SP2 allow remote attackers to inject arbitrary web script or HTML via the txtSearch parameter to (1) admin/hostdependencies.php, (2…	CWE-79 Cross-site Scripting	CVE-2013-6039	2024-11-21 10:58	2013-12-10	Show	GitHub Exploit DB Packet Storm

292166	-	dovecot	dovecot	checkpassword-reply in Dovecot before 2.2.7 performs setuid operations to a user who is authenticating, which allows local users to bypass authentication and access virtual email accounts by attachin…	CWE-287 Improper Authentication	CVE-2013-6171	2024-11-21 10:58	2013-12-10	Show	GitHub Exploit DB Packet Storm

292167	-	twibright	links	Integer overflow in Links before 2.8 allows remote attackers to cause a denial of service (crash) via crafted HTML tables.	CWE-189 Numeric Errors	CVE-2013-6050	2024-11-21 10:58	2013-12-8	Show	GitHub Exploit DB Packet Storm

292168	-	claroline	claroline	Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.11.9 allow remote attackers to inject arbitrary web script or HTML via the (1) box parameter to messaging/messagebox.php, cid…	CWE-79 Cross-site Scripting	CVE-2013-6267	2024-11-21 10:58	2013-12-6	Show	GitHub Exploit DB Packet Storm

292169	-	cybozu	garoon	Session fixation vulnerability in Cybozu Garoon before 3.7.2 allows remote attackers to hijack web sessions via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6004	2024-11-21 10:58	2013-12-5	Show	GitHub Exploit DB Packet Storm

292170	-	cybozu	garoon	CRLF injection vulnerability in Cybozu Garoon 3.1 through 3.5 SP5, when Phone Messages forwarding is enabled, allows remote authenticated users to inject arbitrary e-mail headers via unspecified vect…	CWE-20 Improper Input Validation	CVE-2013-6003	2024-11-21 10:58	2013-12-5	Show	GitHub Exploit DB Packet Storm