Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202711 6.5 警告
Network 		IBM - IBM Spectrum Control におけるディレクトリトラバーサルの脆弱性 CWE-200
情報漏えい 		CVE-2016-5946 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
202712 4.3 警告
Network 		IBM - IBM Spectrum Control における実行不可能なファイルをアップロードされる脆弱性 CWE-Other
その他 		CVE-2016-5945 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
202713 5.4 警告
Network 		IBM - IBM Spectrum Control の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5944 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
202714 5.4 警告
Network 		IBM - IBM Spectrum Control におけるアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-5943 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
202715 7.5 重要
Network 		GNU Project - GnuTLS の lib/x509/ocsp.c の gnutls_ocsp_resp_check_crt 関数における証明書検証メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-7444 2016-10-3 16:28 2016-08-28 Show GitHub Exploit DB Packet Storm
202716 8.1 重要
Network 		GNU Project - wget におけるアクセスリストの制限を回避される脆弱性 CWE-362
競合状態 		CVE-2016-7098 2016-10-3 16:28 2016-08-24 Show GitHub Exploit DB Packet Storm
202717 7.5 重要
Network 		Debian
Irssi
Canonical		 - Irssi のフォーマット構文解析コードの format_send_to_gui 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7045 2016-10-3 10:31 2016-09-21 Show GitHub Exploit DB Packet Storm
202718 7.5 重要
Network 		Debian
Irssi
Canonical		 - Irssi のフォーマット構文解析コードの unformat_24bit_color 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7044 2016-10-3 10:31 2016-09-21 Show GitHub Exploit DB Packet Storm
202719 5.5 警告
Local 		アップル - Apple iOS および OS X のカーネルにおけるファイルアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2016-4771 2016-09-30 15:18 2016-09-13 Show GitHub Exploit DB Packet Storm
202720 7.8 重要
Local 		アップル - Apple iOS および OS X の S2 カメラにおける特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-4750 2016-09-30 15:18 2016-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291961 - ibm websphere_message_broker The XML4J parser in IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.7, and 8.0 before 8.0.0.4 and IBM Integration Bus 9.0 before 9.0.0.1 allows remote attackers to cause a denial o… CWE-399
 Resource Management Errors 		CVE-2013-5372 2024-11-21 10:57 2013-10-19 Show GitHub Exploit DB Packet Storm
291962 - ibm storwize_v7000_unified_software
storwize_v7000_unified 		Cross-site scripting (XSS) vulnerability in IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.2.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors,… CWE-79
Cross-site Scripting 		CVE-2013-5376 2024-11-21 10:57 2013-10-17 Show GitHub Exploit DB Packet Storm
291963 - cisco identity_services_engine_software
identity_services_engine 		Cross-site scripting (XSS) vulnerability in the file-upload interface in Cisco Identity Services Engine (ISE) allows remote authenticated users to inject arbitrary web script or HTML via a crafted fi… CWE-79
Cross-site Scripting 		CVE-2013-5541 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291964 - cisco identity_services_engine_software
identity_services_engine 		The file-upload feature in Cisco Identity Services Engine (ISE) allows remote authenticated users to cause a denial of service (disk consumption and administration-interface outage) by uploading many… CWE-399
 Resource Management Errors 		CVE-2013-5540 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291965 - cisco identity_services_engine_software
identity_services_engine 		The upload-dialog implementation in Cisco Identity Services Engine (ISE) allows remote authenticated users to upload files with an arbitrary file type, and consequently conduct attacks against unspec… CWE-20
 Improper Input Validation  		CVE-2013-5539 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291966 - cisco identity_services_engine_software
identity_services_engine 		The Sponsor Portal in Cisco Identity Services Engine (ISE) uses weak permissions for uploaded files, which allows remote attackers to read arbitrary files via a direct request, aka Bug ID CSCui67506. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5538 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291967 - cisco video_surveillance_4500e_ip_camera
video_surveillance_4300e_ip_camera
video_surveillance_4000_ip_camera 		The analytics page on Cisco Video Surveillance 4000 IP cameras has hardcoded credentials, which allows remote attackers to watch the video feed by leveraging knowledge of the password, aka Bug IDs CS… CWE-255
Credentials Management 		CVE-2013-5535 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291968 - cisco webex_meetings_server The deployment module in the server in Cisco WebEx Meeting Center does not properly validate the passphrase, which allows remote attackers to launch a deployment or cause a denial of service (deploym… CWE-20
 Improper Input Validation  		CVE-2013-5529 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291969 - ibm websphere_extreme_scale The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to conduct phishing attacks via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2013-5394 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm
291970 - ibm websphere_extreme_scale The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors. NVD-CWE-noinfo
CVE-2013-5393 2024-11-21 10:57 2013-10-16 Show GitHub Exploit DB Packet Storm