Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202771 7.3 重要
Local 		アドビシステムズ - Windows 上で稼動する Adobe Creative Cloud デスクトップアプリケーションのインストーラーにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4157 2016-06-20 16:13 2016-06-14 Show GitHub Exploit DB Packet Storm
202772 6.5 警告
Network 		Mozilla Foundation - Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 CWE-Other
その他 		CVE-2016-2825 2016-06-20 11:33 2016-06-7 Show GitHub Exploit DB Packet Storm
202773 8.8 重要
Network 		Mozilla Foundation - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2815 2016-06-20 11:33 2016-06-7 Show GitHub Exploit DB Packet Storm
202774 5.5 警告
Local 		Huawei - Android 用 Huawei Hilink APP における脆弱性 CWE-310
暗号の問題 		CVE-2016-4005 2016-06-20 11:15 2016-04-19 Show GitHub Exploit DB Packet Storm
202775 5.5 警告
Local 		マイクロソフト - 複数の Microsoft 製品におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3234 2016-06-20 10:37 2016-06-14 Show GitHub Exploit DB Packet Storm
202776 7.3 重要
Local 		マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0025 2016-06-20 10:37 2016-06-14 Show GitHub Exploit DB Packet Storm
202777 5.5 警告
Local 		マイクロソフト - Microsoft Exchange Server の Outlook Web Access におけるユーザを追跡される脆弱性 CWE-200
情報漏えい 		CVE-2016-0028 2016-06-20 10:20 2016-06-14 Show GitHub Exploit DB Packet Storm
202778 7.8 重要
Local 		Google - Android One デバイス上で稼動する Android の MediaTek パワーマネジメントドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2492 2016-06-17 17:14 2016-06-6 Show GitHub Exploit DB Packet Storm
202779 9.8 緊急
Network 		シトリックス・システムズ - Citrix XenServer におけるホストを侵害される脆弱性 CWE-Other
その他 		CVE-2016-5302 2016-06-17 17:12 2016-06-9 Show GitHub Exploit DB Packet Storm
202780 8.8 重要
Network 		Mozilla Foundation - Mozilla Firefox で使用される Network Security Services におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-2834 2016-06-17 17:09 2016-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290201 - strongswan strongswan strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature. CWE-287
Improper Authentication 		CVE-2013-2944 2024-11-21 10:52 2013-05-2 Show GitHub Exploit DB Packet Storm
290202 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of servi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3080 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290203 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (V… CWE-94
Code Injection 		CVE-2013-3079 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290204 - sap basis_communication_services SAP BASIS Communication Services 4.6B through 7.30 allows remote authenticated users to execute arbitrary commands via unspecified vectors. NVD-CWE-noinfo
CVE-2013-3063 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290205 - sap production_planning_and_control The CP_RC_TRANSACTION_CALL_BY_SET function in the Engineering Workbench component in SAP Production Planning and Control allows remote authenticated users to bypass intended transaction restrictions … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3062 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290206 - sap healthcare_industry_solution
erp_central_component 		The ISHMED-PATRED_TRANSACT_RFCCALL function in the IS-H Industry-Specific Component Hospital subsystem in SAP Healthcare Industry Solution, and the SAP ERP central component (aka ECC 6), allows remot… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3061 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290207 - crunchify foursquare-checkins Cross-site request forgery (CSRF) vulnerability in the FourSquare Checkins plugin before 1.3 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that in… CWE-352
 Origin Validation Error 		CVE-2013-2709 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm
290208 - citrix netscaler_access_gateway_firmware
netscaler_access_gateway 		Unspecified vulnerability in Citrix NetScaler Access Gateway Enterprise Edition (AGEE) before 9.3.62.4 and 10.x through 10.0.74.4, and NetScaler AGEE Common Criteria build before 9.3.53.6, allows rem… NVD-CWE-noinfo
CVE-2013-2767 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm
290209 - crunchify all-in-on-webmaster Cross-site request forgery (CSRF) vulnerability in the All in One Webmaster plugin before 8.2.4 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that… CWE-352
 Origin Validation Error 		CVE-2013-2696 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm
290210 - lexmark markvision Lexmark Markvision Enterprise before 1.8 provides a diagnostic interface on TCP port 9789, which allows remote attackers to execute arbitrary code, change the configuration, or obtain sensitive fleet… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3055 2024-11-21 10:52 2013-04-25 Show GitHub Exploit DB Packet Storm