Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202961 9.8 緊急
Network 		Linux - Linux Kernel の drivers/usb/usbip/usbip_common.c の usbip_recv_xbuff 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-3955 2016-07-8 11:56 2016-05-4 Show GitHub Exploit DB Packet Storm
202962 9.8 緊急
Network 		The phpMyAdmin Project - phpMyAdmin の libraries/central_columns.lib.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-5703 2016-07-8 11:49 2016-06-23 Show GitHub Exploit DB Packet Storm
202963 9.1 緊急
Network 		シマンテック - Symantec Anti-Virus Engine のカーネルコンポーネントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2016-2208 2016-07-8 11:43 2016-05-16 Show GitHub Exploit DB Packet Storm
202964 8.8 重要
Adjacent 		レッドハット - Red Hat OpenStack Platform および Enterprise Linux OpenStack Platform の director におけるアクセス権を取得される脆弱性 CWE-200
CWE-Other
CVE-2016-4474 2016-07-8 10:49 2016-06-13 Show GitHub Exploit DB Packet Storm
202965 8.4 重要
Local 		シマンテック - 複数の Symantec 製品の圧縮解凍エンジンにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3646 2016-07-7 17:15 2016-06-28 Show GitHub Exploit DB Packet Storm
202966 9.8 緊急
Network 		シマンテック - 複数の Symantec 製品の圧縮解凍エンジンの TNEF アンパッカーにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-3645 2016-07-7 17:15 2016-06-28 Show GitHub Exploit DB Packet Storm
202967 8.4 重要
Local 		シマンテック - 複数の Symantec 製品の圧縮解凍エンジンにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3644 2016-07-7 17:15 2016-06-28 Show GitHub Exploit DB Packet Storm
202968 7.8 重要
Local 		シマンテック - 複数の Symantec 製品の圧縮解凍エンジンにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-2211 2016-07-7 17:15 2016-06-28 Show GitHub Exploit DB Packet Storm
202969 7.3 重要
Local 		シマンテック - 複数の Symantec 製品の圧縮解凍エンジンの Dec2LHA.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2210 2016-07-7 17:15 2016-06-28 Show GitHub Exploit DB Packet Storm
202970 7.3 重要
Local 		シマンテック - 複数の Symantec 製品の圧縮解凍エンジンの Dec2SS.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2209 2016-07-7 17:15 2016-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290121 - ibm lotus_sametime The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of chat messages, or compose anonymous chat messages, by leveraging meeting… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3044 2024-11-21 10:52 2013-11-9 Show GitHub Exploit DB Packet Storm
290122 - andrew_simpson webcollab CRLF injection vulnerability in help/help_language.php in WebCollab 3.30 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the item … CWE-79
Cross-site Scripting 		CVE-2013-2652 2024-11-21 10:52 2013-11-3 Show GitHub Exploit DB Packet Storm
290123 - linksalpha social_sharing_toolkit_plugin Cross-site request forgery (CSRF) vulnerability in the Social Sharing Toolkit plugin 2.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that manip… CWE-352
 Origin Validation Error 		CVE-2013-2701 2024-11-21 10:52 2013-11-2 Show GitHub Exploit DB Packet Storm
290124 - boltwire boltwire Multiple cross-site scripting (XSS) vulnerabilities in BoltWire 3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) "p" or (2) content parameter to index.php. CWE-79
Cross-site Scripting 		CVE-2013-2651 2024-11-21 10:52 2013-10-24 Show GitHub Exploit DB Packet Storm
290125 - ibm rational_focal_point Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6.5.x and 6.6.x before 6.6.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-3025 2024-11-21 10:52 2013-10-17 Show GitHub Exploit DB Packet Storm
290126 - google chrome Multiple unspecified vulnerabilities in Google Chrome before 30.0.1599.101 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2013-2928 2024-11-21 10:52 2013-10-17 Show GitHub Exploit DB Packet Storm
290127 - debian
opensuse
google 		debian_linux
opensuse
chrome 		Use-after-free vulnerability in the HTMLFormElement::prepareForSubmission function in core/html/HTMLFormElement.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows remote attackers to… CWE-399
 Resource Management Errors 		CVE-2013-2927 2024-11-21 10:52 2013-10-17 Show GitHub Exploit DB Packet Storm
290128 - google chrome Use-after-free vulnerability in the IndentOutdentCommand::tryIndentingAsListItem function in core/editing/IndentOutdentCommand.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows user… CWE-399
 Resource Management Errors 		CVE-2013-2926 2024-11-21 10:52 2013-10-17 Show GitHub Exploit DB Packet Storm
290129 - google chrome Use-after-free vulnerability in core/xml/XMLHttpRequest.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows remote attackers to cause a denial of service or possibly have unspecified … CWE-399
 Resource Management Errors 		CVE-2013-2925 2024-11-21 10:52 2013-10-17 Show GitHub Exploit DB Packet Storm
290130 - alstom e-terracontrol Alstom e-terracontrol 3.5, 3.6, and 3.7 allows remote attackers to cause a denial of service (infinite loop) via crafted DNP3 packets. CWE-20
 Improper Input Validation  		CVE-2013-2787 2024-11-21 10:52 2013-10-13 Show GitHub Exploit DB Packet Storm