Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203051	4	警告	レッドハット MySQL AB openSUSE project オラクル	-	Oracle MySQL の MySQL Server における Server : Parser に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-4870	2016-05-31 17:05	2015-10-20	Show	GitHub Exploit DB Packet Storm

203052	3.5	注意	レッドハット MySQL AB openSUSE project オラクル	-	Oracle MySQL の MySQL Server における Server : InnoDB に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-4861	2016-05-31 17:05	2015-10-20	Show	GitHub Exploit DB Packet Storm

203053	4	警告	レッドハット MySQL AB openSUSE project オラクル	-	Oracle MySQL の MySQL Server における Server : Security : Privileges に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-4830	2016-05-31 17:05	2015-10-20	Show	GitHub Exploit DB Packet Storm

203054	7.6	重要 Network	VMware	-	複数の VMware 製品の Client Integration Plugin におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2016-2076	2016-05-31 15:58	2016-04-14	Show	GitHub Exploit DB Packet Storm

203055	6.5	警告 Network	dotCMS	-	dotCMS における SQL インジェクションの脆弱性	CWE-200 情報漏えい	CVE-2016-3688	2016-05-31 15:57	2016-04-4	Show	GitHub Exploit DB Packet Storm

203056	6.5	警告 Network	Canonical Libav	-	Libav の libavcodec/ituh263dec.c の ff_h263_decode_mba 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2015-5479	2016-05-31 15:57	2015-06-30	Show	GitHub Exploit DB Packet Storm

203057	9.8	緊急 Network	フォーティネット	-	FortiAnalyzer などの製品における管理アクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1909	2016-05-31 15:25	2016-01-12	Show	GitHub Exploit DB Packet Storm

203058	5	警告	Debian Canonical Fedora Project Info-ZIP	-	unzip におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-9636	2016-05-31 15:06	2014-11-3	Show	GitHub Exploit DB Packet Storm

203059	5.3	警告 Network	シーメンス	-	Siemens SCALANCE S613 におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-3963	2016-05-31 15:02	2016-04-8	Show	GitHub Exploit DB Packet Storm

203060	8.1	重要 Network	Allround Automations	-	Allround Automations PL/SQL Developer が HTTP 経由でアップデートする問題	CWE-Other その他	CVE-2016-2346	2016-05-31 12:28	2015-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290481	-		acquia commons_wikis_project	commons commons_wikis	The Commons Wikis module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1908	2024-11-21 10:50	2013-07-17	Show	GitHub Exploit DB Packet Storm

290482	-		acquia	commons commons_group	The Commons Group module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1907	2024-11-21 10:50	2013-07-17	Show	GitHub Exploit DB Packet Storm

290483	7.8	HIGH Local	linux redhat canonical	linux_kernel enterprise_linux enterprise_linux_eus ubuntu_linux	The KVM subsystem in the Linux kernel before 3.0 does not check whether kernel addresses are specified during allocation of memory slots for use in a guest's physical address space, which allows loca…	CWE-20 Improper Input Validation	CVE-2013-1943	2024-11-21 10:50	2013-07-16	Show	GitHub Exploit DB Packet Storm

290484	-		redhat	enterprise_linux	A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest O…	CWE-362 Race Condition	CVE-2013-1935	2024-11-21 10:50	2013-07-16	Show	GitHub Exploit DB Packet Storm

290485	-		ibm apache	websphere_application_server geronimo	The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server (WAS) Community Edition 3.0.0.3 and other products, does not properly implement the RMI…	CWE-94 Code Injection	CVE-2013-1777	2024-11-21 10:50	2013-07-12	Show	GitHub Exploit DB Packet Storm

290486	-		apache	openjpa	The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain cra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1768	2024-11-21 10:50	2013-07-12	Show	GitHub Exploit DB Packet Storm

290487	-		apache redhat canonical opensuse	http_server jboss_enterprise_application_platform enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_eus u…	mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a M…	NVD-CWE-noinfo	CVE-2013-1896	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

290488	-		apache	struts	Apache Struts 2 before 2.3.14.2 allows remote attackers to execute arbitrary OGNL code via a crafted request that is not properly handled when using the includeParams attribute in the (1) URL or (2) …	CWE-94 Code Injection	CVE-2013-1966	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

290489	-		apache	struts struts2-showcase	Apache Struts Showcase App 2.0.0 through 2.3.13, as used in Struts 2 before 2.3.14.3, allows remote attackers to execute arbitrary OGNL code via a crafted parameter name that is not properly handled …	CWE-94 Code Injection	CVE-2013-1965	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

290490	-		videolan	vlc_media_player	The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1954	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm