Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 203101 | 7.5 | 危険 | 富士通 日本電気 IBM Apache Software Foundation オラクル |
- | Apache Struts の CookieInterceptor における ClassLoader を操作される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-0113 | 2016-08-2 17:34 | 2014-04-28 | Show | GitHub Exploit DB Packet Storm |
| 203102 | 5.8 | 警告 | 富士通 日本電気 IBM Apache Software Foundation オラクル |
- | Apache Struts の CookieInterceptor における ClassLoader を操作される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-0116 | 2016-08-2 17:34 | 2014-05-5 | Show | GitHub Exploit DB Packet Storm |
| 203103 | 4.3 | 警告 | アップル 日本電気 Apache Software Foundation |
- | Apache HTTP Server の mod_proxy_balancer モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4558 | 2016-08-2 16:45 | 2013-02-18 | Show | GitHub Exploit DB Packet Storm |
| 203104 | 4.3 | 警告 | 日本電気 Apache Software Foundation アップル 富士通 オラクル 日立 |
- | Apache HTTP Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-3499 | 2016-08-2 16:45 | 2013-02-18 | Show | GitHub Exploit DB Packet Storm |
| 203105 | 9.8 |
緊急
Network |
ベリタス 日立 |
- | Veritas NetBackup および NetBackup アプライアンスの bpcd における任意のコマンドを実行される脆弱性 |
CWE-Other
その他 |
CVE-2015-6550 | 2016-08-2 16:25 | 2015-08-21 | Show | GitHub Exploit DB Packet Storm |
| 203106 | 5.9 |
警告
Network |
ベリタス 日立 |
- | Veritas NetBackup および NetBackup アプライアンスにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2015-6551 | 2016-08-2 16:25 | 2015-08-21 | Show | GitHub Exploit DB Packet Storm |
| 203107 | 9.8 |
緊急
Network |
ベリタス 日立 |
- | Veritas NetBackup および NetBackup アプライアンスの管理サービスのプロトコルの実装における任意の RPC を実行される脆弱性 |
CWE-Other
その他 |
CVE-2015-6552 | 2016-08-2 16:25 | 2015-08-21 | Show | GitHub Exploit DB Packet Storm |
| 203108 | 5 | 警告 | サン・マイクロシステムズ 日立 オラクル |
- | 複数の Oracle Java 製品 における JAXP に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2015-4893 | 2016-08-2 16:25 | 2015-10-20 | Show | GitHub Exploit DB Packet Storm |
| 203109 | 9.6 |
緊急
Network |
日立 オラクル |
- | Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-3606 | 2016-08-2 15:51 | 2016-07-19 | Show | GitHub Exploit DB Packet Storm |
| 203110 | 2.9 |
低
Local |
日立 オラクル |
- | 複数の Oracle Java 製品における Networking に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-3485 | 2016-08-2 15:51 | 2016-07-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 289851 | 5.4 |
MEDIUM
Network |
pqigroup | air_card_firmware | PQI AirCard has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5637 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 289852 | 5.9 |
MEDIUM
Network |
hmailserver | hmailserver | HMailServer 5.3.x and prior: Memory Corruption which could cause DOS |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5571 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 289853 | 9.8 |
CRITICAL
Network |
cisco |
linksys_ea2700_firmware linksys_ea3500_firmware linksys_e4200_firmware linksys_ea4500_firmware |
Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access |
CWE-287
Improper Authentication |
CVE-2013-5122 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 289854 | 5.9 |
MEDIUM
Network |
pypa virtualenv fedoraproject redhat debian |
pip virtualenv fedora openshift software_collections debian_linux |
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. |
CWE-287
Improper Authentication |
CVE-2013-5123 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 289855 | 5.9 |
MEDIUM
Network |
isc nlnetlabs nic redhat |
bind nsd knot_resolver enterprise_linux |
Cache Poisoning issue exists in DNS Response Rate Limiting. |
CWE-290
Authentication Bypass by Spoofing |
CVE-2013-5661 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 289856 | 9.1 |
CRITICAL
Network |
yingzhipython_project | yingzhipython | Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage |
CWE-284
Improper Access Control |
CVE-2013-5654 | 2024-11-21 10:57 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 289857 | 8.8 |
HIGH
Network |
ibm |
endpoint_manager_for_remote_control tivoli_remote_control |
IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by … |
CWE-255
Credentials Management |
CVE-2013-5461 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |
| 289858 | 5.3 |
MEDIUM
Network |
ibm |
worklight mobile_foundation |
IBM Worklight Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.x before 6.0.0 Fix Pack 2, and Mobile Foundation Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 an… |
CWE-310
Cryptographic Issues |
CVE-2013-5391 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |
| 289859 | 5.5 |
MEDIUM
Local |
artifex debian |
afpl_ghostscript debian_linux |
The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file. |
CWE-200
Information Exposure |
CVE-2013-5653 | 2024-11-21 10:57 | 2017-03-8 | Show | GitHub Exploit DB Packet Storm |
| 289860 | - | apple |
mac_os_x apple_remote_desktop |
The Remote Desktop full-screen feature in Apple OS X before 10.9 and Apple Remote Desktop before 3.7 sends dialog-box text to a connected remote host upon being woken from sleep, which allows physica… |
CWE-254
7PK - Security Features |
CVE-2013-5229 | 2024-11-21 10:57 | 2015-11-14 | Show | GitHub Exploit DB Packet Storm |