Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203291	4.3	警告 Network	Jenkins プロジェクトレッドハット	-	Jenkins の API URL computer/(master)/api/xml におけるグローバル設定に関する重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3727	2016-08-31 12:26	2016-05-11	Show	GitHub Exploit DB Packet Storm

203292	7.4	重要 Network	CloudBees レッドハット	-	CloudBees Jenkins におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2016-3726	2016-08-31 12:25	2016-05-11	Show	GitHub Exploit DB Packet Storm

203293	4.3	警告 Network	CloudBees レッドハット	-	CloudBees Jenkins におけるアップデートサイトのメタデータのアップデートを誘発される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3725	2016-08-31 12:25	2016-05-11	Show	GitHub Exploit DB Packet Storm

203294	6.5	警告 Network	CloudBees レッドハット	-	CloudBees Jenkins における重要なパスワード情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3724	2016-08-31 12:25	2016-05-11	Show	GitHub Exploit DB Packet Storm

203295	4.3	警告 Network	CloudBees レッドハット	-	CloudBees Jenkins における重要なプラグインのインストール情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3723	2016-08-31 12:24	2016-05-11	Show	GitHub Exploit DB Packet Storm

203296	4.3	警告 Network	CloudBees レッドハット	-	CloudBees Jenkins におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3722	2016-08-31 12:24	2016-05-11	Show	GitHub Exploit DB Packet Storm

203297	5.9	警告 Network	IBM	-	IBM BigFix Platform の Web レポートにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0397	2016-08-31 11:43	2016-07-8	Show	GitHub Exploit DB Packet Storm

203298	5.5	警告 Local	IBM	-	IBM BigFix Platform の Web レポートにおける平文のシステムパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0292	2016-08-31 11:43	2016-07-8	Show	GitHub Exploit DB Packet Storm

203299	9.8	緊急 Network	マイクロソフトアドビシステムズ Google レッドハット	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player における脆弱性	CWE-noinfo 情報不足	CVE-2016-4138	2016-08-30 17:54	2016-06-16	Show	GitHub Exploit DB Packet Storm

203300	8.8	重要 Network	マイクロソフトアドビシステムズ Google レッドハット	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player における脆弱性	CWE-noinfo 情報不足	CVE-2016-4137	2016-08-30 17:54	2016-06-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291741	-	sharetronix	sharetronix	Unrestricted file upload vulnerability in system/controllers/ajax/attachments.php in Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary code by uploading a file with…	NVD-CWE-Other	CVE-2013-5353	2024-11-21 10:57	2014-06-13	Show	GitHub Exploit DB Packet Storm

291742	-	sharetronix	sharetronix	Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary PHP code via the (1) activities_text parameter to services/activities/set or (2) comments_text parameter to servic…	CWE-94 Code Injection	CVE-2013-5352	2024-11-21 10:57	2014-06-13	Show	GitHub Exploit DB Packet Storm

291743	-	ibm	maximo_asset_management smartcloud_control_desk	IBM Maximo Asset Management 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote aut…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5464	2024-11-21 10:57	2014-05-27	Show	GitHub Exploit DB Packet Storm

291744	-	ibm	maximo_asset_management smartcloud_control_desk	IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5460	2024-11-21 10:57	2014-05-27	Show	GitHub Exploit DB Packet Storm

291745	-	ibm	maximo_asset_management change_and_configuration_management_database maximo_service_desk tivoli_service_request_manager tivoli_it_asset_management_for_it tivoli_asset_management_for_it…	IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837, 7.1.1.11 before IFIX.20140323-0749, 7.1.1.12 before IFIX.20140321-1336, 7.5.x before 7.5.0.3 IFIX027, and 7.5.0.4 before IFIX011; S…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5465	2024-11-21 10:57	2014-05-27	Show	GitHub Exploit DB Packet Storm

291746	-	xiaowen_huang	yingzhi_python_programming_language	Directory traversal vulnerability in the FTP server in YingZhi Python Programming Language for iOS 1.9 allows remote attackers to read and possibly write arbitrary files via a .. (dot dot) in the def…	CWE-22 Path Traversal	CVE-2013-5655	2024-11-21 10:57	2014-05-15	Show	GitHub Exploit DB Packet Storm

291747	-	mark_evans	fog-dragonfly	lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote attackers to execute arbitrary commands via unspecified vectors.	NVD-CWE-Other	CVE-2013-5671	2024-11-21 10:57	2014-05-12	Show	GitHub Exploit DB Packet Storm

291748	-	powersoftware	winarchiver	Buffer overflow in Power Software WinArchiver 3.2 allows remote attackers to execute arbitrary code via a crafted .zip file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5660	2024-11-21 10:57	2014-04-26	Show	GitHub Exploit DB Packet Storm

291749	-	ibm	rhapsody_design_manager rational_software_architect_design_manager	Unspecified vulnerability in IBM Rational Software Architect (RSA) Design Manager and Rational Rhapsody Design Manager 3.x through 3.0.1 and 4.x before 4.0.6 allows remote authenticated users to modi…	NVD-CWE-noinfo	CVE-2013-5459	2024-11-21 10:57	2014-04-22	Show	GitHub Exploit DB Packet Storm

291750	-	trustwave debian	modsecurity debian_linux	apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header.	NVD-CWE-noinfo	CVE-2013-5705	2024-11-21 10:57	2014-04-15	Show	GitHub Exploit DB Packet Storm