Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203361	9.8	緊急 Network	SAP	-	SAP TREX の不特定のインターフェースにおける SIDadm 権限で任意の OS コマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-6147	2016-08-9 16:22	2016-02-10	Show	GitHub Exploit DB Packet Storm

203362	9.8	緊急 Network	SAP	-	SAP TREX における任意のファイルに書き込まれる脆弱性	CWE-Other その他	CVE-2016-6140	2016-08-9 16:22	2016-07-20	Show	GitHub Exploit DB Packet Storm

203363	9.8	緊急 Network	SAP	-	SAP TREX における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2016-6139	2016-08-9 16:22	2016-07-20	Show	GitHub Exploit DB Packet Storm

203364	9.8	緊急 Network	SAP	-	SAP TREX におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-6138	2016-08-9 16:22	2016-07-20	Show	GitHub Exploit DB Packet Storm

203365	6.8	警告 Network	IBM	-	IBM FileNet Workplace におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2016-5878	2016-08-9 15:08	2016-07-29	Show	GitHub Exploit DB Packet Storm

203366	5.4	警告 Network	IBM	-	IBM FileNet Workplace におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-3054	2016-08-9 15:08	2016-07-22	Show	GitHub Exploit DB Packet Storm

203367	8.8	重要 Network	IBM	-	IBM Security QRadar SIEM における root 権限で任意の OS コマンドを実行される脆弱性	CWE-Other その他	CVE-2016-2875	2016-08-9 15:08	2016-07-29	Show	GitHub Exploit DB Packet Storm

203368	3.7	低 Network	IBM	-	IBM AIX および VIOS の mustendd ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-0281	2016-08-9 15:08	2016-07-28	Show	GitHub Exploit DB Packet Storm

203369	6.5	警告 Network	レッドハット	-	マルチテナント環境の Red Hat OpenShift Enterprise で使用される Kubernetes の API サーバにおける重要なプロジェクトおよびユーザ情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-5392	2016-08-9 12:39	2016-07-14	Show	GitHub Exploit DB Packet Storm

203370	6.1	警告 Network	レッドハット	-	Red Hat Satellite の spacewalk-java におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-3097	2016-08-9 12:39	2016-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291501	-	mintboard	mintboard	Multiple cross-site scripting (XSS) vulnerabilities in Mintboard 0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) pass parameter in views/login.php or (3) nam…	CWE-79 Cross-site Scripting	CVE-2013-4951	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291502	-	machform	machform	Cross-site scripting (XSS) vulnerability in view.php in Machform 2 allows remote attackers to inject arbitrary web script or HTML via the element_2 parameter.	CWE-79 Cross-site Scripting	CVE-2013-4950	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291503	-	machform	machform	Unrestricted file upload vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in t…	NVD-CWE-Other	CVE-2013-4949	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291504	-	machform	machform	SQL injection vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary SQL commands via the element_2 parameter.	CWE-89 SQL Injection	CVE-2013-4948	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291505	-	sawmill	sawmill	Unspecified vulnerability in the update and build database page in Sawmill before 8.6.3 allows remote attackers to have unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2013-4947	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291506	-	bmc	service_desk_express	Multiple cross-site scripting (XSS) vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to inject arbitrary web script or HTML via the (1) SelTab parameter to QV_admin.…	CWE-79 Cross-site Scripting	CVE-2013-4946	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291507	-	bmc	service_desk_express	Multiple SQL injection vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to execute arbitrary SQL commands via the (1) ASPSESSIONIDASSRATTQ, (2) TABLE_WIDGET_1, (3) T…	CWE-89 SQL Injection	CVE-2013-4945	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291508	-	fusedpress	buddypress-extended-frienship-request	Cross-site scripting (XSS) vulnerability in the BuddyPress Extended Friendship Request plugin before 1.0.2 for WordPress, when the "Friend Connections" component is enabled, allows remote attackers t…	CWE-79 Cross-site Scripting	CVE-2013-4944	2024-11-21 10:56	2013-07-30	Show	GitHub Exploit DB Packet Storm

291509	-	freebsd	freebsd	The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entr…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4851	2024-11-21 10:56	2013-07-29	Show	GitHub Exploit DB Packet Storm

291510	-	isc suse novell opensuse freebsd mandriva redhat fedoraproject hp slackware	bind suse_linux_enterprise_software_development_kit suse_linux dnsco_bind opensuse freebsd business_server enterprise_server enterprise_linux fedora hp-ux slackware_l…	The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remo…	NVD-CWE-noinfo	CVE-2013-4854	2024-11-21 10:56	2013-07-29	Show	GitHub Exploit DB Packet Storm