Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203401 3.5
Network 		IBM - IBM Connections におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-2998 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
203402 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2997 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
203403 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2995 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
203404 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2956 2016-09-2 12:00 2016-08-16 Show GitHub Exploit DB Packet Storm
203405 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2954 2016-09-2 12:00 2016-08-16 Show GitHub Exploit DB Packet Storm
203406 6.5 警告
Network 		NetApp - NetApp OnCommand System Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-5047 2016-09-2 11:43 2016-08-30 Show GitHub Exploit DB Packet Storm
203407 6.5 警告
Network 		NetApp - NetApp Clustered Data ONTAP における重要なクラスタおよびテナント情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3064 2016-09-2 11:43 2016-08-30 Show GitHub Exploit DB Packet Storm
203408 5.5 警告
Local 		Debian - Debian Wheezy の linux-image パッケージの "aufs 3.2.x+setfl-debian" パッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7118 2016-09-2 11:17 2016-08-31 Show GitHub Exploit DB Packet Storm
203409 7.8 重要
Local 		Linux - Linux Kernel の net/socket.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-2686 2016-09-1 17:17 2015-03-26 Show GitHub Exploit DB Packet Storm
203410 7.8 重要
Local 		Debian
Canonical
OpenBSD		 - OpenSSH の sshd の session.c 内の do_setup_env 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-8325 2016-09-1 17:10 2015-11-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291921 - sap netweaver_development_infrastructure Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote attackers to execute arbitrary code by uploading a file with an executable extension via un… NVD-CWE-Other
CVE-2013-6820 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
291922 - sap netweaver_logviewer SAP NetWeaver Logviewer 6.30, when running on Windows, allows remote attackers to bypass intended access restrictions via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6818 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
291923 - sap network_interface_router Heap-based buffer overflow in SAP Network Interface Router (SAProuter) 7.30 allows remote attackers to cause a denial of service and execute arbitrary code via crafted NI Route messages. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6817 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
291924 - sap netweaver Multiple cross-site scripting (XSS) vulnerabilities in the (1) JavaDumpService and (2) DataCollector servlets in SAP NetWeaver allow remote attackers to inject arbitrary web script or HTML via unspec… CWE-79
Cross-site Scripting 		CVE-2013-6816 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
291925 - sap netweaver The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier allows remote attackers to redirect users to arbitrary web sites, conduct phishing attacks, and obtain sensitive information (cookies and SAPP… CWE-20
 Improper Input Validation  		CVE-2013-6814 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
291926 - sap netweaver The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ABAP) in SAP NetWeaver 7.31 and earlier allows remote attackers to cause a denial of service via unspecified vectors, related to a… CWE-20
 Improper Input Validation  		CVE-2013-6815 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
291927 - sunil_nanda blue_wrench_video_widget Cross-site request forgery (CSRF) vulnerability in bluewrench-video-widget.php in the Blue Wrench Video Widget plugin before 2.0.0 for WordPress allows remote attackers to hijack the authentication o… CWE-352
 Origin Validation Error 		CVE-2013-6797 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
291928 - google chrome Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote … NVD-CWE-Other
CVE-2013-6631 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
291929 - google chrome The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during t… CWE-189
Numeric Errors 		CVE-2013-6630 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
291930 - google
oracle
artifex
libjpeg-turbo
fedoraproject
opensuse
canonical
debian
mozilla 		chrome
solaris
gpl_ghostscript
libjpeg-turbo
fedora
opensuse
ubuntu_linux
debian_linux
firefox
seamonkey
thunderbird
firefox_esr 		The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain dup… CWE-200
Information Exposure 		CVE-2013-6629 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm