Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203471 9.8 緊急
Network 		ICU project - International Components for Unicode の common/uloc.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-6293 2016-08-1 14:12 2016-07-13 Show GitHub Exploit DB Packet Storm
203472 6.1 警告
Network 		シーメンス - Siemens SINEMA Remote Connect Server の統合 Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6204 2016-08-1 11:27 2016-07-22 Show GitHub Exploit DB Packet Storm
203473 7.5 重要
Network 		シーメンス - Siemens SIMATIC NET PC ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5874 2016-08-1 11:27 2016-07-22 Show GitHub Exploit DB Packet Storm
203474 8.8 重要
Network 		CA Technologies - CA eHealth におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-6152 2016-07-29 16:25 2016-07-21 Show GitHub Exploit DB Packet Storm
203475 8.8 重要
Network 		CA Technologies - CA eHealth におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-6151 2016-07-29 16:25 2016-07-21 Show GitHub Exploit DB Packet Storm
203476 3.3
Local 		eCryptfs.org
Canonical		 - eCryptfs の ecryptfs-setup-swap における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8946 2016-07-29 16:09 2015-08-4 Show GitHub Exploit DB Packet Storm
203477 3.3
Local 		eCryptfs.org
Canonical		 - eCryptfs の ecryptfs-setup-swap における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6224 2016-07-29 16:09 2016-07-6 Show GitHub Exploit DB Packet Storm
203478 4.3 警告
Network 		Google - Google Chrome で使用される Blink の CSP の実装の WebKit/Source/core/frame/csp/CSPSource.cpp における特定の HSTS Web サイトへのアクセスの有無を確認される脆弱性 CWE-200
情報漏えい 		CVE-2016-5137 2016-07-29 15:16 2016-07-20 Show GitHub Exploit DB Packet Storm
203479 5.3 警告
Network 		Google - Google Chrome におけるプロキシ認証のログインプロンプトを偽装される脆弱性 CWE-287
不適切な認証 		CVE-2016-5133 2016-07-29 15:16 2016-07-20 Show GitHub Exploit DB Packet Storm
203480 5.5 警告
Local 		アップル - Apple OS X のオーディオにおける重要なカーネルメモリのレイアウト情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-4648 2016-07-29 15:15 2016-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291501 - mintboard mintboard Multiple cross-site scripting (XSS) vulnerabilities in Mintboard 0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) pass parameter in views/login.php or (3) nam… CWE-79
Cross-site Scripting 		CVE-2013-4951 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291502 - machform machform Cross-site scripting (XSS) vulnerability in view.php in Machform 2 allows remote attackers to inject arbitrary web script or HTML via the element_2 parameter. CWE-79
Cross-site Scripting 		CVE-2013-4950 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291503 - machform machform Unrestricted file upload vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in t… NVD-CWE-Other
CVE-2013-4949 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291504 - machform machform SQL injection vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary SQL commands via the element_2 parameter. CWE-89
SQL Injection 		CVE-2013-4948 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291505 - sawmill sawmill Unspecified vulnerability in the update and build database page in Sawmill before 8.6.3 allows remote attackers to have unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2013-4947 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291506 - bmc service_desk_express Multiple cross-site scripting (XSS) vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to inject arbitrary web script or HTML via the (1) SelTab parameter to QV_admin.… CWE-79
Cross-site Scripting 		CVE-2013-4946 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291507 - bmc service_desk_express Multiple SQL injection vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to execute arbitrary SQL commands via the (1) ASPSESSIONIDASSRATTQ, (2) TABLE_WIDGET_1, (3) T… CWE-89
SQL Injection 		CVE-2013-4945 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291508 - fusedpress buddypress-extended-frienship-request Cross-site scripting (XSS) vulnerability in the BuddyPress Extended Friendship Request plugin before 1.0.2 for WordPress, when the "Friend Connections" component is enabled, allows remote attackers t… CWE-79
Cross-site Scripting 		CVE-2013-4944 2024-11-21 10:56 2013-07-30 Show GitHub Exploit DB Packet Storm
291509 - freebsd freebsd The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4851 2024-11-21 10:56 2013-07-29 Show GitHub Exploit DB Packet Storm
291510 - isc
suse
novell
opensuse
freebsd
mandriva
redhat
fedoraproject
hp
slackware 		bind
suse_linux_enterprise_software_development_kit
suse_linux
dnsco_bind
opensuse
freebsd
business_server
enterprise_server
enterprise_linux
fedora
hp-ux
slackware_l… 		The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remo… NVD-CWE-noinfo
CVE-2013-4854 2024-11-21 10:56 2013-07-29 Show GitHub Exploit DB Packet Storm