Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203561 5.3 警告
Network 		The phpMyAdmin Project - phpMyAdmin における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5730 2016-07-7 15:19 2016-06-23 Show GitHub Exploit DB Packet Storm
203562 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin の js/get_scripts.js.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-5706 2016-07-7 15:19 2016-06-23 Show GitHub Exploit DB Packet Storm
203563 6.1 警告
Network 		The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5705 2016-07-7 15:19 2016-06-23 Show GitHub Exploit DB Packet Storm
203564 6.1 警告
Network 		The phpMyAdmin Project - phpMyAdmin のテーブル構造ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5704 2016-07-7 15:19 2016-06-23 Show GitHub Exploit DB Packet Storm
203565 3.7
Network 		The phpMyAdmin Project - phpMyAdmin における Cookie の属性インジェクション攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2016-5702 2016-07-7 15:19 2016-06-23 Show GitHub Exploit DB Packet Storm
203566 6.1 警告
Network 		The phpMyAdmin Project - phpMyAdmin の setup/frames/index.inc.php における HTTP セッションへの BBCode インジェクション攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2016-5701 2016-07-7 15:19 2016-06-23 Show GitHub Exploit DB Packet Storm
203567 5.4 警告
Network 		ボクブロック株式会社 - EC-CUBE 用プラグイン「管理画面表示制御プラグイン」における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-7784 2016-07-7 14:45 2015-12-3 Show GitHub Exploit DB Packet Storm
203568 8.2 重要
Network 		シスコシステムズ - Cisco Configuration Assistant の CNAP におけるファイルシステムおよび管理エンドポイントの制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1441 2016-07-7 10:54 2016-06-30 Show GitHub Exploit DB Packet Storm
203569 8.6 重要
Network 		シスコシステムズ - Cisco FirePOWER システム ソフトウェアにおける CLI アクセス権を取得される脆弱性 CWE-255
CWE-264
CVE-2016-1394 2016-07-7 10:54 2016-06-29 Show GitHub Exploit DB Packet Storm
203570 5.3 警告
Network 		シスコシステムズ - Cisco Web セキュリティ アプライアンスデバイスのプロキシ処理におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-1440 2016-07-6 18:03 2016-06-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290631 - linux linux_kernel The vcc_recvmsg function in net/atm/common.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel sta… CWE-200
Information Exposure 		CVE-2013-3222 2024-11-21 10:53 2013-04-22 Show GitHub Exploit DB Packet Storm
290632 - rubyonrails rails
ruby_on_rails 		The Active Record component in Ruby on Rails 2.3.x, 3.0.x, 3.1.x, and 3.2.x does not ensure that the declared data type of a database column is used during comparisons of input values to stored value… CWE-20
 Improper Input Validation  		CVE-2013-3221 2024-11-21 10:53 2013-04-22 Show GitHub Exploit DB Packet Storm
290633 - opera opera_browser Unspecified vulnerability in Opera before 12.15 has unknown impact and attack vectors, related to a "moderately severe issue." NVD-CWE-noinfo
CVE-2013-3211 2024-11-21 10:53 2013-04-19 Show GitHub Exploit DB Packet Storm
290634 - opera opera_browser Opera before 12.15 does not properly block top-level domains in Set-Cookie headers, which allows remote attackers to obtain sensitive information by leveraging control of a different web site in the … CWE-200
Information Exposure 		CVE-2013-3210 2024-11-21 10:53 2013-04-19 Show GitHub Exploit DB Packet Storm
290635 6.1 MEDIUM
Network 		belkin linksys_e4200_firmware Multiple cross-site scripting (XSS) vulnerabilities in Cisco Linksys E4200 router with firmware 1.0.05 build 7 allow remote attackers to inject arbitrary web script or HTML via the (1) log_type, (2) … CWE-79
Cross-site Scripting 		CVE-2013-2679 2024-11-21 10:52 2020-02-19 Show GitHub Exploit DB Packet Storm
290636 6.1 MEDIUM
Network 		otrs
opensuse 		otrs_itsm
faq
opensuse 		A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2.0.8 via changes, workorder items, and FAQ articles, which could let a remo… CWE-79
Cross-site Scripting 		CVE-2013-2637 2024-11-21 10:52 2020-02-13 Show GitHub Exploit DB Packet Storm
290637 5.9 MEDIUM
Network 		dlink dir865l_firmware D-Link DIR865L v1.03 suffers from an "Unauthenticated Hardware Linking" vulnerability. CWE-287
Improper Authentication 		CVE-2013-3096 2024-11-21 10:52 2020-02-8 Show GitHub Exploit DB Packet Storm
290638 9.8 CRITICAL
Network 		belkin n300_firmware An Authentication Bypass vulnerability in Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication using "Javascript debugging." CWE-287
Improper Authentication 		CVE-2013-3091 2024-11-21 10:52 2020-02-8 Show GitHub Exploit DB Packet Storm
290639 5.4 MEDIUM
Network 		linksys wrt310n_firmware Linksys WRT310Nv2 2.0.0.1 is vulnerable to XSS. CWE-79
Cross-site Scripting 		CVE-2013-3067 2024-11-21 10:52 2020-02-8 Show GitHub Exploit DB Packet Storm
290640 6.1 MEDIUM
Network 		cisco linksys_e4200_firmware Cross-site Scripting (XSS) in Cisco Linksys E4200 1.0.05 Build 7 devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-2684 2024-11-21 10:52 2020-02-7 Show GitHub Exploit DB Packet Storm