Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 12:07 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 203741 | 5.4 |
警告
Network |
フォーティネット | - | Fortinet FortiManager および FortiAnalyzer のアプライアンスの Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2016-3193 | 2016-08-23 14:40 | 2016-08-9 | Show | GitHub Exploit DB Packet Storm |
| 203742 | 6.1 |
警告
Network |
Apache Software Foundation | - | Apache OpenMeetings の SWF パネルにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2016-3089 | 2016-08-23 14:28 | 2016-08-12 | Show | GitHub Exploit DB Packet Storm |
| 203743 | 8.8 |
重要
Network |
Apache Software Foundation | - | Apache Sentry における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2016-0760 | 2016-08-23 14:28 | 2016-08-4 | Show | GitHub Exploit DB Packet Storm |
| 203744 | 5 | 警告 | OpenSSL Project オラクル |
- | BN_mod_exp で使用される x86_64 プラットフォーム上で稼動する OpenSSL の crypto/bn/asm/x86_64-mont5.pl における重要な秘密鍵の情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2015-3193 | 2016-08-22 17:40 | 2015-12-3 | Show | GitHub Exploit DB Packet Storm |
| 203745 | 4.3 | 警告 | Mozilla Foundation オラクル |
- | Mozilla 製品などで使用される Mozilla Network Security Services における暗号保護メカニズムを破られる脆弱性 |
CWE-310
暗号の問題 |
CVE-2015-2721 | 2016-08-22 17:40 | 2015-07-2 | Show | GitHub Exploit DB Packet Storm |
| 203746 | 8.8 |
重要
Network |
シスコシステムズ | - | Cisco Firepower Management Center および ASA 5500-X Series with FirePOWER Services の Web ベース GUI におけるユーザアカウント権限を拡大される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-1458 | 2016-08-22 16:24 | 2016-08-17 | Show | GitHub Exploit DB Packet Storm |
| 203747 | 8.8 |
重要
Network |
シスコシステムズ | - | Cisco Firepower Management Center および ASA 5500-X Series with FirePOWER Services の Web ベース GUI における root 権限で任意のコマンドを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-1457 | 2016-08-22 16:24 | 2016-08-17 | Show | GitHub Exploit DB Packet Storm |
| 203748 | 8.8 |
重要
Network |
シスコシステムズ | - | Cisco Application Policy Infrastructure Controller エンタープライズ モジュールにおける root 権限で任意のコマンドを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2016-1365 | 2016-08-22 16:24 | 2016-08-17 | Show | GitHub Exploit DB Packet Storm |
| 203749 | 5.8 |
警告
Local |
SAP | - | SAP SAPCAR における任意のファイルのパーミッションを変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-5847 | 2016-08-22 15:33 | 2016-08-10 | Show | GitHub Exploit DB Packet Storm |
| 203750 | 5.5 |
警告
Local |
SAP | - | SAP SAPCAR におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2016-5845 | 2016-08-22 15:33 | 2016-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 8, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 291581 | 9.8 |
CRITICAL
Network |
xerox |
colorqube_9201_firmware colorqube_9202_firmware colorqube_9203_firmware workcentre_6400_firmware workcentre_7525_firmware workcentre_7530_firmware workcentre_7535_firmware workce… |
Xerox ColorCube and WorkCenter devices in 2013 had hardcoded FTP and shell user accounts. |
CWE-798
Use of Hard-coded Credentials |
CVE-2013-6362 | 2024-11-21 10:59 | 2020-02-14 | Show | GitHub Exploit DB Packet Storm |
| 291582 | 7.5 |
HIGH
Network |
trendnet | ts-s402_firmware | TRENDnet TS-S402 has a backdoor to enable TELNET. |
CWE-287
Improper Authentication |
CVE-2013-6360 | 2024-11-21 10:59 | 2020-02-14 | Show | GitHub Exploit DB Packet Storm |
| 291583 | 5.9 |
MEDIUM
Network |
mapway | tube_map | Tube Map Live Underground for Android before 3.0.22 has an Information Disclosure Vulnerability |
CWE-200
Information Exposure |
CVE-2013-6681 | 2024-11-21 10:59 | 2020-02-13 | Show | GitHub Exploit DB Packet Storm |
| 291584 | 5.3 |
MEDIUM
Network |
mediawiki | mediawiki | The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of… |
CWE-200
Information Exposure |
CVE-2013-6455 | 2024-11-21 10:59 | 2020-01-29 | Show | GitHub Exploit DB Packet Storm |
| 291585 | 6.1 |
MEDIUM
Network |
mediawiki | mediawiki | Cross-site scripting (XSS) vulnerability in MediaWiki 1.19.9 before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via unspecifie… |
CWE-79
Cross-site Scripting |
CVE-2013-6451 | 2024-11-21 10:59 | 2020-01-29 | Show | GitHub Exploit DB Packet Storm |
| 291586 | 9.8 |
CRITICAL
Network |
android | Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability |
NVD-CWE-Other
|
CVE-2013-6792 | 2024-11-21 10:59 | 2020-01-24 | Show | GitHub Exploit DB Packet Storm | |
| 291587 | 4.3 |
MEDIUM
Network |
supermicro | intelligent_platform_management_interface | Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter. |
CWE-22
Path Traversal |
CVE-2013-6785 | 2024-11-21 10:59 | 2020-01-24 | Show | GitHub Exploit DB Packet Storm |
| 291588 | 7.8 |
HIGH
Local |
splunk | splunk | Splunk 5.0.3 has an Unquoted Service Path in Windows for Universal Forwarder which can allow an attacker to escalate privileges |
CWE-269
Improper Privilege Management |
CVE-2013-6773 | 2024-11-21 10:59 | 2020-01-24 | Show | GitHub Exploit DB Packet Storm |
| 291589 | 4.3 |
MEDIUM
Network |
splunk | splunk | Splunk before 5.0.4 lacks X-Frame-Options which can allow Clickjacking |
CWE-1021
Improper Restriction of Rendered UI Layers or Frames |
CVE-2013-6772 | 2024-11-21 10:59 | 2020-01-24 | Show | GitHub Exploit DB Packet Storm |
| 291590 | 8.8 |
HIGH
Network |
prestashop | prestashop | PrestaShop 1.5.5 allows remote authenticated attackers to execute arbitrary code by uploading a crafted profile and then accessing it in the module/ directory. |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2013-6358 | 2024-11-21 10:59 | 2020-01-24 | Show | GitHub Exploit DB Packet Storm |