Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203791	5.5	警告 Local	Lenovo	-	Lenovo Solution Center の LSC.Services.SystemService の StopProxy コマンドにおける任意のプロセスを終了される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5248	2016-07-4 16:53	2016-06-23	Show	GitHub Exploit DB Packet Storm

203792	7.8	重要 Local	Lenovo	-	Lenovo Solution Center における LocalSystem 権限で任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5249	2016-07-4 16:53	2016-06-23	Show	GitHub Exploit DB Packet Storm

203793	7.5	重要 Network	Symphony CMS	-	Symphony CMS における Web セッションをハイジャックされる脆弱性	CWE-362 CWE-Other	CVE-2016-4309	2016-07-4 16:45	2016-05-24	Show	GitHub Exploit DB Packet Storm

203794	7.5	重要 Network	Canonical thekelleys	-	Dnsmasq におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2015-8899	2016-07-4 16:31	2015-11-15	Show	GitHub Exploit DB Packet Storm

203795	5.9	警告 Local	Fabrice Bellard	-	QEMU におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-2858	2016-07-1 17:40	2016-03-3	Show	GitHub Exploit DB Packet Storm

203796	8.2	重要 Network	Squid-cache.org	-	Squid の pinger ユーティリティの icmp/Icmp6.cc 内の Icmp6::Recv 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-3947	2016-07-1 17:38	2016-04-2	Show	GitHub Exploit DB Packet Storm

203797	9.8	緊急 Network		-	HPE Data Protector における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2016-2004	2016-07-1 16:54	2016-04-18	Show	GitHub Exploit DB Packet Storm

203798	6.5	警告 Network	IBM	-	IBM Business Process Manager におけるアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2016-0349	2016-07-1 11:48	2016-06-24	Show	GitHub Exploit DB Packet Storm

203799	5.4	警告 Network	IBM	-	IBM Connections におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0322	2016-07-1 11:48	2016-05-16	Show	GitHub Exploit DB Packet Storm

203800	7.5	重要 Network	IBM	-	IBM WebSphere MQ のキュー・マネージャーエージェントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-0260	2016-07-1 11:48	2016-06-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290751	-	freedesktop	poppler	The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on tem…	CWE-59 Link Following	CVE-2013-4472	2024-11-21 10:55	2014-04-22	Show	GitHub Exploit DB Packet Storm

290752	-	imapsync_project	imapsync	imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site.	CWE-200 Information Exposure	CVE-2013-4279	2024-11-21 10:55	2014-04-19	Show	GitHub Exploit DB Packet Storm

290753	-	uclouvain	openjpeg	Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4290	2024-11-21 10:55	2014-04-18	Show	GitHub Exploit DB Packet Storm

290754	-	uclouvain	openjpeg	Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.	CWE-189 Numeric Errors	CVE-2013-4289	2024-11-21 10:55	2014-04-18	Show	GitHub Exploit DB Packet Storm

290755	-	hitmyserver	hms_testimonials	Multiple cross-site request forgery (CSRF) vulnerabilities in the HMS Testimonials plugin before 2.0.11 for WordPress allow remote attackers to hijack the authentication of administrators for request…	CWE-352 Origin Validation Error	CVE-2013-4240	2024-11-21 10:55	2014-04-3	Show	GitHub Exploit DB Packet Storm

290756	-	samba canonical	samba ubuntu_linux	Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obta…	CWE-255 Credentials Management	CVE-2013-4496	2024-11-21 10:55	2014-03-14	Show	GitHub Exploit DB Packet Storm

290757	-	vicidial	vicidial	Multiple SQL injection vulnerabilities in the agent interface (agc/) in VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier allow (1) remote attackers to execute arbitrary SQ…	CWE-89 SQL Injection	CVE-2013-4467	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

290758	-	php	xhprof	Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter.	CWE-79 Cross-site Scripting	CVE-2013-4433	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

290759	-	schneems	wicked	Directory traversal vulnerability in controller/concerns/render_redirect.rb in the Wicked gem before 1.0.1 for Ruby allows remote attackers to read arbitrary files via a %2E%2E%2F (encoded dot dot sl…	CWE-22 Path Traversal	CVE-2013-4413	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

290760	-	plone	plone	mail_password.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to bypass the prohibition on password changes via the forgotten password emai…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4198	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm