Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204041 6.1 警告
Network 		VMware - VMware vRealize Log Insight におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2081 2016-07-11 11:05 2016-06-9 Show GitHub Exploit DB Packet Storm
204042 6.1 警告
Network 		VMware - VMware vCenter Server の vSphere Web Client におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-6931 2016-07-11 11:05 2015-09-14 Show GitHub Exploit DB Packet Storm
204043 9.8 緊急
Network 		IBM - IBM Bluemix プラットフォーム上で稼動する Watson Developer Cloud サービスにおける暗号保護メカニズムを破られる脆弱性 CWE-Other
その他 		CVE-2016-0391 2016-07-11 10:53 2016-05-11 Show GitHub Exploit DB Packet Storm
204044 6.1 警告
Network 		The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5099 2016-07-11 10:49 2016-05-25 Show GitHub Exploit DB Packet Storm
204045 5.3 警告
Network 		The phpMyAdmin Project - phpMyAdmin の libraries/error_report.lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-5098 2016-07-11 10:49 2016-05-25 Show GitHub Exploit DB Packet Storm
204046 5.3 警告
Network 		The phpMyAdmin Project - phpMyAdmin における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5097 2016-07-11 10:49 2016-05-25 Show GitHub Exploit DB Packet Storm
204047 6.5 警告
Network 		IBM - IBM Security QRadar Incident Forensics における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2968 2016-07-8 16:04 2016-06-21 Show GitHub Exploit DB Packet Storm
204048 5.4 警告
Network 		IBM - IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2883 2016-07-8 16:04 2016-05-20 Show GitHub Exploit DB Packet Storm
204049 4.3 警告
Network 		IBM - IBM TRIRIGA Application Platform における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2882 2016-07-8 16:04 2016-05-20 Show GitHub Exploit DB Packet Storm
204050 2.7
Network 		IBM - IBM WebSphere DataPower XC10 アプライアンス上で使用される CLI におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2870 2016-07-8 16:04 2016-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290511 - sap netweaver_logviewer SAP NetWeaver Logviewer 6.30, when running on Windows, allows remote attackers to bypass intended access restrictions via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6818 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
290512 - sap network_interface_router Heap-based buffer overflow in SAP Network Interface Router (SAProuter) 7.30 allows remote attackers to cause a denial of service and execute arbitrary code via crafted NI Route messages. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6817 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
290513 - sap netweaver Multiple cross-site scripting (XSS) vulnerabilities in the (1) JavaDumpService and (2) DataCollector servlets in SAP NetWeaver allow remote attackers to inject arbitrary web script or HTML via unspec… CWE-79
Cross-site Scripting 		CVE-2013-6816 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
290514 - sap netweaver The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier allows remote attackers to redirect users to arbitrary web sites, conduct phishing attacks, and obtain sensitive information (cookies and SAPP… CWE-20
 Improper Input Validation  		CVE-2013-6814 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
290515 - sap netweaver The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ABAP) in SAP NetWeaver 7.31 and earlier allows remote attackers to cause a denial of service via unspecified vectors, related to a… CWE-20
 Improper Input Validation  		CVE-2013-6815 2024-11-21 10:59 2013-11-20 Show GitHub Exploit DB Packet Storm
290516 - sunil_nanda blue_wrench_video_widget Cross-site request forgery (CSRF) vulnerability in bluewrench-video-widget.php in the Blue Wrench Video Widget plugin before 2.0.0 for WordPress allows remote attackers to hijack the authentication o… CWE-352
 Origin Validation Error 		CVE-2013-6797 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
290517 - google chrome Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote … NVD-CWE-Other
CVE-2013-6631 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
290518 - google chrome The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during t… CWE-189
Numeric Errors 		CVE-2013-6630 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
290519 - google
oracle
artifex
libjpeg-turbo
fedoraproject
opensuse
canonical
debian
mozilla 		chrome
solaris
gpl_ghostscript
libjpeg-turbo
fedora
opensuse
ubuntu_linux
debian_linux
firefox
seamonkey
thunderbird
firefox_esr 		The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain dup… CWE-200
Information Exposure 		CVE-2013-6629 2024-11-21 10:59 2013-11-19 Show GitHub Exploit DB Packet Storm
290520 - google chrome Google Chrome before 31.0.1650.57 allows remote attackers to bypass intended sandbox restrictions by leveraging access to a renderer process, as demonstrated during a Mobile Pwn2Own competition at Pa… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6802 2024-11-21 10:59 2013-11-18 Show GitHub Exploit DB Packet Storm