Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208721 8.3 危険 シマンテック - Symantec Endpoint Protection Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-8153 2016-03-23 10:36 2015-11-13 Show GitHub Exploit DB Packet Storm
208722 8.5 危険 シマンテック - Symantec Endpoint Protection Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-8152 2016-03-23 10:36 2015-11-13 Show GitHub Exploit DB Packet Storm
208723 6 警告 ABB - ABB Panel Builder 800 における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2281 2016-03-23 10:03 2016-03-17 Show GitHub Exploit DB Packet Storm
208724 4.3 警告 XZERES Wind Corp - XZERES 442SR Wind Turbines 上で稼動する 442SR OS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2287 2016-03-22 18:16 2016-03-21 Show GitHub Exploit DB Packet Storm
208725 4.3 警告 Novell - Novell Filr におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5968 2016-03-22 18:10 2015-12-11 Show GitHub Exploit DB Packet Storm
208726 4.3 警告 IBM - IBM WebSphere Application Server の OpenID Connect クライアント Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0283 2016-03-22 18:03 2016-03-18 Show GitHub Exploit DB Packet Storm
208727 4 警告 IBM - IBM WebSphere Process Server および Business Process Manager Advanced におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-7454 2016-03-22 18:03 2015-09-29 Show GitHub Exploit DB Packet Storm
208728 9 危険 IBM - IBM Tivoli NetView Access Services における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9768 2016-03-22 18:03 2014-09-28 Show GitHub Exploit DB Packet Storm
208729 4 警告 DELL EMC (旧 EMC Corporation) - EMC Documentum xCP における重要なユーザアカウントのメタデータを取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0886 2016-03-22 16:14 2016-03-7 Show GitHub Exploit DB Packet Storm
208730 10 危険 Google - Android のメディアサーバの libvpx における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1621 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298021 - x
canonical 		x.org-xserver
ubuntu_linux 		X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain se… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1940 2024-11-21 10:50 2013-05-14 Show GitHub Exploit DB Packet Storm
298022 - xen xen qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1922 2024-11-21 10:50 2013-05-14 Show GitHub Exploit DB Packet Storm
298023 - xen xen Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which allows local stub domain clients to gain access to IRQs and cause a denial of service via vectors related to "passed-through IRQs … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1919 2024-11-21 10:50 2013-05-14 Show GitHub Exploit DB Packet Storm
298024 - xen xen Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and earlier are not preemptible, which allows local PV kernels to cause a denial of service via vectors related to "deep page table tra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1918 2024-11-21 10:50 2013-05-14 Show GitHub Exploit DB Packet Storm
298025 - xen xen Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service (hyp… CWE-20
 Improper Input Validation  		CVE-2013-1917 2024-11-21 10:50 2013-05-14 Show GitHub Exploit DB Packet Storm
298026 - fedoraproject 389_directory_server The do_search function in ldap/servers/slapd/search.c in 389 Directory Server 1.2.x before 1.2.11.20 and 1.3.x before 1.3.0.5 does not properly restrict access to entries when the nsslapd-allow-anony… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1897 2024-11-21 10:50 2013-05-14 Show GitHub Exploit DB Packet Storm
298027 - linux linux_kernel The veth (aka virtual Ethernet) driver in the Linux kernel before 2.6.34 does not properly manage skbs during congestion, which allows remote attackers to cause a denial of service (system crash) by … CWE-399
 Resource Management Errors 		CVE-2013-2017 2024-11-21 10:50 2013-05-3 Show GitHub Exploit DB Packet Storm
298028 - linux linux_kernel The scm_set_cred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafte… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1979 2024-11-21 10:50 2013-05-3 Show GitHub Exploit DB Packet Storm
298029 - linux linux_kernel kernel/user_namespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uid_map and gid_map files, which allows local users to gain privileges by opening a … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1959 2024-11-21 10:50 2013-05-3 Show GitHub Exploit DB Packet Storm
298030 - apache subversion The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an inval… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1884 2024-11-21 10:50 2013-05-2 Show GitHub Exploit DB Packet Storm