Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
208941 6.1 警告
Network
John Dyer
WordPress.org
- WordPress で使用される MediaElement.js の flash/FlashMediaElement.as におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-4567 2016-05-25 16:57 2016-05-5 Show GitHub Exploit DB Packet Storm
208942 6.1 警告
Network
WordPress.org
Moxiecode Systems
- WordPress で使用される Plupload の plupload.flash.swf におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-4566 2016-05-25 16:57 2016-05-15 Show GitHub Exploit DB Packet Storm
208943 8.6 重要
Network
WordPress.org - WordPress の wp-includes/http.php の wp_http_validate_url 関数におけるサーバサイドのリクエストフォージェリ攻撃を実行される脆弱性 CWE-Other
その他
CVE-2016-2222 2016-05-25 16:57 2016-02-2 Show GitHub Exploit DB Packet Storm
208944 7.4 重要
Network
WordPress.org - WordPress の wp-includes/pluggable.php の wp_validate_redirect 関数におけるオープンリダイレクトの脆弱性 CWE-Other
その他
CVE-2016-2221 2016-05-25 16:57 2016-02-2 Show GitHub Exploit DB Packet Storm
208945 6.1 警告
Network
WordPress.org - WordPress の wp-includes/class-wp-theme.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-1564 2016-05-25 16:57 2016-01-6 Show GitHub Exploit DB Packet Storm
208946 6.1 警告
Network
WordPress.org - WordPress の wp-includes/wp-db.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-8834 2016-05-25 16:57 2015-05-6 Show GitHub Exploit DB Packet Storm
208947 5.4 警告
Network
WordPress.org - WordPress のユーザリストのテーブルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-7989 2016-05-25 16:57 2015-09-15 Show GitHub Exploit DB Packet Storm
208948 4.3 警告
Network
WordPress.org - WordPress の XMLRPC サブシステムの wp-includes/class-wp-xmlrpc-server.php の mw_editPost 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-5715 2016-05-25 16:57 2015-09-15 Show GitHub Exploit DB Packet Storm
208949 4.3 警告
Network
The PHP Group
Facebook
- PHP の ext/zip/php_zip.c および HHVM の ext/zip/ext_zip.cpp の ZipArchive::extractTo 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2014-9767 2016-05-25 16:55 2014-09-10 Show GitHub Exploit DB Packet Storm
208950 9.8 緊急
Network
The PHP Group - PHP の ext/standard/string.c の str_pad 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2016-4346 2016-05-25 16:28 2016-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297461 - ibm rational_clearcase Buffer overflow in IBM Rational ClearCase through 7.1.2.12, 8.0.0.x before 8.0.0.9, and 8.0.1.x before 8.0.1.2 allows local users to gain privileges via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5415 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297462 - ibm maximo_for_nuclear_power
maximo_asset_management
maximo_for_utilities
maximo_for_life_sciences
maximo_for_oil_and_gas
maximo_for_transportation
maximo_for_government
maximo_asset…
Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management, Maximo Asset Management Essentials, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Lif… CWE-79
Cross-site Scripting
CVE-2013-5402 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297463 - ibm rational_focal_point Unspecified vulnerability in the Webservice Axis Gateway in IBM Rational Focal Point 6.4 before devfix1, 6.4.1.3 before devfix1, 6.5.1 before devfix1, 6.5.2 before devfix4, 6.5.2.3 before devfix9, 6.… NVD-CWE-noinfo
CVE-2013-5398 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297464 - ibm rational_focal_point Unspecified vulnerability in the Webservice Axis Gateway in IBM Rational Focal Point 6.4 before devfix1, 6.4.1.3 before devfix1, 6.5.1 before devfix1, 6.5.2 before devfix4, 6.5.2.3 before devfix9, 6.… NVD-CWE-noinfo
CVE-2013-5397 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297465 - apple itunes
iphone_os
tvos
safari
webkit
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5228 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297466 - apple safari Apple Safari before 6.1.1 and 7.x before 7.0.1 allows remote attackers to bypass the Same Origin Policy and discover credentials by triggering autofill of subframe form fields. CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5227 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297467 - apple safari
webkit
itunes
iphone_os
tvos
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5225 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297468 - apple itunes
iphone_os
tvos
safari
webkit
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5199 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297469 - apple safari
webkit
itunes
iphone_os
tvos
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5198 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm
297470 - apple safari
webkit
itunes
iphone_os
tvos
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5197 2024-11-21 10:57 2013-12-19 Show GitHub Exploit DB Packet Storm