Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209401	6.8	警告	GNU Project Debian Canonical	-	GPGME の engine-gpgsm.c および engine-uiserver.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3564	2015-10-30 16:35	2014-07-30	Show	GitHub Exploit DB Packet Storm

209402	8	危険	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における SERVER:DML に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-6507	2015-10-30 16:35	2014-10-14	Show	GitHub Exploit DB Packet Storm

209403	5.8	警告	OpenBSD	-	OpenSSH のクライアントにおける SSHFP DNS RR チェックのスキップを誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2014-2653	2015-10-30 16:35	2014-03-25	Show	GitHub Exploit DB Packet Storm

209404	6.8	警告	OpenStack	-	OpenStack Compute におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-3241	2015-10-30 15:31	2015-09-3	Show	GitHub Exploit DB Packet Storm

209405	7.5	危険	IBM	-	IBM Domino におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-4994	2015-10-30 14:21	2015-10-22	Show	GitHub Exploit DB Packet Storm

209406	5	警告	IBM	-	IBM WebSphere Portal における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2014-8912	2015-10-30 14:21	2014-11-14	Show	GitHub Exploit DB Packet Storm

209407	6.8	警告	Medicomp Systems, Inc.	-	Medicomp MEDCIN Engine におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2015-2901	2015-10-30 14:18	2015-10-20	Show	GitHub Exploit DB Packet Storm

209408	6.8	警告	Medicomp Systems, Inc.	-	Medicomp MEDCIN Engine の AddUserFinding の add_userfinding2 におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 CWE-Other	CVE-2015-2900	2015-10-30 14:18	2015-10-20	Show	GitHub Exploit DB Packet Storm

209409	6.8	警告	Medicomp Systems, Inc.	-	Medicomp MEDCIN Engine の QualifierList の retrieve_qualifier_list におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2015-2899	2015-10-30 14:18	2015-10-20	Show	GitHub Exploit DB Packet Storm

209410	6.8	警告	Medicomp Systems, Inc.	-	Medicomp MEDCIN Engine におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2015-2898	2015-10-30 14:18	2015-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
297701	-	rubyonrails debian	ruby_on_rails rails debian_linux	active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which …	CWE-20 Improper Input Validation	CVE-2013-0156	2024-11-21 10:46	2013-01-14	Show	GitHub Exploit DB Packet Storm

297702	-	rubyonrails debian	ruby_on_rails rails debian_linux	Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implement…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0155	2024-11-21 10:46	2013-01-14	Show	GitHub Exploit DB Packet Storm

297703	-	xen	xen	The get_page_type function in xen/arch/x86/mm.c in Xen 4.2, when debugging is enabled, allows local PV or HVM guest administrators to cause a denial of service (assertion failure and hypervisor crash…	NVD-CWE-noinfo	CVE-2013-0154	2024-11-21 10:46	2013-01-12	Show	GitHub Exploit DB Packet Storm

297704	-	hp	pki_activex_control	The KillProcess method in the HP PKI ActiveX control (HPPKI.ocx) before 1.2.0.1 allows remote attackers to cause a denial of service (kill process) via the partial or full name of a process.	CWE-20 Improper Input Validation	CVE-2012-6501	2024-11-21 10:46	2013-01-12	Show	GitHub Exploit DB Packet Storm

297705	-	pragyan_cms_project	pragyan_cms	Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the fileget parameter in a profile action to…	CWE-22 Path Traversal	CVE-2012-6500	2024-11-21 10:46	2013-01-12	Show	GitHub Exploit DB Packet Storm

297706	-	age_verification_project	age_verification	Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing …	CWE-20 Improper Input Validation	CVE-2012-6499	2024-11-21 10:46	2013-01-12	Show	GitHub Exploit DB Packet Storm

297707	-	microsoft	windows_server_2008 windows_rt windows_8 windows_7 windows_vista windows_server_2012	The SSL provider component in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle enc…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0013	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

297708	-	microsoft	windows_server_2008 windows_7	The Print Spooler in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a cr…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0011	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

297709	-	microsoft	system_center_operations_manager	Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Ce…	CWE-79 Cross-site Scripting	CVE-2013-0010	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

297710	-	microsoft	system_center_operations_manager	Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Ce…	CWE-79 Cross-site Scripting	CVE-2013-0009	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm