Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209481 6.3 警告
Network 		コルネ株式会社 - WordPress 用プラグイン Welcart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-7791 2016-01-7 15:22 2015-12-17 Show GitHub Exploit DB Packet Storm
209482 6 警告 Orient Technologies - OrientDB および OrientDB Studio に複数の脆弱性 CWE-20
CWE-200
CWE-352
CWE-Other
CVE-2015-2912
CVE-2015-2913
CVE-2015-2918 		2016-01-7 15:11 2015-09-3 Show GitHub Exploit DB Packet Storm
209483 6.1 警告
Network 		株式会社NTTデータ・スマートソーシング - 「アクセス解析」におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7786 2016-01-7 15:08 2015-12-8 Show GitHub Exploit DB Packet Storm
209484 10 危険 古野電気株式会社 - 古野電気製 Voyage Data Recorder (VDR) にユーザ入力値を適切に検証しない脆弱性 - - 2016-01-7 12:17 2016-01-4 Show GitHub Exploit DB Packet Storm
209485 4.3 警告 ヒューレット・パッカード - HP Insight Control サーバープロビジョニングにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-6858 2016-01-7 11:13 2015-12-9 Show GitHub Exploit DB Packet Storm
209486 3.5 注意 ヒューレット・パッカード - HP StoreOnce Backup System のソフトウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5447 2016-01-7 10:29 2015-12-14 Show GitHub Exploit DB Packet Storm
209487 5.8 警告 ヒューレット・パッカード - HP StoreOnce Backup System のソフトウェアにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2015-5446 2016-01-7 10:29 2015-12-14 Show GitHub Exploit DB Packet Storm
209488 6.8 警告 ヒューレット・パッカード - HP StoreOnce Backup System のソフトウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-5445 2016-01-7 10:29 2015-12-14 Show GitHub Exploit DB Packet Storm
209489 4.6 警告 - HPE Helion Eucalyptus における AssumeRole パーミッションの要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-6861 2016-01-6 17:55 2015-12-21 Show GitHub Exploit DB Packet Storm
209490 4.6 警告 ヒューレット・パッカード - HP Helion Eucalyptus および HPE Helion Eucalyptus におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5040 2016-01-6 17:54 2014-07-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298431 - adobe shockwave_player Adobe Shockwave Player before 12.0.2.122 does not prevent access to address information, which makes it easier for attackers to bypass the ASLR protection mechanism via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1385 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298432 - adobe shockwave_player Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1… NVD-CWE-noinfo
CVE-2013-1384 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298433 - adobe shockwave_player Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1383 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298434 - adobe flash_player
adobe_air
adobe_air_sdk 		Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and be… NVD-CWE-noinfo
CVE-2013-1380 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298435 - adobe
opensuse
novell 		adobe_air_sdk
flash_player
adobe_air
opensuse
suse_linux_enterprise_desktop 		Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and be… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1379 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298436 - adobe flash_player
adobe_air
adobe_air_sdk 		Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and be… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1378 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298437 - microsoft internet_explorer Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… CWE-399
 Resource Management Errors 		CVE-2013-1304 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298438 - microsoft internet_explorer Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Intern… CWE-399
 Resource Management Errors 		CVE-2013-1303 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298439 - microsoft windows_server_2008
windows_xp
windows_server_2003
windows_vista 		The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 does not properly handle objects in memory, which allows local users … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1295 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm
298440 - microsoft remote_desktop_connection The Remote Desktop ActiveX control in mstscax.dll in Microsoft Remote Desktop Connection Client 6.1 and 7.0 does not properly handle objects in memory, which allows remote attackers to execute arbitr… CWE-94
Code Injection 		CVE-2013-1296 2024-11-21 10:49 2013-04-10 Show GitHub Exploit DB Packet Storm