Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
209651 7.8 重要
Local
Debian
OptiPNG
- OptiPNG の pngxrbmp.c の bmp_read_rows 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-3981 2016-04-21 17:05 2016-04-4 Show GitHub Exploit DB Packet Storm
209652 7.6 重要
Network
Debian
Apache Software Foundation
- Apache Subversion の mod_dav_svn の util.c における整数オーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2015-5343 2016-04-21 16:55 2015-12-16 Show GitHub Exploit DB Packet Storm
209653 9.8 緊急
Network
Canonical
Pixman
- Pixman の pixman-bits-image.c の create_bits 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2014-9766 2016-04-21 16:49 2014-04-9 Show GitHub Exploit DB Packet Storm
209654 9.8 緊急
Network
openSUSE project
Canonical
Git project
レッドハット
- Git の git-remote-ext および不特定の他のリモートヘルパープログラムにおける任意のコードを実行される脆弱性 CWE-20
CWE-Other
CVE-2015-7545 2016-04-21 16:40 2015-09-29 Show GitHub Exploit DB Packet Storm
209655 4.3 警告
Network
Roundup
Debian
- Roundup の schema.py における重要なユーザ情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-6276 2016-04-21 16:35 2014-07-4 Show GitHub Exploit DB Packet Storm
209656 7.5 重要
Network
Eran Hammer - Hawk におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2016-2515 2016-04-21 16:17 2016-01-20 Show GitHub Exploit DB Packet Storm
209657 6.1 警告
Network
Debian
Fedora Project
Horde
- Horde Groupware および Groupware Webmail Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-2228 2016-04-21 16:09 2016-02-2 Show GitHub Exploit DB Packet Storm
209658 6.1 警告
Network
Debian
Fedora Project
Horde
- Horde Groupware および Groupware Webmail Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-8807 2016-04-21 16:09 2015-12-14 Show GitHub Exploit DB Packet Storm
209659 8.6 重要
Network
Debian
Inspire IRCd
- InspIRCd の dns.cpp の DNS::GetResult 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2015-8702 2016-04-21 16:05 2015-04-16 Show GitHub Exploit DB Packet Storm
209660 7.5 重要
Network
Debian
Canonical
Fedora Project
libssh
- libssh の package_cb.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2015-3146 2016-04-21 16:00 2015-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297491 - ibm forms_viewer Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary code via an XFDL form with a long fontname value. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5447 2024-11-21 10:57 2013-12-10 Show GitHub Exploit DB Packet Storm
297492 - sharetronix sharetronix Multiple cross-site request forgery (CSRF) vulnerabilities in Sharetronix 3.1.1 allow remote attackers to hijack the authentication of administrators for requests that (1) change configuration settin… CWE-352
 Origin Validation Error
CVE-2013-5355 2024-11-21 10:57 2013-12-10 Show GitHub Exploit DB Packet Storm
297493 - sharetronix sharetronix Multiple SQL injection vulnerabilities in Sharetronix 3.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) fb_user_id or (2) tw_user_id parameter to signup. CWE-89
SQL Injection
CVE-2013-5354 2024-11-21 10:57 2013-12-10 Show GitHub Exploit DB Packet Storm
297494 - ibm smartcloud_provisioning IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated by a deletion using a… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5455 2024-11-21 10:57 2013-12-7 Show GitHub Exploit DB Packet Storm
297495 - rockmongo rockmongo Multiple cross-site scripting (XSS) vulnerabilities in the xn function in RockMongo 1.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) db parameter on the log… CWE-79
Cross-site Scripting
CVE-2013-5108 2024-11-21 10:57 2013-12-6 Show GitHub Exploit DB Packet Storm
297496 - ibm filenet_content_manager Cross-site scripting (XSS) vulnerability in workingSet.jsp in IBM Eclipse Help System (IEHS), as used in the installable InfoCenter component in IBM FileNet Content Manager 4.5.1, 5.0.0, 5.1.0, and 5… CWE-79
Cross-site Scripting
CVE-2013-5449 2024-11-21 10:57 2013-12-5 Show GitHub Exploit DB Packet Storm
297497 - checkpoint endpoint_security Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attac… CWE-255
Credentials Management
CVE-2013-5636 2024-11-21 10:57 2013-11-30 Show GitHub Exploit DB Packet Storm
297498 - checkpoint endpoint_security Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to by… CWE-255
Credentials Management
CVE-2013-5635 2024-11-21 10:57 2013-11-30 Show GitHub Exploit DB Packet Storm
297499 - ibm qradar_security_information_and_event_manager The WinCollect agent in IBM Security QRadar SIEM before 7.1.1.569824 allows remote attackers to bypass intended access restrictions by injecting a (1) DLL or (2) configuration file. CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5463 2024-11-21 10:57 2013-11-30 Show GitHub Exploit DB Packet Storm
297500 - ibm qradar_security_information_and_event_manager Cross-site scripting (XSS) vulnerability in the Right Click Plugin context menus in IBM Security QRadar SIEM 7.1 and 7.2 before 7.2 MR1 Patch 1 allows remote authenticated users to inject arbitrary w… CWE-79
Cross-site Scripting
CVE-2013-5448 2024-11-21 10:57 2013-11-30 Show GitHub Exploit DB Packet Storm