Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209701	10	危険	Mozilla Foundation	-	Mozilla Firefox の gfx/thebes/gfxDWriteFontList.cpp におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-7203	2015-12-17 14:26	2015-12-15	Show	GitHub Exploit DB Packet Storm

209702	10	危険	Mozilla Foundation	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-7202	2015-12-17 14:26	2015-12-15	Show	GitHub Exploit DB Packet Storm

209703	10	危険	Mozilla Foundation	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-7201	2015-12-17 14:26	2015-12-15	Show	GitHub Exploit DB Packet Storm

209704	5.4	警告 Network	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player における iframe 内のコンテンツを上書きしてしまう問題	CWE-Other その他	CVE-2015-7628	2015-12-17 12:03	2015-10-13	Show	GitHub Exploit DB Packet Storm

209705	4.3	警告	アップル	-	Apple iOS の X.509 証明書の信頼性評価の実装におけるエンドポイントを偽装される脆弱性	CWE-Other その他	CVE-2015-6997	2015-12-16 17:48	2015-10-21	Show	GitHub Exploit DB Packet Storm

209706	9.3	危険	アップル	-	Apple iOS の GasGauge における特権付きコンテキスト内で任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-6979	2015-12-16 17:48	2015-10-21	Show	GitHub Exploit DB Packet Storm

209707	6.8	警告	アップル	-	Apple iOS および OS X の FontParser における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-6978	2015-12-16 17:48	2015-10-21	Show	GitHub Exploit DB Packet Storm

209708	4.3	警告	シスコシステムズ	-	Cisco Model EPC3928 with EDVA デバイスの管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6402	2015-12-16 17:45	2015-12-8	Show	GitHub Exploit DB Packet Storm

209709	7.5	危険	シスコシステムズ	-	Cisco Model EPC3928 with EDVA デバイスにおける認証要求を回避される脆弱性	CWE-287 不適切な認証	CVE-2015-6401	2015-12-16 17:40	2015-12-8	Show	GitHub Exploit DB Packet Storm

209710	6.8	警告	シスコシステムズ	-	Cisco Model DPQ3925 with EDVA デバイスにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-6378	2015-12-16 16:44	2015-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298171	8.8	HIGH Network	vivotek	pt7135_firmware	A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary co…	CWE-78 OS Command	CVE-2013-1598	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

298172	6.5	MEDIUM Network	vivotek	pt7135_firmware	A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials.	CWE-22 Path Traversal	CVE-2013-1597	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

298173	5.3	MEDIUM Network	vivotek	pt7135_firmware	An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554.	CWE-287 Improper Authentication	CVE-2013-1596	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

298174	9.8	CRITICAL Network	vivotek	pt7135_firmware	A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote …	CWE-120 Classic Buffer Overflow	CVE-2013-1595	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

298175	7.5	HIGH Network	vivotek	pt7135_firmware	An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text.	CWE-200 Information Exposure	CVE-2013-1594	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

298176	7.5	HIGH Network	sap	netweaver	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server pack…	CWE-129 Improper Validation of Array Index	CVE-2013-1593	2024-11-21 10:49	2020-01-24	Show	GitHub Exploit DB Packet Storm

298177	9.8	CRITICAL Network	sap	netweaver	A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in…	CWE-120 Classic Buffer Overflow	CVE-2013-1592	2024-11-21 10:49	2020-01-24	Show	GitHub Exploit DB Packet Storm

298178	6.1	MEDIUM Network	get-simple	getsimple_cms	Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS before 3.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to backup-edit.php; (2) title …	CWE-79 Cross-site Scripting	CVE-2013-1420	2024-11-21 10:49	2020-01-3	Show	GitHub Exploit DB Packet Storm

298179	6.3	MEDIUM Local	debian canonical	lintian debian_linux ubuntu_linux	Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks.	CWE-59 Link Following	CVE-2013-1429	2024-11-21 10:49	2019-11-8	Show	GitHub Exploit DB Packet Storm

298180	6.1	MEDIUM Network	mahara	mahara	Cross-site Scripting (XSS) in Mahara before 1.5.9 and 1.6.x before 1.6.4 allows remote attackers to inject arbitrary web script or HTML via the TinyMCE editor.	CWE-79 Cross-site Scripting	CVE-2013-1426	2024-11-21 10:49	2019-11-8	Show	GitHub Exploit DB Packet Storm