Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209751 5 警告 アップル - Apple Xcode の IDE SCM における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-7056 2015-12-15 14:49 2015-12-8 Show GitHub Exploit DB Packet Storm
209752 4.6 警告 アップル - Apple Xcode の otools における権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2015-7049 2015-12-15 14:49 2015-12-8 Show GitHub Exploit DB Packet Storm
209753 4.3 警告 アップル - Apple iOS の Safari におけるユーザインターフェースの URL を偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-7093 2015-12-15 13:56 2015-12-8 Show GitHub Exploit DB Packet Storm
209754 2.1 注意 アップル - Apple iOS の Siri におけるクライアントサイドの保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-7080 2015-12-15 13:56 2015-12-8 Show GitHub Exploit DB Packet Storm
209755 9.3 危険 アップル - Apple iOS の GPUTools Framework の Mobile Replayer における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2015-7070 2015-12-15 13:56 2015-12-8 Show GitHub Exploit DB Packet Storm
209756 9.3 危険 アップル - Apple iOS の GPUTools Framework の Mobile Replayer における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2015-7069 2015-12-15 13:56 2015-12-8 Show GitHub Exploit DB Packet Storm
209757 5 警告 アップル - Apple iOS の写真のモバイルバックアップにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-7037 2015-12-15 13:56 2015-12-8 Show GitHub Exploit DB Packet Storm
209758 10 危険 アップル - Apple iOS および watchOS の LaunchServices コンポーネントにおける特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2015-7113 2015-12-15 13:41 2015-12-8 Show GitHub Exploit DB Packet Storm
209759 9.3 危険 アップル - 複数の Apple 製品の dyld における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-7072 2015-12-15 13:41 2015-12-8 Show GitHub Exploit DB Packet Storm
209760 9.3 危険 アップル - 複数の Apple 製品の IOHIDFamily API における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2015-7112 2015-12-15 11:58 2015-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297781 - php-fusion php-fusion Multiple SQL injection vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to execute arbitrary SQL commands via the (1) orderby parameter to downloads.php; or remote authenticated us… CWE-89
SQL Injection 		CVE-2013-1803 2024-11-21 10:50 2014-05-6 Show GitHub Exploit DB Packet Storm
297782 - transifex transifex Transifex command-line client before 0.9 does not validate X.509 certificates, which allows man-in-the-middle attackers to spoof a Transifex server via an arbitrary certificate. CWE-20
 Improper Input Validation  		CVE-2013-2073 2024-11-21 10:50 2014-05-2 Show GitHub Exploit DB Packet Storm
297783 - php-fusion php-fusion PHP-Fusion before 7.02.06 stores backup files with predictable filenames in an unrestricted directory under the web document root, which might allow remote attackers to obtain sensitive information v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1807 2024-11-21 10:50 2014-05-1 Show GitHub Exploit DB Packet Storm
297784 - php-fusion php-fusion Multiple directory traversal vulnerabilities in PHP-Fusion before 7.02.06 allow remote authenticated users to include and execute arbitrary files via a .. (dot dot) in the (1) user_theme parameter to… CWE-22
Path Traversal 		CVE-2013-1806 2024-11-21 10:50 2014-05-1 Show GitHub Exploit DB Packet Storm
297785 - php-fusion php-fusion Multiple cross-site scripting (XSS) vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to inject arbitrary web script or HTML via the (1) highlight parameter to forum/viewthread.php;… CWE-79
Cross-site Scripting 		CVE-2013-1804 2024-11-21 10:50 2014-04-30 Show GitHub Exploit DB Packet Storm
297786 - ushahidi ushahidi_platform Cross-site scripting (XSS) vulnerability in Ushahidi Platform 2.5.x through 2.6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-2025 2024-11-21 10:50 2014-04-26 Show GitHub Exploit DB Packet Storm
297787 - packagekit_project packagekit The Zypper (aka zypp) backend in PackageKit before 0.8.8 allows local users to downgrade packages via the "install updates" method. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1764 2024-11-21 10:50 2014-04-17 Show GitHub Exploit DB Packet Storm
297788 - jenkins
cloudbees 		jenkins Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with writ… CWE-79
Cross-site Scripting 		CVE-2013-2033 2024-11-21 10:50 2014-04-11 Show GitHub Exploit DB Packet Storm
297789 - restful_web_services_project restful_web_services The RESTful Web Services (RESTWS) module 7.x-1.x before 7.x-1.3 and 7.x-2.x before 7.x-2.0-alpha5 for Drupal, when page caching is enabled and anonymous users are assigned RESTWS permissions, allows … CWE-20
 Improper Input Validation  		CVE-2013-1946 2024-11-21 10:50 2014-04-7 Show GitHub Exploit DB Packet Storm
297790 - ganglia ganglia-web Cross-site scripting (XSS) vulnerability in views_view.php in Ganglia Web 3.5.7 allows remote attackers to inject arbitrary web script or HTML via the view_name parameter. CWE-79
Cross-site Scripting 		CVE-2013-1770 2024-11-21 10:50 2014-04-3 Show GitHub Exploit DB Packet Storm