Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
209921 7.5 重要
Network
ICONICS, Inc. - ICONICS WebHMI におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2016-2289 2016-04-5 10:44 2016-03-31 Show GitHub Exploit DB Packet Storm
209922 7.5 重要
Network
シスコシステムズ - Cisco FireSIGHT システム ソフトウェアおよび ASA with FirePOWER Services におけるマルウェア保護を回避される脆弱性 CWE-20
不適切な入力確認
CVE-2016-1345 2016-04-4 11:47 2016-03-30 Show GitHub Exploit DB Packet Storm
209923 5 警告 サン・マイクロシステムズ
日立
オラクル
- 複数の Oracle Java 製品 における JAXP に関する脆弱性 CWE-noinfo
情報不足
CVE-2015-4803 2016-04-1 12:05 2015-10-20 Show GitHub Exploit DB Packet Storm
209924 8.8 重要
Network
Google - Google Chrome で使用される V8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2016-3679 2016-04-1 11:00 2016-03-24 Show GitHub Exploit DB Packet Storm
209925 5 警告 Huawei - Huawei E5151 および Huawei E5186 に不十分なランダム値を使用している問題 CWE-20
CWE-Other
CVE-2015-8265 2016-03-31 17:51 2016-02-1 Show GitHub Exploit DB Packet Storm
209926 3.5 注意 日立 - Hitachi Compute Systems Manager における情報漏えいに関する脆弱性 CWE-noinfo
情報不足
- 2016-03-31 17:50 2016-03-2 Show GitHub Exploit DB Packet Storm
209927 2.1 注意 アップル - Apple OS X の AppleRAID における重要なカーネルメモリのレイアウト情報を取得される脆弱性 CWE-119
バッファエラー
CVE-2016-1732 2016-03-31 17:45 2016-03-21 Show GitHub Exploit DB Packet Storm
209928 10 危険 オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-noinfo
CWE-Other
CVE-2015-6015 2016-03-31 16:50 2016-01-19 Show GitHub Exploit DB Packet Storm
209929 10 危険 オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-noinfo
CWE-Other
CVE-2015-6014 2016-03-31 16:50 2016-01-19 Show GitHub Exploit DB Packet Storm
209930 10 危険 オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-noinfo
CWE-Other
CVE-2015-6013 2016-03-31 16:50 2016-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297441 - hot hotbox_router_firmware
hotbox_router
goform/login on the HOT HOTBOX router with software 2.1.11 allows remote attackers to cause a denial of service (device crash) via crafted HTTP POST data. CWE-20
 Improper Input Validation 
CVE-2013-5220 2024-11-21 10:57 2013-12-30 Show GitHub Exploit DB Packet Storm
297442 - hot hotbox_router_firmware
hotbox_router
Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to read arbitrary files via a .. (dot dot) in a URI, as demonstrated by a request for /etc/pass… CWE-22
Path Traversal
CVE-2013-5219 2024-11-21 10:57 2013-12-30 Show GitHub Exploit DB Packet Storm
297443 - hot hotbox_router_firmware
hotbox_router
Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not… CWE-79
Cross-site Scripting
CVE-2013-5218 2024-11-21 10:57 2013-12-30 Show GitHub Exploit DB Packet Storm
297444 - adtran aos
netvanta_7060
netvanta_7100
Cross-site scripting (XSS) vulnerability in the GUI login page in ADTRAN AOS before R10.8.1 on the NetVanta 7100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2013-5210 2024-11-21 10:57 2013-12-30 Show GitHub Exploit DB Packet Storm
297445 - joomla joomla\! Cross-site scripting (XSS) vulnerability in libraries/idna_convert/example.php in Joomla! 3.1.5 allows remote attackers to inject arbitrary web script or HTML via the lang parameter. CWE-79
Cross-site Scripting
CVE-2013-5583 2024-11-21 10:57 2013-12-29 Show GitHub Exploit DB Packet Storm
297446 - ibm security_access_manager_for_enterprise_single_sign-on The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a d… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5420 2024-11-21 10:57 2013-12-24 Show GitHub Exploit DB Packet Storm
297447 - ibm security_access_manager_for_enterprise_single_sign-on Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote attackers to inject arbitrary web s… CWE-79
Cross-site Scripting
CVE-2013-5421 2024-11-21 10:57 2013-12-23 Show GitHub Exploit DB Packet Storm
297448 - ibm sterling_b2b_integrator
sterling_file_gateway
IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not invalidate a session upon a logout action, which allows remote attackers to bypass authentication by leveraging an unattended work… CWE-287
Improper Authentication
CVE-2013-5413 2024-11-21 10:57 2013-12-21 Show GitHub Exploit DB Packet Storm
297449 - ibm sterling_b2b_integrator
sterling_file_gateway
IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote attackers to inject links and trigger unintended navigation or actions via unspecified vectors. CWE-20
 Improper Input Validation 
CVE-2013-5411 2024-11-21 10:57 2013-12-21 Show GitHub Exploit DB Packet Storm
297450 - ibm sterling_b2b_integrator
sterling_file_gateway
Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2013-5409 2024-11-21 10:57 2013-12-21 Show GitHub Exploit DB Packet Storm