Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
214651	4.3	警告	シトリックス・システムズ	-	Citrix NetScaler の Nitro API におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2839	2015-04-7 13:59	2015-03-19	Show	GitHub Exploit DB Packet Storm

214652	6.8	警告	シトリックス・システムズ	-	Citrix NetScaler の Nitro API におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-2838	2015-04-7 13:59	2015-03-19	Show	GitHub Exploit DB Packet Storm

214653	4.4	警告	Ecava	-	Ecava IntegraXor SCADA Server における権限を取得される脆弱性	CWE-Other その他	CVE-2015-0990	2015-04-7 13:49	2015-03-31	Show	GitHub Exploit DB Packet Storm

214654	6.5	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager の Image Management コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-0684	2015-04-7 12:21	2015-03-31	Show	GitHub Exploit DB Packet Storm

214655	4	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-0683	2015-04-7 12:21	2015-03-31	Show	GitHub Exploit DB Packet Storm

214656	6.5	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-0682	2015-04-7 12:21	2015-03-31	Show	GitHub Exploit DB Packet Storm

214657	7.5	危険	Apache Software Foundation	-	Apache Cassandra のデフォルト設定における任意の Java コードを実行される脆弱性	CWE-Other その他	CVE-2015-0225	2015-04-7 12:18	2014-04-1	Show	GitHub Exploit DB Packet Storm

214658	5	警告	Inductive Automation	-	Inductive Automation Ignition におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2015-0995	2015-04-7 11:53	2015-03-31	Show	GitHub Exploit DB Packet Storm

214659	4	警告	Inductive Automation	-	Inductive Automation Ignition におけるブルートフォース保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2015-0994	2015-04-7 11:53	2015-03-31	Show	GitHub Exploit DB Packet Storm

214660	6.4	警告	Inductive Automation	-	Inductive Automation Ignition におけるアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2015-0993	2015-04-7 11:53	2015-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293661	-	cisco	ios ios_xe	The IP Device Tracking (IPDT) feature in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (IPDT AVL corruption and device reload) via a crafted sequence of ARP packets, aka B…	CWE-20 Improper Input Validation	CVE-2013-6705	2024-11-21 10:59	2013-12-4	Show	GitHub Exploit DB Packet Storm

293662	-	cisco	ios_xe	Cisco IOS XE does not properly manage memory for TFTP UDP flows, which allows remote attackers to cause a denial of service (memory consumption) via TFTP (1) client or (2) server traffic, aka Bug IDs…	CWE-399 Resource Management Errors	CVE-2013-6704	2024-11-21 10:59	2013-12-4	Show	GitHub Exploit DB Packet Storm

293663	-	cisco	ons_15454	The TLS/SSLv3 module on Cisco ONS 15454 controller cards allows remote attackers to cause a denial of service (card reset) via crafted (1) TLS or (2) SSLv3 packets, aka Bug ID CSCuh34787.	CWE-20 Improper Input Validation	CVE-2013-6703	2024-11-21 10:59	2013-12-4	Show	GitHub Exploit DB Packet Storm

293664	-	cisco	prime_collaboration	Multiple cross-site scripting (XSS) vulnerabilities in the web interface in the Assurance component in Cisco Prime Collaboration allow remote attackers to inject arbitrary web script or HTML via unsp…	CWE-79 Cross-site Scripting	CVE-2013-6690	2024-11-21 10:59	2013-12-4	Show	GitHub Exploit DB Packet Storm

293665	-	cisco	adaptive_security_appliance_software adaptive_security_appliance	Cisco Adaptive Security Appliance (ASA) Software does not properly handle errors during the processing of DNS responses, which allows remote attackers to cause a denial of service (device reload) via…	CWE-20 Improper Input Validation	CVE-2013-6696	2024-11-21 10:59	2013-12-3	Show	GitHub Exploit DB Packet Storm

293666	-	cisco	secure_access_control_system	The RBAC implementation in Cisco Secure Access Control System (ACS) does not properly verify privileges for support-bundle downloads, which allows remote authenticated users to obtain sensitive infor…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6695	2024-11-21 10:59	2013-12-3	Show	GitHub Exploit DB Packet Storm

293667	-	ibm	advanced_management_module_firmware	The Advanced Management Module (AMM) with firmware 3.64B, 3.64C, and 3.64G for IBM BladeCenter systems allows remote attackers to discover account names and passwords via use of an unspecified interf…	CWE-310 Cryptographic Issues	CVE-2013-6718	2024-11-21 10:59	2013-12-1	Show	GitHub Exploit DB Packet Storm

293668	-	satechi	smart_travel_router	The web interface on the Satechi travel router 1.5, when Wi-Fi is used for WAN access, exposes the console without authentication on the WAN IP address regardless of the "Web Management via WAN" sett…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6918	2024-11-21 10:59	2013-11-30	Show	GitHub Exploit DB Packet Storm

293669	-	codeaurora	android-msm	The genlock_dev_ioctl function in genlock.c in the Genlock driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does…	CWE-399 Resource Management Errors	CVE-2013-6392	2024-11-21 10:59	2013-11-30	Show	GitHub Exploit DB Packet Storm

293670	-	microsoft	enhanced_mitigation_experience_toolkit	Microsoft Enhanced Mitigation Experience Toolkit (EMET) before 4.0 uses predictable addresses for hooked functions, which makes it easier for context-dependent attackers to defeat the ASLR protection…	CWE-200 Information Exposure	CVE-2013-6791	2024-11-21 10:59	2013-11-30	Show	GitHub Exploit DB Packet Storm