Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215471 5.4 警告 tinytap - Android 用 Math for Kids - Subtraction アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6786 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215472 5.4 警告 subsplash - Android 用 Renny McLean Ministries アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6785 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215473 5.4 警告 fermononrespiri - Android 用 Fermononrespiri Mobile アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6784 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215474 5.4 警告 campustv - Android 用 Campus Link - Campus TV HKUSU アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6783 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215475 5.4 警告 abrahamtours - Android 用 Abraham Tours アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6782 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215476 5.4 警告 mobilizedsolutions - Android 用 Aloha Stadium - Hawaii アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6781 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215477 5.4 警告 meitalk - Android 用 MeiTalk アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6780 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215478 5.4 警告 cart-app - Android 用 Cart App アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6779 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215479 5.4 警告 Group Builder - Android 用 Goat Forum アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6778 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215480 5.4 警告 blueeleph project - Android 用 blueeleph アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6777 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294171 - nashtech easy_php_calendar Multiple cross-site scripting (XSS) vulnerabilities in (1) index.php and (2) datePicker.php in Easy PHP Calendar 6.x and 7.x before 7.0.13 allow remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2013-1955 2024-11-21 10:50 2013-07-20 Show GitHub Exploit DB Packet Storm
294172 - apache activemq Cross-site scripting (XSS) vulnerability in scheduled.jsp in Apache ActiveMQ 5.8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors involving the "cron of a mess… CWE-79
Cross-site Scripting 		CVE-2013-1879 2024-11-21 10:50 2013-07-20 Show GitHub Exploit DB Packet Storm
294173 - chaos_tool_suite_project ctools The Chaos Tool Suite (ctools) module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict node access, which allows remote authenticated users with the "access content" permission to read res… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1925 2024-11-21 10:50 2013-07-17 Show GitHub Exploit DB Packet Storm
294174 - acquia
commons_wikis_project 		commons
commons_wikis 		The Commons Wikis module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1908 2024-11-21 10:50 2013-07-17 Show GitHub Exploit DB Packet Storm
294175 - acquia commons
commons_group 		The Commons Group module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1907 2024-11-21 10:50 2013-07-17 Show GitHub Exploit DB Packet Storm
294176 7.8 HIGH
Local 		linux
redhat
canonical 		linux_kernel
enterprise_linux
enterprise_linux_eus
ubuntu_linux 		The KVM subsystem in the Linux kernel before 3.0 does not check whether kernel addresses are specified during allocation of memory slots for use in a guest's physical address space, which allows loca… CWE-20
 Improper Input Validation  		CVE-2013-1943 2024-11-21 10:50 2013-07-16 Show GitHub Exploit DB Packet Storm
294177 - redhat enterprise_linux A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest O… CWE-362
Race Condition 		CVE-2013-1935 2024-11-21 10:50 2013-07-16 Show GitHub Exploit DB Packet Storm
294178 - ibm
apache 		websphere_application_server
geronimo 		The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server (WAS) Community Edition 3.0.0.3 and other products, does not properly implement the RMI… CWE-94
Code Injection 		CVE-2013-1777 2024-11-21 10:50 2013-07-12 Show GitHub Exploit DB Packet Storm
294179 - apache openjpa The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain cra… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1768 2024-11-21 10:50 2013-07-12 Show GitHub Exploit DB Packet Storm
294180 - apache
redhat
canonical
opensuse 		http_server
jboss_enterprise_application_platform
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux_desktop
enterprise_linux_eus
u… 		mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a M… NVD-CWE-noinfo
CVE-2013-1896 2024-11-21 10:50 2013-07-11 Show GitHub Exploit DB Packet Storm