Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215471	4.3	警告	MODX	-	MODX Revolution の manager/assets/fileapi/FileAPI.flash.image.swf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8992	2014-12-24 16:37	2014-11-19	Show	GitHub Exploit DB Packet Storm

215472	7.2	危険	シマンテック	-	Windows XP および Server 2003 上で稼動する Symantec Deployment Solution の AClient におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-7286	2014-12-24 16:36	2014-12-19	Show	GitHub Exploit DB Packet Storm

215473	7.5	危険	The PHP Group	-	PHP の ext/standard/var_unserializer.re の process_nested_data 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2014-8142	2014-12-24 16:30	2014-12-18	Show	GitHub Exploit DB Packet Storm

215474	5	警告	c-icap project	-	c-icap の request.c の parse_request 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-7401	2014-12-24 16:30	2013-10-2	Show	GitHub Exploit DB Packet Storm

215475	4	警告	Novell	-	Novell eDirectory の iMonitor の nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-5213	2014-12-24 16:22	2014-12-18	Show	GitHub Exploit DB Packet Storm

215476	4.3	警告	Novell	-	Novell eDirectory の iMonitor の nds/search/data におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5212	2014-12-24 16:21	2014-12-18	Show	GitHub Exploit DB Packet Storm

215477	-	-	Besttoolbars	-	AppsGeyser で作成される Android アプリケーションに SSL 証明書の検証不備の脆弱性が作り込まれる問題	CWE-Other その他	-	2014-12-24 15:51	2014-12-19	Show	GitHub Exploit DB Packet Storm

215478	4	警告	Puppet	-	Puppet Enterprise におけるライセンスおよび証明書の署名リクエスト情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-9355	2014-12-24 14:43	2014-12-16	Show	GitHub Exploit DB Packet Storm

215479	9	危険	Innominate Security Technologies AG	-	Innominate mGuard のファームウェアにおける root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-9193	2014-12-24 14:40	2014-12-17	Show	GitHub Exploit DB Packet Storm

215480	6.8	警告	twitterDash project	-	WordPress 用 twitterDash プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9368	2014-12-24 14:37	2014-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294391	-	ovislink	airlive_wl2600cam	Directory traversal vulnerability in cgi-bin/admin/fileread in AirLive WL2600CAM and possibly other camera models allows remote attackers to read arbitrary files via a .. (dot dot) in the READ.filePa…	CWE-22 Path Traversal	CVE-2013-3541	2024-11-21 10:53	2013-10-5	Show	GitHub Exploit DB Packet Storm

294392	-	ovislink	airlive_od-2025hd airlive_poe100hd airlive_od-2060hd airlive_poe250hd airlive_poe200hd airlive_poe2600hd	Cross-site request forgery (CSRF) vulnerability in cgi-bin/admin/usrgrp.cgi in AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models allows…	CWE-352 Origin Validation Error	CVE-2013-3540	2024-11-21 10:53	2013-10-5	Show	GitHub Exploit DB Packet Storm

294393	-	corel	pdf_fusion	Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a director…	NVD-CWE-Other	CVE-2013-3248	2024-11-21 10:53	2013-10-4	Show	GitHub Exploit DB Packet Storm

294394	-	baramundi	management_suite	Baramundi Management Suite 7.5 through 8.9 uses cleartext for (1) client-server communication and (2) data storage, which allows remote attackers to obtain sensitive information by sniffing the netwo…	CWE-310 Cryptographic Issues	CVE-2013-3593	2024-11-21 10:53	2013-10-3	Show	GitHub Exploit DB Packet Storm

294395	-	sony ovislink	snc_dh280 snc_dh140t snc_dh140 snc_dh180 snc_ch240 snc_ch180 snc_ch280 snc_dh240 snc_dh240t snc_ch140 airlive_wl2600cam	Cross-site request forgery (CSRF) vulnerability in the command/user.cgi in Sony SNC CH140, SNC CH180, SNC CH240, SNC CH280, SNC DH140, SNC DH140T, SNC DH180, SNC DH240, SNC DH240T, SNC DH280, and pos…	CWE-352 Origin Validation Error	CVE-2013-3539	2024-11-21 10:53	2013-10-2	Show	GitHub Exploit DB Packet Storm

294396	-	emc	vplex_geo vplex_metro vplex_local geosynchrony	EMC VPLEX before VPLEX GeoSynchrony 5.2 SP1 uses cleartext for storage of the LDAP/AD bind password, which allows local users to obtain sensitive information by reading the management-server configur…	CWE-255 Credentials Management	CVE-2013-3278	2024-11-21 10:53	2013-10-1	Show	GitHub Exploit DB Packet Storm

294397	-	cisco	video_surveillance_operations_manager	The administrative web interface in Cisco Video Surveillance Operations Manager does not properly perform authentication, which allows remote attackers to watch video feeds via a crafted URL, aka Bug…	CWE-287 Improper Authentication	CVE-2013-3417	2024-11-21 10:53	2013-10-1	Show	GitHub Exploit DB Packet Storm

294398	-	knowledgeview	knowledgeview_editorial_and_management_application	Cross-site scripting (XSS) vulnerability in the KnowledgeView Editorial and Management application allows remote attackers to inject arbitrary web script or HTML via the username parameter.	CWE-79 Cross-site Scripting	CVE-2013-3616	2024-11-21 10:53	2013-09-24	Show	GitHub Exploit DB Packet Storm

294399	-	dell	idrac6_firmware idrac6_monolithic idrac7_firmware idrac7	Cross-site scripting (XSS) vulnerability in the login page in the Administrative Web Interface on Dell iDRAC6 monolithic devices with firmware before 1.96 and iDRAC7 devices with firmware before 1.46…	CWE-79 Cross-site Scripting	CVE-2013-3589	2024-11-21 10:53	2013-09-24	Show	GitHub Exploit DB Packet Storm

294400	-	cisco	prime_central_for_hosted_collaboration_solution_assurance	The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote atta…	CWE-287 Improper Authentication	CVE-2013-3473	2024-11-21 10:53	2013-09-21	Show	GitHub Exploit DB Packet Storm