Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215571 6.4 警告 IDrive Inc. - IDrive Online Backup の UniBasic100_EDA1811C.ocx における任意のファイルに書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5290 2015-01-7 12:28 2011-07-6 Show GitHub Exploit DB Packet Storm
215572 6.4 警告 Diego Uscanga - aTube Catcher における任意のファイルに書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5289 2015-01-7 12:25 2011-07-6 Show GitHub Exploit DB Packet Storm
215573 9.3 危険 Threedify inc - ThreeDify Designer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5288 2015-01-7 12:20 2011-07-30 Show GitHub Exploit DB Packet Storm
215574 4.3 警告 Hesk.com - HESK におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5287 2015-01-7 11:33 2011-07-3 Show GitHub Exploit DB Packet Storm
215575 7.5 危険 lukaszwiecek - WordPress 用 Social Slider プラグインの social-slider-2/ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5286 2015-01-7 11:27 2011-07-20 Show GitHub Exploit DB Packet Storm
215576 4.3 警告 BugFree - BugFree におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5285 2015-01-7 11:20 2011-09-21 Show GitHub Exploit DB Packet Storm
215577 2.6 注意 CONTENIDO - Contenido の cms/front_content.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9433 2015-01-7 11:03 2014-12-19 Show GitHub Exploit DB Packet Storm
215578 4.3 警告 s9y - Serendipity の templates/2k11/admin/overview.inc.tpl におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9432 2015-01-7 10:57 2014-12-23 Show GitHub Exploit DB Packet Storm
215579 5 警告 db backup project - WordPress 用 DB Backup プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-9119 2015-01-7 10:52 2014-12-16 Show GitHub Exploit DB Packet Storm
215580 6.8 警告 Smoothwall - Smoothwall におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9431 2015-01-7 10:23 2014-12-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295981 - moodle moodle mod/chat/gui_sockets/index.php in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 does not consider the mod/chat:chat capability before auth… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2242 2024-11-21 10:51 2013-07-29 Show GitHub Exploit DB Packet Storm
295982 - hp loadrunner Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1671. NVD-CWE-noinfo
CVE-2013-2370 2024-11-21 10:51 2013-07-29 Show GitHub Exploit DB Packet Storm
295983 - hp loadrunner Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1670. NVD-CWE-noinfo
CVE-2013-2369 2024-11-21 10:51 2013-07-29 Show GitHub Exploit DB Packet Storm
295984 - hp loadrunner Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to cause a denial of service via unknown vectors, aka ZDI-CAN-1669. NVD-CWE-noinfo
CVE-2013-2368 2024-11-21 10:51 2013-07-29 Show GitHub Exploit DB Packet Storm
295985 - apache http_server mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new ses… NVD-CWE-noinfo
CVE-2013-2249 2024-11-21 10:51 2013-07-24 Show GitHub Exploit DB Packet Storm
295986 - redhat jboss_operations_network
richfaces
jboss_enterprise_web_platform
jboss_enterprise_portal_platform
jboss_enterprise_soa_platform
jboss_web_framework_kit
jboss_enterprise_application_… 		ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Applicatio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2165 2024-11-21 10:51 2013-07-23 Show GitHub Exploit DB Packet Storm
295987 - hp database_and_middleware_automation HP Database and Middleware Automation (DMA) 10.x before 10.10, when SSL is used, allows remote attackers to obtain sensitive information via unspecified vectors. NVD-CWE-noinfo
CVE-2013-2365 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295988 - hp system_management_homepage Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-2364 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295989 - hp system_management_homepage HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-2356. NVD-CWE-noinfo
CVE-2013-2363 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295990 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows local users to cause a denial of service via unknown vectors, aka ZDI-CAN-1676. NVD-CWE-noinfo
CVE-2013-2362 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm