Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215711 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 および 7 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-6366 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
215712 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 から 11 における XSS フィルタを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-6365 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
215713 9.3 危険 マイクロソフト - Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-6329 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
215714 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-6330 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
215715 5 警告 マイクロソフト - Microsoft Internet Explorer 8 から 11 における XSS フィルタを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-6328 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
215716 9.3 危険 マイクロソフト - Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-6327 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
215717 4.3 警告 YOURLS - YOURLS の管理者パネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8488 2014-12-11 17:51 2014-10-25 Show GitHub Exploit DB Packet Storm
215718 5 警告 Apache Software Foundation - Apache CloudStack における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-7807 2014-12-11 16:44 2014-12-8 Show GitHub Exploit DB Packet Storm
215719 10 危険 DIGICOM - Digicom DG-5514T ADSL ルータのファームウェアにおける管理者権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-8496 2014-12-11 15:36 2014-11-8 Show GitHub Exploit DB Packet Storm
215720 4.3 警告 Scalix.com - Scalix Web Access のメール管理ログインパネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9352 2014-12-11 15:29 2014-10-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293301 - wysija_newsletters_project wysija_newsletters Multiple SQL injection vulnerabilities in the Wysija Newsletters plugin before 2.2.1 for WordPress allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search or (2… CWE-89
SQL Injection 		CVE-2013-1408 2024-11-21 10:49 2014-03-25 Show GitHub Exploit DB Packet Storm
293302 - puppetlabs
puppet 		puppet
puppet_enterprise 		Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) node request management, (2) live management, and (3) user administration components in the console in Puppet Enterprise (PE) bef… CWE-352
 Origin Validation Error 		CVE-2013-1399 2024-11-21 10:49 2014-03-15 Show GitHub Exploit DB Packet Storm
293303 - puppetlabs
puppet 		puppet
puppet_enterprise 		The pe_mcollective module in Puppet Enterprise (PE) before 2.7.1 does not properly restrict access to a catalog of private SSL keys, which allows remote authenticated users to obtain sensitive inform… CWE-310
Cryptographic Issues 		CVE-2013-1398 2024-11-21 10:49 2014-03-15 Show GitHub Exploit DB Packet Storm
293304 - commentluv commentluv Cross-site scripting (XSS) vulnerability in the CommentLuv plugin before 2.92.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the _ajax_nonce parameter to wp-admin/… CWE-79
Cross-site Scripting 		CVE-2013-1409 2024-11-21 10:49 2014-03-4 Show GitHub Exploit DB Packet Storm
293305 - i-doit i-doit Multiple cross-site scripting (XSS) vulnerabilities in synetics i-doit open 0.9.9-7, i-doit pro 1.0 and earlier, and i-doit pro 1.0.2 when the 'sanitize user input' flag is not enabled, allow remote … CWE-79
Cross-site Scripting 		CVE-2013-1413 2024-11-21 10:49 2014-02-12 Show GitHub Exploit DB Packet Storm
293306 - geeklog geeklog Cross-site scripting (XSS) vulnerability in calendar/index.php in the Calendar plugin in Geeklog before 1.8.2sr1 and 2.0.0 before 2.0.0rc2 allows remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting 		CVE-2013-1470 2024-11-21 10:49 2014-02-6 Show GitHub Exploit DB Packet Storm
293307 - glfusion glfusion Multiple cross-site scripting (XSS) vulnerabilities in glFusion before 1.2.2.pl4 allow remote attackers to inject arbitrary web script or HTML via the (1) subject parameter to profiles.php; (2) addre… CWE-79
Cross-site Scripting 		CVE-2013-1466 2024-11-21 10:49 2014-02-6 Show GitHub Exploit DB Packet Storm
293308 - adobe acrobat_reader
acrobat 		Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1376 2024-11-21 10:49 2014-01-31 Show GitHub Exploit DB Packet Storm
293309 - lenovo thinkpad_bluetooth_with_enhanced_data_rate_software Untrusted search path vulnerability in Lenovo Thinkpad Bluetooth with Enhanced Data Rate Software 6.4.0.2900 and earlier allows local users, and possibly remote attackers, to execute arbitrary code a… NVD-CWE-Other
CVE-2013-1361 2024-11-21 10:49 2014-01-22 Show GitHub Exploit DB Packet Storm
293310 - dave_coffin dcraw Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo fil… NVD-CWE-noinfo
CVE-2013-1438 2024-11-21 10:49 2014-01-20 Show GitHub Exploit DB Packet Storm