Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215781	5.4	警告	avantar	-	Android 用 White & Yellow Pages アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5857	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215782	5.4	警告	communityfactory	-	Android 用 Selfie Camera -Facial Beauty- アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5856	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215783	5.4	警告	cjmall	-	Android 用 CJmall アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5855	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215784	5.4	警告	clearhub	-	Android 用 Windows Live Hotmail PUSH mail アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5854	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215785	5.4	警告	Com2uS USA	-	Android 用 Knights N Squires アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5853	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215786	5.4	警告	Com2uS USA	-	Android 用 Kakao アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5852	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215787	5.4	警告	darksummoner	-	Android 用 Dark Summoner アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5851	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215788	5.4	警告	kaavefali	-	Android 用 Kaave Fali アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5850	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215789	5.4	警告	Disny	-	Android 用 Maleficent Free Fall アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5849	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215790	5.4	警告	mobiledeluxe	-	Android 用 Big Win Slots - Slot Machines アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5847	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295741	-	ibm	websphere_datapower_xc10_appliance_firmware websphere_datapower_xc10_appliance websphere_datapower_service_gateway_xg45_virtual_edition_firmware websphere_datapower_service_gateway_xg45_virt…	Cross-site scripting (XSS) vulnerability in the echo functionality on IBM WebSphere DataPower SOA appliances with firmware 3.8.2, 4.0, 4.0.1, 4.0.2, and 5.0.0 allows remote attackers to inject arbitr…	CWE-79 Cross-site Scripting	CVE-2013-0499	2024-11-21 10:47	2013-05-29	Show	GitHub Exploit DB Packet Storm

295742	-	ibm	tivoli_monitoring	Cross-site scripting (XSS) vulnerability in the Tivoli Enterprise Portal browser client in IBM Tivoli Monitoring 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP02 all…	CWE-79 Cross-site Scripting	CVE-2013-0576	2024-11-21 10:47	2013-05-29	Show	GitHub Exploit DB Packet Storm

295743	-	ibm	sterling_selling_and_fulfillment_foundation sterling_multi-channel_fulfillment_solution	The Sterling Order Management APIs in IBM Sterling Multi-Channel Fulfillment Solution 8.0 before HF128 and IBM Sterling Selling and Fulfillment Foundation 8.5 before HF93, 9.0 before HF73, 9.1.0 befo…	CWE-287 Improper Authentication	CVE-2013-0578	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

295744	-	ibm	sterling_secure_proxy	IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 allows remote authenticated users to obtain sensitive Java stac…	CWE-20 Improper Input Validation	CVE-2013-0520	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

295745	-	ibm	sterling_secure_proxy	IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 provides web-server version data in (1) an unspecified page tit…	CWE-200 Information Exposure	CVE-2013-0519	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

295746	-	ibm	sterling_secure_proxy	IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 does not refuse to be rendered in different-origin frames, whic…	CWE-20 Improper Input Validation	CVE-2013-0518	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

295747	-	ibm	websphere_datapower_xc10_appliance_firmware websphere_datapower_xc10_appliance	Unspecified vulnerability on IBM WebSphere DataPower XC10 Appliance devices 2.0 and 2.1 through 2.1 FP3 allows remote attackers to bypass authentication and perform administrative actions via unknown…	NVD-CWE-noinfo	CVE-2013-0600	2024-11-21 10:47	2013-05-9	Show	GitHub Exploit DB Packet Storm

295748	-	ibm	tivoli_federated_identity_manager tivoli_federated_identity_manager_business_gateway	Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.12, 6.2.1 before 6.2.1.5, and 6.2.2 before 6.2.2.4 and Tivoli Federated Identity Manager Bu…	CWE-79 Cross-site Scripting	CVE-2013-0582	2024-11-21 10:47	2013-05-3	Show	GitHub Exploit DB Packet Storm

295749	-	ibm	classic_meeting_server lotus_sametime	Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allow remote authenticated users to inject arbitrary web script or HTML via u…	CWE-79 Cross-site Scripting	CVE-2013-0535	2024-11-21 10:47	2013-05-3	Show	GitHub Exploit DB Packet Storm

295750	-	djangoproject canonical	django ubuntu_linux	The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of ser…	CWE-189 Numeric Errors	CVE-2013-0306	2024-11-21 10:47	2013-05-2	Show	GitHub Exploit DB Packet Storm