Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215941	5.4	警告	Magzter Inc.	-	Android 用 Nano Digest アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4890	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215942	5.4	警告	diabetic diet guide project	-	Android 用 Diabetic Diet Guide アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4889	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215943	5.4	警告	tequilagames	-	Android 用 BattleFriends at Sea GOLD アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4888	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215944	5.4	警告	nobexrc	-	Android 用 Joint Radio Blues アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4887	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215945	5.4	警告	closeprotectionworld	-	Android 用 CPWORLD Close Protection World アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4885	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215946	5.4	警告	conrad hotel project	-	Android 用 Conrad Hotel アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4884	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

215947	4.3	警告	LinPHA	-	LinPHA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7265	2014-12-16 17:07	2014-12-12	Show	GitHub Exploit DB Packet Storm

215948	7.5	危険	ULTRAPOP.JP	-	i-HTTPD 付属「ファイルアップロード BBS」において任意のコマンドが実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-7260	2014-12-16 17:06	2014-12-9	Show	GitHub Exploit DB Packet Storm

215949	4.3	警告	ULTRAPOP.JP	-	i-HTTPD におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7261	2014-12-16 17:05	2014-12-9	Show	GitHub Exploit DB Packet Storm

215950	4.3	警告	FreeBSD	-	BSD 系 OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-7250	2014-12-16 17:04	2014-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292871	-	sophos	web_appliance_firmware web_appliance	Directory traversal vulnerability in patience.cgi in Sophos Web Appliance before 3.7.8.2 allows remote attackers to read arbitrary files via the id parameter.	CWE-22 Path Traversal	CVE-2013-2641	2024-11-21 10:52	2014-03-19	Show	GitHub Exploit DB Packet Storm

292872	-	aspen	aspen	Directory traversal vulnerability in Aspen before 0.22 allows remote attackers to read arbitrary files via a .. (dot dot) to the default URI.	CWE-22 Path Traversal	CVE-2013-2619	2024-11-21 10:52	2014-03-19	Show	GitHub Exploit DB Packet Storm

292873	-	brother	mfc-9970cdw_firmware mfc-9970cdw	Multiple cross-site scripting (XSS) vulnerabilities in the Brother MFC-9970CDW printer with firmware L (1.10) allow remote attackers to inject arbitrary web script or HTML via the (1) id or (2) val p…	CWE-79 Cross-site Scripting	CVE-2013-2671	2024-11-21 10:52	2014-03-14	Show	GitHub Exploit DB Packet Storm

292874	-	brother	mfc-9970cdw_firmware mfc-9970cdw	Cross-site scripting (XSS) vulnerability in the Brother MFC-9970CDW printer with firmware G (1.03) and L (1.10) allows remote attackers to inject arbitrary web script or HTML via an arbitrary paramet…	CWE-79 Cross-site Scripting	CVE-2013-2670	2024-11-21 10:52	2014-03-14	Show	GitHub Exploit DB Packet Storm

292875	-	umi-cms	umi.cms	Cross-site request forgery (CSRF) vulnerability in Umisoft UMI.CMS before 2.9 build 21905 allows remote attackers to hijack the authentication of administrators for requests that add administrator ac…	CWE-352 Origin Validation Error	CVE-2013-2754	2024-11-21 10:52	2014-03-12	Show	GitHub Exploit DB Packet Storm

292876	-	schneider-electric	powerlogic_scada struxureware_scada_expert_vijeo_citect struxureware_powerscada_expert citectscada	Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 through 7.30SP1, CitectSCADA 7.20 through 7.30SP1, StruxureWare PowerSCADA Expert 7.30 through 7.30SR1, and PowerLogi…	NVD-CWE-Other	CVE-2013-2824	2024-11-21 10:52	2014-02-26	Show	GitHub Exploit DB Packet Storm

292877	-	mitsubishielectric	mc-worx_suite	An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction…	CWE-94 Code Injection	CVE-2013-2817	2024-11-21 10:52	2014-02-24	Show	GitHub Exploit DB Packet Storm

292878	-	matrikonopc	scada_dnp3_opc_server	MatrikonOPC SCADA DNP3 OPC Server 1.2.2.0 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed DNP3 packet.	CWE-20 Improper Input Validation	CVE-2013-2829	2024-11-21 10:52	2014-02-14	Show	GitHub Exploit DB Packet Storm

292879	-	atmail	atmail	Cross-site scripting (XSS) vulnerability in Atmail Webmail Server 6.6.x before 6.6.3 and 7.0.x before 7.0.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.p…	CWE-79 Cross-site Scripting	CVE-2013-2585	2024-11-21 10:52	2014-02-13	Show	GitHub Exploit DB Packet Storm

292880	-	ctera	cloud_storage_os	Cross-site scripting (XSS) vulnerability in CTERA Cloud Storage OS before 3.2.29.0, 3.2.42.0, and earlier allows remote attackers to inject arbitrary web script or HTML via the description in a proje…	CWE-79 Cross-site Scripting	CVE-2013-2639	2024-11-21 10:52	2014-02-12	Show	GitHub Exploit DB Packet Storm