Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216021 4.3 警告 Star Host Design, LLC - phpMoneyBooks の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1669 2014-11-19 12:20 2012-03-16 Show GitHub Exploit DB Packet Storm
216022 6.8 警告 Php Scriptlerim. - Php Scriptlerim Who's Who スクリプトにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-8953 2014-11-19 12:13 2014-10-30 Show GitHub Exploit DB Packet Storm
216023 4.3 警告 Meg Nicholas - WordPress 用 Contact Form Clean and Simple プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8955 2014-11-19 11:37 2014-11-4 Show GitHub Exploit DB Packet Storm
216024 6 警告 iMember360 - WordPress 用 iMember360 プラグインにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-8949 2014-11-19 11:37 2014-04-24 Show GitHub Exploit DB Packet Storm
216025 4.3 警告 Pricop - phpSound におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8954 2014-11-19 11:25 2014-08-10 Show GitHub Exploit DB Packet Storm
216026 4.3 警告 phpMemcachedAdmin project - phpMemcachedAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8732 2014-11-19 11:15 2014-11-12 Show GitHub Exploit DB Packet Storm
216027 6.2 警告 F5 Networks - F5 BIG-IP におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-8727 2014-11-19 10:58 2014-09-16 Show GitHub Exploit DB Packet Storm
216028 7.5 危険 PHP-Fusion - PHP-Fusion における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8596 2014-11-19 10:35 2014-08-6 Show GitHub Exploit DB Packet Storm
216029 6.5 警告 Zoho Corporation - ManageEngine Password Manager Pro および Password Manager Pro Managed Service Providers における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8499 2014-11-18 19:25 2014-11-8 Show GitHub Exploit DB Packet Storm
216030 6.5 警告 Zoho Corporation - ManageEngine Password Manager Pro および Password Manager Pro Managed Service Providers の BulkEditSearchResult.cc における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8498 2014-11-18 19:24 2014-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292651 - cisco wireless_lan_controller_software
wireless_lan_controller 		The mDNS snooping functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.4.1.54 and earlier does not properly manage buffers, which allows remote authenticated users to cause a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1141 2024-11-21 10:48 2013-03-1 Show GitHub Exploit DB Packet Storm
292652 - cisco network_admission_control The Cisco Network Admission Control (NAC) agent on Mac OS X does not verify the X.509 certificate of an Identity Services Engine (ISE) server during an SSL session, which allows man-in-the-middle att… CWE-310
Cryptographic Issues 		CVE-2013-1124 2024-11-21 10:48 2013-03-1 Show GitHub Exploit DB Packet Storm
292653 - cisco unified_presence_server Cisco Unified Presence Server (CUPS) 8.6, 9.0, and 9.1 before 9.1.1 allows remote attackers to cause a denial of service (CPU consumption) via crafted packets to the SIP TCP port, aka Bug ID CSCua899… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1137 2024-11-21 10:48 2013-02-28 Show GitHub Exploit DB Packet Storm
292654 - cisco prime_central_for_hosted_collaboration_solution_assurance Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.0 allows remote attackers to cause a denial of service (CPU consumption and monitoring outage) via malformed TLS messag… CWE-20
 Improper Input Validation  		CVE-2013-1135 2024-11-21 10:48 2013-02-28 Show GitHub Exploit DB Packet Storm
292655 - cisco unified_communications_manager The Location Bandwidth Manager (LBM) Intracluster-communication feature in Cisco Unified Communications Manager (CUCM) 9.x before 9.1(1) does not require authentication from the remote LBM Hub node, … CWE-287
Improper Authentication 		CVE-2013-1134 2024-11-21 10:48 2013-02-28 Show GitHub Exploit DB Packet Storm
292656 - cisco unified_communications_manager Cisco Unified Communications Manager (CUCM) 8.6 before 8.6(2a)su2, 8.6 BE3k before 8.6(4) BE3k, and 9.x before 9.0(1) allows remote attackers to cause a denial of service (CPU consumption and GUI and… CWE-20
 Improper Input Validation  		CVE-2013-1133 2024-11-21 10:48 2013-02-28 Show GitHub Exploit DB Packet Storm
292657 - cisco cloud_portal The nsAPI interface in Cisco Cloud Portal 9.1 SP1 and SP2, and 9.3 through 9.3.2, does not properly check privileges, which allows remote authenticated users to obtain sensitive information via a cra… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1139 2024-11-21 10:48 2013-02-27 Show GitHub Exploit DB Packet Storm
292658 - cisco adaptive_security_appliance_software
adaptive_security_appliance 		The NAT process on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (connections-table memory consumption) via crafted packets, aka Bug ID CSCue46… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1138 2024-11-21 10:48 2013-02-26 Show GitHub Exploit DB Packet Storm
292659 - mozilla bugzilla The Bugzilla::Search::build_subselect function in Bugzilla 2.x and 3.x before 3.6.13 and 3.7.x and 4.0.x before 4.0.10 generates different error messages for invalid product queries depending on whet… CWE-200
Information Exposure 		CVE-2013-0786 2024-11-21 10:48 2013-02-24 Show GitHub Exploit DB Packet Storm
292660 - mozilla bugzilla Cross-site scripting (XSS) vulnerability in show_bug.cgi in Bugzilla before 3.6.13, 3.7.x and 4.0.x before 4.0.10, 4.1.x and 4.2.x before 4.2.5, and 4.3.x and 4.4.x before 4.4rc2 allows remote attack… CWE-79
Cross-site Scripting 		CVE-2013-0785 2024-11-21 10:48 2013-02-24 Show GitHub Exploit DB Packet Storm