Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216041	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 11 における ASLR 保護メカニズムを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2014-6368	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216042	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-6369	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216043	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 10 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-6373	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216044	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-6374	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216045	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-6375	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216046	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-6376	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216047	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 から 8 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-8966	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216048	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 および 7 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-6366	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216049	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 8 から 11 における XSS フィルタを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2014-6365	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

216050	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-6329	2014-12-12 10:56	2014-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292281	-	wppa.opajaap	wp-photo-album-plus	Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in the WP Photo Album Plus plugin before 5.0.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the comm…	CWE-79 Cross-site Scripting	CVE-2013-3254	2024-11-21 10:53	2013-05-10	Show	GitHub Exploit DB Packet Storm

292282	-	adobe	coldfusion	Unspecified vulnerability in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to read arbitrary files via unknown vectors.	NVD-CWE-noinfo	CVE-2013-3336	2024-11-21 10:53	2013-05-9	Show	GitHub Exploit DB Packet Storm

292283	-	juniper	smartpass	Cross-site scripting (XSS) vulnerability in Juniper SmartPass WLAN Security Management before 7.7 MR3 and 8.0 before MR2 allows remote attackers to inject arbitrary web script or HTML via unspecified…	CWE-79 Cross-site Scripting	CVE-2013-3498	2024-11-21 10:53	2013-05-9	Show	GitHub Exploit DB Packet Storm

292284	-	juniper	junos_space junos_space_virtual_appliance junos_space_ja1500_appliance	Juniper Junos Space before 12.3P2.8, as used on the JA1500 appliance and in other contexts, includes a cleartext password in a configuration tab, which makes it easier for physically proximate attack…	CWE-255 Credentials Management	CVE-2013-3497	2024-11-21 10:53	2013-05-9	Show	GitHub Exploit DB Packet Storm

292285	-	gwos	groundwork_monitor	Multiple cross-site request forgery (CSRF) vulnerabilities in the Noma component in GroundWork Monitor Enterprise 6.7.0 allow remote attackers to hijack the authentication of unspecified victims for …	CWE-352 Origin Validation Error	CVE-2013-3513	2024-11-21 10:53	2013-05-8	Show	GitHub Exploit DB Packet Storm

292286	-	gwos	groundwork_monitor	The Cacti component in GroundWork Monitor Enterprise 6.7.0 does not properly perform authorization checks, which allows remote authenticated users to read or modify configuration settings via unspeci…	CWE-20 Improper Input Validation	CVE-2013-3512	2024-11-21 10:53	2013-05-8	Show	GitHub Exploit DB Packet Storm

292287	-	gwos	groundwork_monitor	Open redirect vulnerability in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified …	CWE-20 Improper Input Validation	CVE-2013-3511	2024-11-21 10:53	2013-05-8	Show	GitHub Exploit DB Packet Storm

292288	-	gwos	groundwork_monitor	Multiple SQL injection vulnerabilities in GroundWork Monitor Enterprise 6.7.0 allow remote authenticated users to execute arbitrary SQL commands via (1) nedi/html/System-Export.php, (2) nedi/html/Dev…	CWE-89 SQL Injection	CVE-2013-3510	2024-11-21 10:53	2013-05-8	Show	GitHub Exploit DB Packet Storm

292289	-	gwos	groundwork_monitor	html/System-NeDi.php in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the scan functionality in…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3509	2024-11-21 10:53	2013-05-8	Show	GitHub Exploit DB Packet Storm

292290	-	gwos	groundwork_monitor	html/System-Files.php in the System File Overview feature in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands via vectors invo…	CWE-94 Code Injection	CVE-2013-3508	2024-11-21 10:53	2013-05-8	Show	GitHub Exploit DB Packet Storm