Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216081	5	警告	アルバネットワークス株式会社	-	Aruba Networks ClearPass におけるファイル名の妥当性を決定される脆弱性	CWE-200 情報漏えい	CVE-2014-6622	2014-11-20 16:51	2014-10-28	Show	GitHub Exploit DB Packet Storm

216082	5	警告	アルバネットワークス株式会社	-	Aruba Networks ClearPass における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-6621	2014-11-20 16:50	2014-10-28	Show	GitHub Exploit DB Packet Storm

216083	10	危険	アルバネットワークス株式会社	-	Aruba Networks ClearPass における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2014-5342	2014-11-20 16:50	2014-10-28	Show	GitHub Exploit DB Packet Storm

216084	4.3	警告	Artica Soluciones Tecnologicas.	-	Pandora FMS のページ可視化エージェントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8629	2014-11-20 16:03	2014-11-17	Show	GitHub Exploit DB Packet Storm

216085	4.3	警告	Atlas Systems	-	Atlas Systems Aeon におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7290	2014-11-20 16:03	2014-10-28	Show	GitHub Exploit DB Packet Storm

216086	6.8	警告	シスコシステムズ	-	Cisco Unified Computing System の Cisco Integrated Management Controller の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-7996	2014-11-20 15:32	2014-11-18	Show	GitHub Exploit DB Packet Storm

216087	9	危険	SAP	-	SAP Governance, Risk, and Compliance における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-3678	2014-11-20 15:26	2013-04-1	Show	GitHub Exploit DB Packet Storm

216088	5	警告	Google	-	Android 上で稼動する Google Chrome におけるアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2014-7905	2014-11-20 15:13	2014-11-18	Show	GitHub Exploit DB Packet Storm

216089	7.5	危険	Google	-	Google Chrome で使用される PDFium の OpenJPEG におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-7903	2014-11-20 15:13	2014-11-18	Show	GitHub Exploit DB Packet Storm

216090	7.5	危険	Google	-	Google Chrome で使用される PDFium におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-7902	2014-11-20 15:12	2014-11-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293091	-	pidgin	pidgin	Buffer overflow in http.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.7 allows remote servers to execute arbitrary code via a long HTTP header.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0272	2024-11-21 10:47	2013-02-17	Show	GitHub Exploit DB Packet Storm

293092	-	pidgin	pidgin	The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted (1) mxit or (2) mxit/imagestrips pathname.	NVD-CWE-noinfo	CVE-2013-0271	2024-11-21 10:47	2013-02-17	Show	GitHub Exploit DB Packet Storm

293093	-	schneider-electric	accutech_manager	Heap-based buffer overflow in RFManagerService.exe in Schneider Electric Accutech Manager 2.00.1 and earlier allows remote attackers to execute arbitrary code via a crafted HTTP request.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0658	2024-11-21 10:47	2013-02-15	Show	GitHub Exploit DB Packet Storm

293094	-	adobe	shockwave_player	Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0636	2024-11-21 10:47	2013-02-14	Show	GitHub Exploit DB Packet Storm

293095	-	adobe	shockwave_player	Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0635	2024-11-21 10:47	2013-02-14	Show	GitHub Exploit DB Packet Storm

293096	-	openstack canonical	essex folsom ubuntu_linux	The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_de…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0208	2024-11-21 10:47	2013-02-14	Show	GitHub Exploit DB Packet Storm

293097	-	rubyonrails	ruby_on_rails rails	ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +seria…	NVD-CWE-noinfo	CVE-2013-0277	2024-11-21 10:47	2013-02-13	Show	GitHub Exploit DB Packet Storm

293098	-	rubyonrails	rails	ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and 3.2.x before 3.2.12 allows remote attackers to bypass the attr_protected protection mechanism and modify protected model attribut…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0276	2024-11-21 10:47	2013-02-13	Show	GitHub Exploit DB Packet Storm

293099	-	rubygems	json_gem	The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service (resource consumption) or bypass the mass assignment protection mec…	CWE-20 Improper Input Validation	CVE-2013-0269	2024-11-21 10:47	2013-02-13	Show	GitHub Exploit DB Packet Storm

293100	-	bitbucket	xnbd	The redirect_stderr function in xnbd_common.c in xnbd-server and xndb-wrapper in xNBD 0.1.0 allow local users to overwrite arbitrary files via a symlink attack on /tmp/xnbd.log.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0265	2024-11-21 10:47	2013-02-13	Show	GitHub Exploit DB Packet Storm