Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
216351 4.3 警告 Elasticsearch - Elasticsearch におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2015-3337 2015-05-7 16:59 2015-04-27 Show GitHub Exploit DB Packet Storm
216352 6.8 警告 デル - Dell SonicWALL Secure Remote Access 製品のファームウェアのユーザポータルにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2015-2248 2015-05-7 16:58 2015-04-28 Show GitHub Exploit DB Packet Storm
216353 5 警告 坂井弘亮 - EasyCTF におけるセッション管理不備の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-0914 2015-05-7 16:01 2015-05-1 Show GitHub Exploit DB Packet Storm
216354 3.5 注意 坂井弘亮 - EasyCTF におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-0913 2015-05-7 16:01 2015-05-1 Show GitHub Exploit DB Packet Storm
216355 6.5 警告 坂井弘亮 - EasyCTF における任意のファイルを作成される脆弱性 CWE-22
パス・トラバーサル
CVE-2015-0912 2015-05-7 15:59 2015-05-1 Show GitHub Exploit DB Packet Storm
216356 10 危険 Realtek Semiconductor Corp
D-Link Systems, Inc.
- Realtek SDK の miniigd SOAP サービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-8361 2015-05-7 15:59 2014-04-30 Show GitHub Exploit DB Packet Storm
216357 9.3 危険 AlienVault - AlienVault Unified Security Management の Framework Daemon における任意の Python コードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2015-3446 2015-05-7 15:04 2015-01-9 Show GitHub Exploit DB Packet Storm
216358 2.1 注意 レッドハット - Red Hat Enterprise Virtualization Manager における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-0257 2015-05-7 14:25 2015-04-28 Show GitHub Exploit DB Packet Storm
216359 6.8 警告 レッドハット - Red Hat Enterprise Virtualization Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-0237 2015-05-7 14:23 2015-04-28 Show GitHub Exploit DB Packet Storm
216360 10 危険 サムスン - Samsung Security Manager における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-3435 2015-05-7 14:23 2015-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296531 - ffmpeg ffmpeg Multiple integer signedness errors in libavcodec/dsputil.c in FFmpeg before 2.1 allow remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other imp… CWE-189
Numeric Errors
CVE-2013-7010 2024-11-21 11:00 2013-12-10 Show GitHub Exploit DB Packet Storm
296532 - ffmpeg ffmpeg The rpza_decode_stream function in libavcodec/rpza.c in FFmpeg before 2.1 does not properly maintain a pointer to pixel data, which allows remote attackers to cause a denial of service (out-of-bounds… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-7009 2024-11-21 11:00 2013-12-10 Show GitHub Exploit DB Packet Storm
296533 - ffmpeg ffmpeg The decode_slice_header function in libavcodec/h264.c in FFmpeg before 2.1 incorrectly relies on a certain droppable field, which allows remote attackers to cause a denial of service (deadlock) or po… NVD-CWE-Other
CVE-2013-7008 2024-11-21 11:00 2013-12-10 Show GitHub Exploit DB Packet Storm
296534 - nowsms now_sms_\&_mms_gateway The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway before 2013.11.15 allows remote attackers to cause a denial of service via a malformed MM1 message that is routed to a (1) MM4 o… CWE-20
 Improper Input Validation 
CVE-2013-7001 2024-11-21 11:00 2013-12-8 Show GitHub Exploit DB Packet Storm
296535 - nowsms now_sms_\&_mms_gateway The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway 2013.09.26 allows remote attackers to cause a denial of service via a malformed message to a MM4 connection. CWE-20
 Improper Input Validation 
CVE-2013-7000 2024-11-21 11:00 2013-12-8 Show GitHub Exploit DB Packet Storm
296536 - microsoft windows_server_2008 The IsHandleEntrySecure function in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 SP2 does not properly validate the tagPROCESSINFO pW32Job field, which allows local users to… NVD-CWE-Other
CVE-2013-6999 2024-11-21 11:00 2013-12-7 Show GitHub Exploit DB Packet Storm
296537 - osehra vista The M2M Broker in OSEHRA VistA, as distributed before September 30, 2013, allows attackers to bypass authentication and authorization to perform doctor-only actions and read or modify patient records… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-6945 2024-11-21 11:00 2013-12-5 Show GitHub Exploit DB Packet Storm
296538 - mybb ajax_forum_stat Multiple SQL injection vulnerabilities in ajaxfs.php in the Ajax forum stat (Ajaxfs) Plugin 2.0 for MyBB (aka MyBulletinBoard) allow remote attackers to execute arbitrary SQL commands via the (1) too… CWE-89
SQL Injection
CVE-2013-6936 2024-11-21 11:00 2013-12-5 Show GitHub Exploit DB Packet Storm
296539 - videocharge watermark_master Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote attackers to execute arbitrary code via a long string in the SourcePath value in a .wcf file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-6935 2024-11-21 11:00 2013-12-5 Show GitHub Exploit DB Packet Storm
296540 - videocharge watermark_master Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote attackers to execute arbitrary code via a long string in the name attribute of the cols element in a .wstyle file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-6937 2024-11-21 11:00 2013-12-5 Show GitHub Exploit DB Packet Storm