Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216591	3.5	注意	SAP	-	SAP BusinessObjects における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2014-8311	2014-10-23 19:25	2014-06-10	Show	GitHub Exploit DB Packet Storm

216592	7.1	危険	SAP	-	SAP BusinessObjects の CMS CORBA リスナーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-8310	2014-10-23 19:23	2014-06-10	Show	GitHub Exploit DB Packet Storm

216593	5	警告	SAP	-	SAP BusinessObjects および BusinessObjects XI における有効なユーザ名を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-8309	2014-10-23 19:22	2014-06-10	Show	GitHub Exploit DB Packet Storm

216594	4.3	警告	SAP	-	SAP BusinessObjects の Send to Inbox 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8308	2014-10-23 19:19	2014-06-10	Show	GitHub Exploit DB Packet Storm

216595	2.1	注意	CloudBees	-	CloudBees Jenkins の hudson/util/RemotingDiagnostics.java の doIndex 関数における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2068	2014-10-23 17:33	2014-02-8	Show	GitHub Exploit DB Packet Storm

216596	6.8	警告	CloudBees	-	CloudBees Jenkins における Web セッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2014-2066	2014-10-23 17:33	2014-02-12	Show	GitHub Exploit DB Packet Storm

216597	4.3	警告	CloudBees	-	CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2065	2014-10-23 17:32	2014-02-8	Show	GitHub Exploit DB Packet Storm

216598	5	警告	CloudBees	-	CloudBees Jenkins の hudson/security/HudsonPrivateSecurityRealm.java におけるユーザが存在するかどうかを確認される脆弱性	CWE-200 情報漏えい	CVE-2014-2064	2014-10-23 17:32	2014-02-8	Show	GitHub Exploit DB Packet Storm

216599	7.5	危険	CloudBees	-	CloudBees Jenkins におけるクリックジャッキング攻撃を実行される脆弱性	CWE-noinfo 情報不足	CVE-2014-2063	2014-10-23 17:32	2014-02-12	Show	GitHub Exploit DB Packet Storm

216600	6.5	警告	CloudBees	-	CloudBees Jenkins におけるアクセスを保持される脆弱性	CWE-287 不適切な認証	CVE-2014-2062	2014-10-23 17:31	2014-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291931	9.8	CRITICAL Network	sonicwall	analyzer global_management_system viewpoint universal_management_appliance	An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and Vi…	CWE-287 Improper Authentication	CVE-2013-1359	2024-11-21 10:49	2020-02-12	Show	GitHub Exploit DB Packet Storm

291932	9.8	CRITICAL Network	sonicwall	analyzer global_management_system viewpoint universal_management_appliance	An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and Vi…	CWE-287 Improper Authentication	CVE-2013-1360	2024-11-21 10:49	2020-02-12	Show	GitHub Exploit DB Packet Storm

291933	5.4	MEDIUM Network	orangehrm	orangehrm	Orange HRM 2.7.1 allows XSS via the vacancy name.	CWE-79 Cross-site Scripting	CVE-2013-1353	2024-11-21 10:49	2020-02-10	Show	GitHub Exploit DB Packet Storm

291934	7.5	HIGH Network	cisco	ace_application_control_engine_module_a2	Cisco ACE A2(3.6) allows log retention DoS.	NVD-CWE-Other	CVE-2013-1202	2024-11-21 10:49	2020-02-7	Show	GitHub Exploit DB Packet Storm

291935	5.3	MEDIUM Network	webcalendar_project	webcalendar	webcalendar before 1.2.7 shows the reason for a failed login (e.g., "no such user").	CWE-203 Information Exposure Through Discrepancy	CVE-2013-1422	2024-11-21 10:49	2020-02-4	Show	GitHub Exploit DB Packet Storm

291936	7.5	HIGH Network	veraxsystems	network_management_system	Verax NMS prior to 2.1.0 uses an encryption key that is hardcoded in a JAR archive.	CWE-798 Use of Hard-coded Credentials	CVE-2013-1352	2024-11-21 10:49	2020-01-30	Show	GitHub Exploit DB Packet Storm

291937	5.9	MEDIUM Network	veraxsystems	network_management_system	Verax NMS prior to 2.10 allows authentication via the encrypted password without knowing the cleartext password.	CWE-294 Authentication Bypass by Capture-replay	CVE-2013-1351	2024-11-21 10:49	2020-01-30	Show	GitHub Exploit DB Packet Storm

291938	9.1	CRITICAL Network	veraxsystems	network_management_system	Verax NMS prior to 2.1.0 has multiple security bypass vulnerabilities	CWE-863 Incorrect Authorization	CVE-2013-1350	2024-11-21 10:49	2020-01-30	Show	GitHub Exploit DB Packet Storm

291939	5.3	MEDIUM Network	dlink	dcs-3411_firmware dcs-3430_firmware dcs-5605_firmware dcs-5635_firmware dcs-1100l_firmware dcs-1130l_firmware dcs-1100_firmware dcs-1130_firmware dcs-2102_firmware dcs-2121…	An Authentication vulnerability exists in D-LINK WCS-1100 1.02, TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-7510 1.00, DCS-7410 1.00, DCS-6410 1.00, DCS-5635 1.01, DCS-5605 1.01, DCS-52…	CWE-798 Use of Hard-coded Credentials	CVE-2013-1603	2024-11-21 10:49	2020-01-29	Show	GitHub Exploit DB Packet Storm

291940	7.5	HIGH Network	dlink	dcs-3411_firmware dcs-3430_firmware dcs-5605_firmware dcs-5635_firmware dcs-1100l_firmware dcs-1130l_firmware dcs-1100_firmware dcs-1130_firmware dcs-2102_firmware dcs-2121…	An Information Disclosure vulnerability exists due to insufficient validation of authentication cookies for the RTSP session in D-Link DCS-5635 1.01, DCS-1100L 1.04, DCS-1130L 1.04, DCS-1100 1.03/1.0…	CWE-200 Information Exposure	CVE-2013-1602	2024-11-21 10:49	2020-01-29	Show	GitHub Exploit DB Packet Storm