Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216701	7.5	危険	IBM	-	複数の IBM Storwize デバイスおよび SAN ボリューム・コントローラーにおける管理者のスーパーユーザパスワードをデフォルト値にリセットされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-4811	2014-09-16 14:51	2014-06-11	Show	GitHub Exploit DB Packet Storm

216702	4	警告	IBM	-	IBM WebSphere Portal におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-4792	2014-09-16 14:51	2014-09-15	Show	GitHub Exploit DB Packet Storm

216703	3.5	注意	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4762	2014-09-16 14:48	2014-09-15	Show	GitHub Exploit DB Packet Storm

216704	5	警告	Ecava	-	Ecava IntegraXor SCADA サーバにおけるフルパス名を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2377	2014-09-16 14:35	2014-09-11	Show	GitHub Exploit DB Packet Storm

216705	7.5	危険	Ecava	-	Ecava IntegraXor SCADA サーバにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2376	2014-09-16 14:34	2014-09-11	Show	GitHub Exploit DB Packet Storm

216706	9	危険	Ecava	-	Ecava IntegraXor SCADA サーバにおける任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-2375	2014-09-16 14:34	2014-09-11	Show	GitHub Exploit DB Packet Storm

216707	4.3	警告	Avolve Software	-	Avolve Software ProjectDox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5129	2014-09-16 11:07	2014-09-3	Show	GitHub Exploit DB Packet Storm

216708	7.5	危険	PhpWiki	-	PhpWiki の Ploticus モジュールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-5519	2014-09-16 09:55	2014-08-27	Show	GitHub Exploit DB Packet Storm

216709	4.3	警告	Adiscon	-	Adiscon LogAnalyzer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6070	2014-09-12 19:08	2014-09-2	Show	GitHub Exploit DB Packet Storm

216710	7.5	危険	Plogger Project	-	Plogger の plog-admin/plog-upload.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-2223	2014-09-12 19:04	2014-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291941	-	codedesign	artime_japanese_input	The ArtIME Japanese Input application 1.1.2 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesse…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0719	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

291942	-	simeji	simeji	The Simeji application 4.8.1 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local fil…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0718	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

291943	-	mailup	wp-mailup	ajax.functions.php in the MailUp plugin before 1.3.3 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0731	2024-11-21 10:48	2013-03-23	Show	GitHub Exploit DB Packet Storm

291944	-	linux	linux_kernel	The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0914	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

291945	-	canonical	ubuntu_linux	pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1052	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

291946	-	debian canonical	apt advanced_package_tool ubuntu_linux	apt 0.8.16, 0.9.7, and possibly other versions does not properly handle InRelease files, which allows man-in-the-middle attackers to modify packages before installation via unknown vectors, possibly …	CWE-20 Improper Input Validation	CVE-2013-1051	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

291947	-	windriver	vxworks	The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.	CWE-20 Improper Input Validation	CVE-2013-0716	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

291948	-	windriver	vxworks	The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service (CLI session crash) via a crafted command string.	CWE-20 Improper Input Validation	CVE-2013-0715	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

291949	-	windriver	vxworks	IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication r…	CWE-20 Improper Input Validation	CVE-2013-0714	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

291950	-	windriver	vxworks	IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote authenticated users to cause a denial of service (daemon outage) via a crafted pty request.	CWE-20 Improper Input Validation	CVE-2013-0713	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm