Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216701 7.5 危険 IBM - 複数の IBM Storwize デバイスおよび SAN ボリューム・コントローラーにおける管理者のスーパーユーザパスワードをデフォルト値にリセットされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-4811 2014-09-16 14:51 2014-06-11 Show GitHub Exploit DB Packet Storm
216702 4 警告 IBM - IBM WebSphere Portal におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-4792 2014-09-16 14:51 2014-09-15 Show GitHub Exploit DB Packet Storm
216703 3.5 注意 IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4762 2014-09-16 14:48 2014-09-15 Show GitHub Exploit DB Packet Storm
216704 5 警告 Ecava - Ecava IntegraXor SCADA サーバにおけるフルパス名を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-2377 2014-09-16 14:35 2014-09-11 Show GitHub Exploit DB Packet Storm
216705 7.5 危険 Ecava - Ecava IntegraXor SCADA サーバにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2376 2014-09-16 14:34 2014-09-11 Show GitHub Exploit DB Packet Storm
216706 9 危険 Ecava - Ecava IntegraXor SCADA サーバにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2014-2375 2014-09-16 14:34 2014-09-11 Show GitHub Exploit DB Packet Storm
216707 4.3 警告 Avolve Software - Avolve Software ProjectDox におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5129 2014-09-16 11:07 2014-09-3 Show GitHub Exploit DB Packet Storm
216708 7.5 危険 PhpWiki - PhpWiki の Ploticus モジュールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-5519 2014-09-16 09:55 2014-08-27 Show GitHub Exploit DB Packet Storm
216709 4.3 警告 Adiscon - Adiscon LogAnalyzer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6070 2014-09-12 19:08 2014-09-2 Show GitHub Exploit DB Packet Storm
216710 7.5 危険 Plogger Project - Plogger の plog-admin/plog-upload.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-2223 2014-09-12 19:04 2014-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291951 - mozilla
opensuse
redhat
debian
canonical 		thunderbird_esr
thunderbird
seamonkey
firefox
opensuse
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_aus
enterprise_linux_e… 		Use-after-free vulnerability in the nsOverflowContinuationTracker::Finish function in Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x befo… CWE-416
 Use After Free 		CVE-2013-0780 2024-11-21 10:48 2013-02-20 Show GitHub Exploit DB Packet Storm
291952 - mozilla
opensuse
redhat
debian
canonical 		thunderbird_esr
thunderbird
seamonkey
firefox
opensuse
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_aus
enterprise_linux_e… 		Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 allow man-in-the-middle attackers to spoof the ad… CWE-295
Improper Certificate Validation  		CVE-2013-0776 2024-11-21 10:48 2013-02-20 Show GitHub Exploit DB Packet Storm
291953 - mozilla
opensuse
canonical 		thunderbird_esr
thunderbird
seamonkey
firefox
opensuse
ubuntu_linux 		Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 do not prevent JavaScript workers from reading th… NVD-CWE-noinfo
CVE-2013-0774 2024-11-21 10:48 2013-02-20 Show GitHub Exploit DB Packet Storm
291954 - mozilla
opensuse
debian
canonical 		thunderbird_esr
thunderbird
seamonkey
firefox
opensuse
debian_linux
ubuntu_linux 		The Chrome Object Wrapper (COW) and System Only Wrapper (SOW) implementations in Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17… NVD-CWE-Other
CVE-2013-0773 2024-11-21 10:48 2013-02-20 Show GitHub Exploit DB Packet Storm
291955 - mozilla
opensuse
redhat
canonical 		seamonkey
firefox
opensuse
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_aus
enterprise_linux_eus
ubuntu_linux 		The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to obtain sensitive information from process memory … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0772 2024-11-21 10:48 2013-02-20 Show GitHub Exploit DB Packet Storm
291956 - mozilla
opensuse
canonical 		seamonkey
firefox
opensuse
ubuntu_linux 		Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restricti… NVD-CWE-noinfo
CVE-2013-0765 2024-11-21 10:48 2013-02-20 Show GitHub Exploit DB Packet Storm
291957 - linux linux_kernel Race condition in the ptrace functionality in the Linux kernel before 3.7.5 allows local users to gain privileges via a PTRACE_SETREGS ptrace system call in a crafted application, as demonstrated by … CWE-362
Race Condition 		CVE-2013-0871 2024-11-21 10:48 2013-02-18 Show GitHub Exploit DB Packet Storm
291958 - cisco unified_meetingplace Multiple cross-site request forgery (CSRF) vulnerabilities in the server in Cisco Unified MeetingPlace before 7.1(2.2000) allow remote attackers to hijack the authentication of unspecified victims vi… CWE-352
 Origin Validation Error 		CVE-2013-1128 2024-11-21 10:48 2013-02-15 Show GitHub Exploit DB Packet Storm
291959 - cisco unified_meetingplace Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug I… CWE-79
Cross-site Scripting 		CVE-2013-1123 2024-11-21 10:48 2013-02-15 Show GitHub Exploit DB Packet Storm
291960 - lsi 3ware_disk_manager Directory traversal vulnerability in LSI 3ware Disk Manager (3DM) before 2 allows remote attackers to read arbitrary files via unspecified vectors. CWE-22
Path Traversal 		CVE-2013-0705 2024-11-21 10:48 2013-02-15 Show GitHub Exploit DB Packet Storm