Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216821 6.8 警告 アップル - Apple OS X の QuickTime におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-4351 2014-10-22 16:47 2014-10-16 Show GitHub Exploit DB Packet Storm
216822 7.5 危険 Drupal - Drupal core の データベース抽象化 API の expandArguments 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3704 2014-10-22 14:54 2014-10-15 Show GitHub Exploit DB Packet Storm
216823 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-4148 2014-10-22 11:29 2014-10-14 Show GitHub Exploit DB Packet Storm
216824 7.8 危険 ジュニパーネットワークス - Juniper Junos におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-6380 2014-10-21 16:10 2014-10-10 Show GitHub Exploit DB Packet Storm
216825 7.5 危険 ジュニパーネットワークス - Juniper Junos における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-6379 2014-10-21 16:09 2014-10-8 Show GitHub Exploit DB Packet Storm
216826 7.8 危険 ジュニパーネットワークス - Juniper Junos におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-6378 2014-10-21 16:09 2014-10-16 Show GitHub Exploit DB Packet Storm
216827 7.8 危険 ジュニパーネットワークス - Juniper JunosE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-6377 2014-10-21 16:08 2014-10-9 Show GitHub Exploit DB Packet Storm
216828 5.5 警告 Huawei - Huawei E5332 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-5328 2014-10-21 15:15 2014-10-10 Show GitHub Exploit DB Packet Storm
216829 5.5 警告 Huawei - Huawei E5332 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-5327 2014-10-21 15:12 2014-10-10 Show GitHub Exploit DB Packet Storm
216830 7.7 危険 Cryoserver FCS (UK) Limited. - Cryoserver における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4867 2014-10-21 15:03 2014-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291441 - isc bind libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2266 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
291442 - pm9 flickwnn The FlickWnn (aka OpenWnn/Flick support) application 2.02 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an applicatio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2300 2024-11-21 10:51 2013-03-28 Show GitHub Exploit DB Packet Storm
291443 - terillion terillion_reviews_plugin Cross-site scripting (XSS) vulnerability in the Terillion Reviews plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ProfileId field. CWE-79
Cross-site Scripting 		CVE-2013-2501 2024-11-21 10:51 2013-03-23 Show GitHub Exploit DB Packet Storm
291444 - siteminder_federation
siteminder_agent_for_sharepoint
siteminder_for_secure_proxy_server 		r6.0
2010
12.0
6.0
12.1
12.5 		CA SiteMinder Federation (FSS) 12.5, 12.0, and r6; Federation (Standalone) 12.1 and 12.0; Agent for SharePoint 2010; and SiteMinder for Secure Proxy Server 6.0, 12.0, and 12.5 does not properly verif… CWE-20
 Improper Input Validation  		CVE-2013-2279 2024-11-21 10:51 2013-03-22 Show GitHub Exploit DB Packet Storm
291445 - puppetlabs
puppet
canonical 		puppet
puppet_enterprise
ubuntu_linux 		The default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2, allows r… NVD-CWE-noinfo
CVE-2013-2275 2024-11-21 10:51 2013-03-21 Show GitHub Exploit DB Packet Storm
291446 - puppetlabs
puppet 		puppet
puppet_enterprise 		Puppet 2.6.x before 2.6.18 and Puppet Enterprise 1.2.x before 1.2.7 allows remote authenticated users to execute arbitrary code on the puppet master, or an agent with puppet kick enabled, via a craft… NVD-CWE-noinfo
CVE-2013-2274 2024-11-21 10:51 2013-03-21 Show GitHub Exploit DB Packet Storm
291447 - citrix access_gateway Unspecified vulnerability in Citrix Access Gateway Standard Edition 5.0.x before 5.0.4.223524 allows remote attackers to access network resources via unknown attack vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2263 2024-11-21 10:51 2013-03-19 Show GitHub Exploit DB Packet Storm
291448 - firebirdsql firebird Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514, and 2.5.1 through 2.5.3 before 26623, on Windows allows remote attackers to execute arbitrary code via a crafted packet to TC… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2492 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm
291449 - tibco spotfire_web_player The Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 does not properly implement access control, which allows remote attackers to… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2373 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm
291450 - tibco spotfire_web_player Cross-site scripting (XSS) vulnerability in the Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to injec… CWE-79
Cross-site Scripting 		CVE-2013-2372 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm