Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 216831 | 7.5 | 危険 | Fabrice Bellard | - | QEMU の hw/net/virtio-net.c の virtio_net_load 関数における整数符号エラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2013-4148 | 2014-11-6 18:32 | 2013-06-12 | Show | GitHub Exploit DB Packet Storm |
| 216832 | 5 | 警告 | SAP | - | SAP NetWeaver で使用される SAP Host Agent におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2014-8592 | 2014-11-6 18:11 | 2014-10-17 | Show | GitHub Exploit DB Packet Storm |
| 216833 | 5 | 警告 | SAP | - | SAP NetWeaver で使用される SAP Internet Communication Manager におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2014-8591 | 2014-11-6 18:10 | 2014-10-17 | Show | GitHub Exploit DB Packet Storm |
| 216834 | 4.3 | 警告 | SAP | - | SAP NetWeaver Application Server Java における XML 外部エンティティの脆弱性 |
CWE-nocwe
CWE以外 |
CVE-2014-8590 | 2014-11-6 18:09 | 2014-10-17 | Show | GitHub Exploit DB Packet Storm |
| 216835 | 5 | 警告 | SAP | - | SAP Network Interface Router における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2014-8589 | 2014-11-6 18:09 | 2014-10-17 | Show | GitHub Exploit DB Packet Storm |
| 216836 | 7.5 | 危険 | SAP | - | SAP HANA の metadata.xsjs における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-8588 | 2014-11-6 18:08 | 2014-10-17 | Show | GitHub Exploit DB Packet Storm |
| 216837 | 7.5 | 危険 | SAP | - | SAP NetWeaver AS ABAP および SAP HANA で使用される SAPCRYPTOLIB などの製品における DSA 署名を偽装される脆弱性 |
CWE-310
暗号の問題 |
CVE-2014-8587 | 2014-11-6 18:08 | 2014-10-15 | Show | GitHub Exploit DB Packet Storm |
| 216838 | 7.5 | 危険 | CodePeople | - | WordPress 用 CP Multi View Event Calendar プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-8586 | 2014-11-6 16:31 | 2014-10-23 | Show | GitHub Exploit DB Packet Storm |
| 216839 | 5 | 警告 | WordPress Download Manager | - | WordPress 用 WordPress Download Manager プラグインにおけるディレクトリトラバーサルの脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2014-8585 | 2014-11-6 16:30 | 2014-10-26 | Show | GitHub Exploit DB Packet Storm |
| 216840 | 4.3 | 警告 | Web-Dorado | - | WordPress 用 Web Dorado Spider Video Player プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-8584 | 2014-11-6 16:29 | 2014-11-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 291241 | 6.1 |
MEDIUM
Network |
sensiolabs fedoraproject |
symfony fedora |
Symfony 2.0.X before 2.0.24, 2.1.X before 2.1.12, 2.2.X before 2.2.5, and 2.3.X before 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the … |
CWE-79
Cross-site Scripting |
CVE-2013-4752 | 2024-11-21 10:56 | 2020-01-3 | Show | GitHub Exploit DB Packet Storm |
| 291242 | 9.8 |
CRITICAL
Network |
o-dyn | collabtive | Collabtive 1.0 has incorrect access control |
CWE-269
Improper Privilege Management |
CVE-2013-5027 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291243 | 7.5 |
HIGH
Network |
vivotek |
ip7160_firmware ip7361_firmware ip8332_firmware |
Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream |
CWE-863
Incorrect Authorization |
CVE-2013-4985 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291244 | 9.8 |
CRITICAL
Network |
avtech | avn801_dvr_firmware | AVTECH AVN801 DVR has a security bypass via the administration login captcha |
CWE-287
Improper Authentication |
CVE-2013-4982 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291245 | 9.8 |
CRITICAL
Network |
hikvision | ds-2cd7153-e_firmware | Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials |
CWE-287
Improper Authentication |
CVE-2013-4976 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291246 | 8.8 |
HIGH
Network |
hikvision | ds-2cd7153-e_firmware | Hikvision DS-2CD7153-E IP Camera has Privilege Escalation |
CWE-269
Improper Privilege Management |
CVE-2013-4975 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291247 | 5.3 |
MEDIUM
Network |
karotz | api | Karotz API 12.07.19.00: Session Token Information Disclosure |
CWE-200
Information Exposure |
CVE-2013-4868 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291248 | 6.3 |
MEDIUM
Physics |
ea | karotz_smart_rabbit_firmware | Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking |
CWE-269
Improper Privilege Management |
CVE-2013-4867 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291249 | 8.1 |
HIGH
Network |
insteon | hub_firmware | INSTEON Hub 2242-222 lacks Web and API authentication |
CWE-276
Incorrect Default Permissions |
CVE-2013-4859 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291250 | 8.8 |
HIGH
Network |
reviewboard | reviewboard | ReviewBoard 1.6.17 allows code execution by attaching PHP scripts to review request |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2013-4796 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |