Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216961	6.8	警告	アップル	-	複数の Apple 製品の CoreGraphics における整数オーバーフロー脆弱性	CWE-189 数値処理の問題	CVE-2014-4377	2014-09-22 14:51	2014-09-17	Show	GitHub Exploit DB Packet Storm

216962	7.5	危険	アップル	-	Apple OS X Server の CoreCollaboration の Wiki Server における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-4424	2014-09-22 14:48	2014-09-17	Show	GitHub Exploit DB Packet Storm

216963	4	警告	株式会社ゆこゆこ	-	Android 版アプリ「ゆこゆこ」における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-5323	2014-09-22 12:04	2014-09-22	Show	GitHub Exploit DB Packet Storm

216964	5	警告	アップル	-	Apple iOS および Mac OS X の Foundation 内の NSXMLParser における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-4374	2014-09-19 18:49	2014-09-17	Show	GitHub Exploit DB Packet Storm

216965	3.6	注意	アップル	-	Apple iOS および Apple TV の syslog サブシステムの syslogd における任意のファイルのパーミッションを変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2014-4372	2014-09-19 18:47	2014-09-17	Show	GitHub Exploit DB Packet Storm

216966	7.8	危険	アップル	-	Apple iOS および Apple TV の IOAcceleratorFamily API 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-4369	2014-09-19 18:34	2014-09-17	Show	GitHub Exploit DB Packet Storm

216967	6.9	警告	アップル	-	Apple iOS の Accessibility サブシステムにおける画面ロックを妨害される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-4368	2014-09-19 18:32	2014-09-17	Show	GitHub Exploit DB Packet Storm

216968	2.1	注意	アップル	-	Apple iOS における意図しない通話を開始される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-4367	2014-09-19 18:31	2014-09-17	Show	GitHub Exploit DB Packet Storm

216969	5	警告	アップル	-	Apple iOS のメールにおける重要な平文情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-4366	2014-09-19 18:31	2014-09-17	Show	GitHub Exploit DB Packet Storm

216970	5	警告	アップル	-	Apple iOS の Safari における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-4363	2014-09-19 18:29	2014-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291521	-	mozilla	bugzilla	Multiple cross-site scripting (XSS) vulnerabilities in editflagtypes.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allow remote att…	CWE-79 Cross-site Scripting	CVE-2013-1742	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291522	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allows remote attackers…	CWE-352 Origin Validation Error	CVE-2013-1734	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291523	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs…	CWE-352 Origin Validation Error	CVE-2013-1733	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291524	-	mozilla	network_security_services	Mozilla Network Security Services (NSS) before 3.15.2 does not ensure that data structures are initialized before read operations, which allows remote attackers to cause a denial of service or possib…	NVD-CWE-noinfo	CVE-2013-1739	2024-11-21 10:50	2013-10-23	Show	GitHub Exploit DB Packet Storm

291525	-	gnome	librsvg	GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML Ext…	CWE-20 Improper Input Validation	CVE-2013-1881	2024-11-21 10:50	2013-10-10	Show	GitHub Exploit DB Packet Storm

291526	-	openstack	python-keystoneclient	The user-password-update command in python-keystoneclient before 0.2.4 accepts the new password in the --password argument, which allows local users to obtain sensitive information by listing the pro…	CWE-200 Information Exposure	CVE-2013-2013	2024-11-21 10:50	2013-10-2	Show	GitHub Exploit DB Packet Storm

291527	-	mongodb redhat	mongodb enterprise_mrg	MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (inv…	CWE-20 Improper Input Validation	CVE-2013-1892	2024-11-21 10:50	2013-10-2	Show	GitHub Exploit DB Packet Storm

291528	-	squid-cache	squid	The strHdrAcptLangGetItem function in errorpage.cc in Squid 3.2.x before 3.2.9 and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a ",…	CWE-20 Improper Input Validation	CVE-2013-1839	2024-11-21 10:50	2013-10-1	Show	GitHub Exploit DB Packet Storm

291529	-	redhat	cloudforms_management_engine	Multiple directory traversal vulnerabilities in the AgentController in Red Hat CloudForms Management Engine 2.0 allow remote attackers to create and overwrite arbitrary files via a .. (dot dot) in th…	CWE-22 Path Traversal	CVE-2013-2068	2024-11-21 10:50	2013-09-29	Show	GitHub Exploit DB Packet Storm

291530	-	redhat	jboss_enterprise_application_platform	PicketBox, as used in Red Hat JBoss Enterprise Application Platform before 6.1.1, allows local users to obtain the admin encryption key by reading the Vault data file.	CWE-310 Cryptographic Issues	CVE-2013-1921	2024-11-21 10:50	2013-09-29	Show	GitHub Exploit DB Packet Storm