Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217121 - - PNP4Nagios - ** 削除 ** PNP4Nagios の share/pnp/application/views/kohana_error_page.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2014-4740 2014-07-11 11:56 2014-04-6 Show GitHub Exploit DB Packet Storm
217122 7.5 危険 Another Awesome Stuff - ZeroCMS の zero_transact_article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4194 2014-07-11 11:33 2014-06-20 Show GitHub Exploit DB Packet Storm
217123 5.8 警告 FoeCMS - FoeCMS の msg.php におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-4851 2014-07-11 11:27 2014-07-4 Show GitHub Exploit DB Packet Storm
217124 4.3 警告 FoeCMS - FoeCMS の msg.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4849 2014-07-11 11:26 2014-07-4 Show GitHub Exploit DB Packet Storm
217125 7.5 危険 FoeCMS - FoeCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4850 2014-07-11 11:25 2014-07-4 Show GitHub Exploit DB Packet Storm
217126 4.3 警告 シスコシステムズ - Cisco Small Business SPA300 および SPA500 シリーズの IP phone の Web ユーザインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3313 2014-07-10 18:21 2014-07-9 Show GitHub Exploit DB Packet Storm
217127 6.9 警告 シスコシステムズ - Cisco Small Business SPA300 および SPA500 phone のデバッグコンソールインターフェースにおける任意の debug シェルコマンドを実行される脆弱性 CWE-287
不適切な認証 		CVE-2014-3312 2014-07-10 18:20 2014-07-9 Show GitHub Exploit DB Packet Storm
217128 5 警告 シスコシステムズ - Cisco IOS および IOS XE の NTP の実装における時刻同期の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3309 2014-07-10 18:19 2014-07-9 Show GitHub Exploit DB Packet Storm
217129 7.8 危険 ネットギア - Netgear GS105PE Prosafe Plus Switch に認証情報がハードコードされている問題 CWE-255
CWE-Other
CVE-2014-2969 2014-07-10 17:10 2014-07-3 Show GitHub Exploit DB Packet Storm
217130 5.1 警告 リムアーツ - Becky! Internet Mail におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-3891 2014-07-10 17:06 2014-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291791 - ibm lotus_domino Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators. CWE-352
 Origin Validation Error 		CVE-2013-0489 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
291792 - ibm lotus_domino Cross-site scripting (XSS) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-0488 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
291793 - ibm lotus_domino The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leveraging knowledge of configuration details, aka SPR KLYH8TNNDN. CWE-287
Improper Authentication 		CVE-2013-0487 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
291794 - ibm lotus_domino Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY. CWE-399
 Resource Management Errors 		CVE-2013-0486 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
291795 - ibm lotus_inotes Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX. CWE-79
Cross-site Scripting 		CVE-2013-0525 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
291796 - canonical
samba
ibm 		ubuntu_linux
samba
storwize 		The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS sh… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0454 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
291797 - openstack
canonical 		essex
folsom
grizzly
ubuntu_linux 		OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0335 2024-11-21 10:47 2013-03-23 Show GitHub Exploit DB Packet Storm
291798 - ibm tivoli_endpoint_manager Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM) before 8.2.1372 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. CWE-79
Cross-site Scripting 		CVE-2013-0453 2024-11-21 10:47 2013-03-22 Show GitHub Exploit DB Packet Storm
291799 - fedoraproject sssd The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which al… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0287 2024-11-21 10:47 2013-03-22 Show GitHub Exploit DB Packet Storm
291800 - siemens simatic_pcs7
wincc 		Directory traversal vulnerability in the web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote authenticated users to read arbitrary files v… CWE-22
Path Traversal 		CVE-2013-0679 2024-11-21 10:47 2013-03-22 Show GitHub Exploit DB Packet Storm