Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217221	7.1	危険	ヒューレット・パッカード	-	HP Executive Scorecard の Content Acceleration Pack Web アプリケーションにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2610	2014-06-20 15:57	2014-06-17	Show	GitHub Exploit DB Packet Storm

217222	10	危険	ヒューレット・パッカード	-	HP Executive Scorecard の Java Glassfish 管理コンソールにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2014-2609	2014-06-20 15:57	2014-06-17	Show	GitHub Exploit DB Packet Storm

217223	10	危険	ヒューレット・パッカード	-	HP Service Virtualization の CommunicationServlet におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-6221	2014-06-20 15:55	2013-12-9	Show	GitHub Exploit DB Packet Storm

217224	3.5	注意	IBM	-	IBM Curam Social Program Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3013	2014-06-20 14:05	2014-06-9	Show	GitHub Exploit DB Packet Storm

217225	3.5	注意	IBM	-	IBM Curam Social Program Management における CRLF インジェクションの脆弱性	CWE-Other その他	CVE-2014-3012	2014-06-20 14:05	2014-06-9	Show	GitHub Exploit DB Packet Storm

217226	3.5	注意	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0910	2014-06-20 14:04	2014-06-6	Show	GitHub Exploit DB Packet Storm

217227	4.3	警告	Novell	-	Linux 上で稼働する Novell Open Enterprise Server の iPrint におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0599	2014-06-20 13:47	2014-05-29	Show	GitHub Exploit DB Packet Storm

217228	10	危険	Novell	-	Linux 上で稼働する Novell Open Enterprise Server の iPrint におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-0598	2014-06-20 13:47	2014-05-29	Show	GitHub Exploit DB Packet Storm

217229	4	警告	シスコシステムズ	-	Cisco Adaptive Security Appliance ソフトウェアの WebVPN ポータルにおける重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2014-2151	2014-06-20 12:18	2014-06-17	Show	GitHub Exploit DB Packet Storm

217230	9.3	危険	Wireshark	-	Wireshark の libpcap ファイルパーサの wiretap/libpcap.c における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-4174	2014-06-20 12:17	2014-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291681	-	moxiecode wordpress fedoraproject	plupload wordpress fedora	Cross-site scripting (XSS) vulnerability in Plupload.as in Moxiecode plupload before 1.5.5, as used in WordPress before 3.5.1 and other products, allows remote attackers to inject arbitrary web scrip…	CWE-79 Cross-site Scripting	CVE-2013-0237	2024-11-21 10:47	2013-07-9	Show	GitHub Exploit DB Packet Storm

291682	-	wordpress	wordpress	Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.5.1 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) gallery shortcodes or (2) the con…	CWE-79 Cross-site Scripting	CVE-2013-0236	2024-11-21 10:47	2013-07-9	Show	GitHub Exploit DB Packet Storm

291683	-	wordpress	wordpress	The XMLRPC API in WordPress before 3.5.1 allows remote attackers to send HTTP requests to intranet servers, and conduct port-scanning attacks, by specifying a crafted source URL for a pingback, relat…	NVD-CWE-Other	CVE-2013-0235	2024-11-21 10:47	2013-07-9	Show	GitHub Exploit DB Packet Storm

291684	-	ibm	business_process_manager	Multiple cross-site scripting (XSS) vulnerabilities in IBM Business Process Manager (BPM) 7.5.1.x, 8.0.0.x, and 8.0.1 before FP1 allow remote authenticated users to inject arbitrary web script or HTM…	CWE-79 Cross-site Scripting	CVE-2013-0581	2024-11-21 10:47	2013-07-6	Show	GitHub Exploit DB Packet Storm

291685	-	ibm	sterling_b2b_integrator sterling_file_gateway	IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors…	CWE-200 Information Exposure	CVE-2013-0568	2024-11-21 10:47	2013-07-3	Show	GitHub Exploit DB Packet Storm

291686	-	ibm	sterling_b2b_integrator sterling_file_gateway	IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors…	CWE-200 Information Exposure	CVE-2013-0567	2024-11-21 10:47	2013-07-3	Show	GitHub Exploit DB Packet Storm

291687	-	ibm	sterling_b2b_integrator sterling_file_gateway	Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecif…	CWE-89 SQL Injection	CVE-2013-0560	2024-11-21 10:47	2013-07-3	Show	GitHub Exploit DB Packet Storm

291688	-	ibm	sterling_b2b_integrator sterling_file_gateway	IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote attackers to obtain sensitive information about application implementation via unspecified vectors.	CWE-200 Information Exposure	CVE-2013-0558	2024-11-21 10:47	2013-07-3	Show	GitHub Exploit DB Packet Storm

291689	-	ibm	sterling_b2b_integrator sterling_file_gateway	An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote attackers to hijac…	CWE-255 Credentials Management	CVE-2013-0539	2024-11-21 10:47	2013-07-3	Show	GitHub Exploit DB Packet Storm

291690	-	ibm	sterling_b2b_integrator sterling_file_gateway	The console in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to read stack traces by triggering (1) an error or (2) an exception.	CWE-200 Information Exposure	CVE-2013-0481	2024-11-21 10:47	2013-07-3	Show	GitHub Exploit DB Packet Storm