Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217611	2.6	注意	Bump Technologies, Inc.	-	Android 版 Bump における暗黙的 Intent の扱いに関する脆弱性	CWE-DesignError	CVE-2014-5320	2014-09-25 17:43	2014-09-19	Show	GitHub Exploit DB Packet Storm

217612	6.5	警告	Huge-IT	-	WordPress 用 Huge-IT Image Gallery プラグインの admin/gallery_func.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-7153	2014-09-25 12:18	2014-08-25	Show	GitHub Exploit DB Packet Storm

217613	4	警告	ヤフー株式会社	-	Yahoo!ボックス(Android版) における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-5881	2014-09-25 12:09	2014-09-25	Show	GitHub Exploit DB Packet Storm

217614	5	警告	アップル	-	Safari におけるアプリケーションキャッシュの取扱いに関する問題	CWE-DesignError	CVE-2014-4409	2014-09-25 12:01	2014-09-17	Show	GitHub Exploit DB Packet Storm

217615	7.2	危険	Cobham plc	-	Cobham AVIATOR 700D および 700E 衛星通信用端末における特権的端末セッションを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-2942	2014-09-25 11:57	2014-08-7	Show	GitHub Exploit DB Packet Storm

217616	4	警告	FileMaker, Inc	-	FileMaker Pro における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-5321	2014-09-24 18:04	2014-09-18	Show	GitHub Exploit DB Packet Storm

217617	6.1	警告	シスコシステムズ	-	Cisco Network Convergence System 6000 シリーズデバイス上で稼働する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3379	2014-09-24 17:58	2014-09-19	Show	GitHub Exploit DB Packet Storm

217618	5	警告	シスコシステムズ	-	Cisco IOS XR の tacacsd におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3378	2014-09-24 17:56	2014-09-19	Show	GitHub Exploit DB Packet Storm

217619	4	警告	シスコシステムズ	-	Cisco IOS XR の snmpd におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3377	2014-09-24 17:55	2014-09-19	Show	GitHub Exploit DB Packet Storm

217620	5	警告	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3376	2014-09-24 17:55	2014-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290951	-	joachim_noreiko	flag_module	Cross-site scripting (XSS) vulnerability in the administration page in the Flag module 7.x-3.x before 7.x-3.1 for Drupal allows remote authenticated users with the "Administer flags" permission to in…	CWE-79 Cross-site Scripting	CVE-2013-5964	2024-11-21 10:58	2013-10-1	Show	GitHub Exploit DB Packet Storm

290952	-	owasp	enterprise_security_api	The authenticated-encryption feature in the symmetric-encryption implementation in the OWASP Enterprise Security API (ESAPI) for Java 2.x before 2.1.0.1 does not properly resist tampering with serial…	CWE-310 Cryptographic Issues	CVE-2013-5960	2024-11-21 10:58	2013-10-1	Show	GitHub Exploit DB Packet Storm

290953	-	bluecoat	proxysgos proxysg	Blue Coat ProxySG before 6.2.14.1, 6.3.x, 6.4.x, and 6.5 before 6.5.2 allows remote attackers to cause a denial of service (memory consumption and dropped connections) via a recursive href in an HTML…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5959	2024-11-21 10:58	2013-09-29	Show	GitHub Exploit DB Packet Storm

290954	-	graphite_project	graphite	Multiple cross-site scripting (XSS) vulnerabilities in Graphite before 0.9.11 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5943	2024-11-21 10:58	2013-09-27	Show	GitHub Exploit DB Packet Storm

290955	-	graphite_project	graphite	Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to (1) remote_storage.py, (2) st…	CWE-94 Code Injection	CVE-2013-5942	2024-11-21 10:58	2013-09-27	Show	GitHub Exploit DB Packet Storm

290956	-	click2sell	click2sell_suite_module	Cross-site scripting (XSS) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a confirmation form.	CWE-79 Cross-site Scripting	CVE-2013-5938	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

290957	-	click2sell	click2sell_suite_module	Cross-site request forgery (CSRF) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete datab…	CWE-352 Origin Validation Error	CVE-2013-5937	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

290958	-	open-xchange	open-xchange_appsuite	The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 allows remote attackers to obtain sensitive information about (1) runtime activity, (2) networ…	CWE-200 Information Exposure	CVE-2013-5936	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

290959	-	open-xchange	open-xchange_appsuite	The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 does not properly restrict the set of network interfaces that can receive API calls, which mak…	CWE-200 Information Exposure	CVE-2013-5935	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

290960	-	open-xchange	open-xchange_appsuite	Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 has a hardcoded password for node join operations, which allows remote attackers to expand a cluster by finding this passwo…	CWE-255 Credentials Management	CVE-2013-5934	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm