Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217661 9.3 危険 マイクロソフト - Microsoft OneNote 2007 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2815 2014-08-14 17:53 2014-08-12 Show GitHub Exploit DB Packet Storm
217662 9.3 危険 マイクロソフト - Microsoft SharePoint Server 2013 および SharePoint Foundation 2013 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2816 2014-08-14 17:49 2014-08-12 Show GitHub Exploit DB Packet Storm
217663 4.3 警告 Splunk - Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5198 2014-08-14 17:15 2014-08-4 Show GitHub Exploit DB Packet Storm
217664 4 警告 Splunk - Splunk Enterprise におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5197 2014-08-14 17:15 2014-08-4 Show GitHub Exploit DB Packet Storm
217665 7.5 危険 WordPress Gallery Objects - WordPress 用 Gallery Objects プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5201 2014-08-14 17:14 2014-07-18 Show GitHub Exploit DB Packet Storm
217666 7.5 危険 Chris & Andrew Fox - WordPress 用 FB Gorilla プラグインの game_play.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5200 2014-08-14 17:14 2014-07-28 Show GitHub Exploit DB Packet Storm
217667 6.8 警告 Iptanus - WordPress 用 File Upload プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-5199 2014-08-14 17:14 2014-08-8 Show GitHub Exploit DB Packet Storm
217668 4.3 警告 Blackbam - WordPress 用 Improved user search in backend プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5196 2014-08-14 17:13 2014-08-8 Show GitHub Exploit DB Packet Storm
217669 4.9 警告 ゾール・メディカル - ZOLL 除細動器 X シリーズにおけるデバイスの設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-7395 2014-08-14 17:08 2013-08-1 Show GitHub Exploit DB Packet Storm
217670 4.9 警告 ゾール・メディカル - ZOLL 除細動器の複数のシリーズにおけるデバイスの設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-6756 2014-08-14 17:07 2007-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291231 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remo… NVD-CWE-noinfo
CVE-2013-2443 2024-11-21 10:51 2013-06-19 Show GitHub Exploit DB Packet Storm
291232 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, inte… NVD-CWE-noinfo
CVE-2013-2442 2024-11-21 10:51 2013-06-19 Show GitHub Exploit DB Packet Storm
291233 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via u… NVD-CWE-noinfo
CVE-2013-2437 2024-11-21 10:51 2013-06-19 Show GitHub Exploit DB Packet Storm
291234 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confi… NVD-CWE-noinfo
CVE-2013-2412 2024-11-21 10:51 2013-06-19 Show GitHub Exploit DB Packet Storm
291235 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confi… NVD-CWE-noinfo
CVE-2013-2407 2024-11-21 10:51 2013-06-19 Show GitHub Exploit DB Packet Storm
291236 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployme… NVD-CWE-noinfo
CVE-2013-2400 2024-11-21 10:51 2013-06-19 Show GitHub Exploit DB Packet Storm
291237 - tejimaya openpne Cross-site scripting (XSS) vulnerability in the management screen in OpenPNE 3.4.x before 3.4.21.1, 3.6.x before 3.6.9.1, and 3.8.x before 3.8.5.1 allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting 		CVE-2013-2309 2024-11-21 10:51 2013-06-17 Show GitHub Exploit DB Packet Storm
291238 - softbank
willcom-inc 		wi-fi_spot_configuration_software
mobile_wi-fi_router
nec_3g_handset
panasonic_3g_handset
samsung_3g_handset
sharp_3g_handset
wi-fi_application
android_smartphone
wisprclient<… 		SoftBank Wi-Fi Spot Configuration Software, as used on SoftBank SHARP 3G handsets, SoftBank Panasonic 3G handsets, SoftBank NEC 3G handsets, SoftBank Samsung 3G handsets, SoftBank mobile Wi-Fi router… CWE-287
Improper Authentication 		CVE-2013-2310 2024-11-21 10:51 2013-06-17 Show GitHub Exploit DB Packet Storm
291239 - hp integrated_lights-out_3_firmware
integrated_lights-out_4_firmware 		Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware before 1.22, when Single-Sign-On (SSO) is used, allows remote a… NVD-CWE-noinfo
CVE-2013-2338 2024-11-21 10:51 2013-06-15 Show GitHub Exploit DB Packet Storm
291240 - hp service_manager
service_center 		Cross-site scripting (XSS) vulnerability in HP Service Manager 7.11, 9.21, 9.30, and 9.31, and ServiceCenter 6.2.8, allows remote attackers to inject arbitrary web script or HTML via unspecified vect… CWE-79
Cross-site Scripting 		CVE-2013-2337 2024-11-21 10:51 2013-06-15 Show GitHub Exploit DB Packet Storm