Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 217811 | 9 | 危険 | Ecava | - | Ecava IntegraXor SCADA サーバにおける任意のファイルを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2014-2375 | 2014-09-16 14:34 | 2014-09-11 | Show | GitHub Exploit DB Packet Storm |
| 217812 | 4.3 | 警告 | Avolve Software | - | Avolve Software ProjectDox におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-5129 | 2014-09-16 11:07 | 2014-09-3 | Show | GitHub Exploit DB Packet Storm |
| 217813 | 7.5 | 危険 | PhpWiki | - | PhpWiki の Ploticus モジュールにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2014-5519 | 2014-09-16 09:55 | 2014-08-27 | Show | GitHub Exploit DB Packet Storm |
| 217814 | 4.3 | 警告 | Adiscon | - | Adiscon LogAnalyzer におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-6070 | 2014-09-12 19:08 | 2014-09-2 | Show | GitHub Exploit DB Packet Storm |
| 217815 | 7.5 | 危険 | Plogger Project | - | Plogger の plog-admin/plog-upload.php における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2014-2223 | 2014-09-12 19:04 | 2014-02-27 | Show | GitHub Exploit DB Packet Storm |
| 217816 | 6 | 警告 | CacheGuard Technologies Ltd. | - | CacheGuard OS にクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2014-4865 | 2014-09-12 17:56 | 2014-09-10 | Show | GitHub Exploit DB Packet Storm |
| 217817 | 7.5 | 危険 | wt_directory project | - | TYPO3 用 wt_directory エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-6241 | 2014-09-12 16:34 | 2014-09-2 | Show | GitHub Exploit DB Packet Storm |
| 217818 | 4.3 | 警告 | Google Sitemap project | - | TYPO3 用 Google Sitemap エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-6240 | 2014-09-12 16:33 | 2014-09-2 | Show | GitHub Exploit DB Packet Storm |
| 217819 | 7.5 | 危険 | Thomas Scheibitz | - | TYPO3 用 Address visualization with Google Maps エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-6239 | 2014-09-12 16:33 | 2014-09-2 | Show | GitHub Exploit DB Packet Storm |
| 217820 | 4.3 | 警告 | Akronymmanager project | - | TYPO3 用 Akronymmanager エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-6238 | 2014-09-12 16:32 | 2014-09-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 290801 | 7.5 |
HIGH
Network |
aultware | pwstore | AultWare pwStore 2010.8.30.0 has DoS via an empty HTTP request |
NVD-CWE-Other
|
CVE-2013-5657 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290802 | 7.8 |
HIGH
Local |
fuzezip_project | fuzezip | FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability |
CWE-787
Out-of-bounds Write |
CVE-2013-5656 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290803 | 5.4 |
MEDIUM
Network |
transcend-info | wifisd_firmware | Transcend WiFiSD 1.8 has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5638 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290804 | 5.4 |
MEDIUM
Network |
pqigroup | air_card_firmware | PQI AirCard has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5637 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290805 | 5.9 |
MEDIUM
Network |
hmailserver | hmailserver | HMailServer 5.3.x and prior: Memory Corruption which could cause DOS |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5571 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 290806 | 9.8 |
CRITICAL
Network |
cisco |
linksys_ea2700_firmware linksys_ea3500_firmware linksys_e4200_firmware linksys_ea4500_firmware |
Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access |
CWE-287
Improper Authentication |
CVE-2013-5122 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 290807 | 5.9 |
MEDIUM
Network |
pypa virtualenv fedoraproject redhat debian |
pip virtualenv fedora openshift software_collections debian_linux |
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. |
CWE-287
Improper Authentication |
CVE-2013-5123 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 290808 | 5.9 |
MEDIUM
Network |
isc nlnetlabs nic redhat |
bind nsd knot_resolver enterprise_linux |
Cache Poisoning issue exists in DNS Response Rate Limiting. |
CWE-290
Authentication Bypass by Spoofing |
CVE-2013-5661 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 290809 | 9.1 |
CRITICAL
Network |
yingzhipython_project | yingzhipython | Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage |
CWE-284
Improper Access Control |
CVE-2013-5654 | 2024-11-21 10:57 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 290810 | 8.8 |
HIGH
Network |
ibm |
endpoint_manager_for_remote_control tivoli_remote_control |
IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by … |
CWE-255
Credentials Management |
CVE-2013-5461 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |