Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217981 5 警告 Drupal - Drupal のマルチサイト機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-5019 2014-07-23 16:49 2014-07-16 Show GitHub Exploit DB Packet Storm
217982 7.5 危険 JoomlaBoat.com - Joomla! 用 YouTube Gallery コンポーネントの models\gallery.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4960 2014-07-23 14:58 2014-07-15 Show GitHub Exploit DB Packet Storm
217983 5 警告 ARM Ltd. (旧 Offspark) - PolarSSL の library/ssl_tls.c の ssl_decrypt_buf 関数 におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2014-4911 2014-07-23 14:18 2014-07-11 Show GitHub Exploit DB Packet Storm
217984 4.3 警告 e107.org - e107 の e107_admin/db.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4734 2014-07-23 14:13 2014-06-27 Show GitHub Exploit DB Packet Storm
217985 6.8 警告 GitList - Gitlist で使用される Gitter の Repository.php における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2014-5023 2014-07-23 14:01 2014-06-29 Show GitHub Exploit DB Packet Storm
217986 7.5 危険 GitList - Gitlist における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2014-4511 2014-07-23 14:01 2014-06-30 Show GitHub Exploit DB Packet Storm
217987 7.5 危険 GitList - Gitlist における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2013-7392 2014-07-23 14:01 2013-10-31 Show GitHub Exploit DB Packet Storm
217988 4 警告 The phpMyAdmin Project - phpMyAdmin の server_user_groups.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4987 2014-07-23 13:53 2014-07-17 Show GitHub Exploit DB Packet Storm
217989 3.5 注意 The phpMyAdmin Project - phpMyAdmin の js/functions.js におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4986 2014-07-23 13:52 2014-07-17 Show GitHub Exploit DB Packet Storm
217990 3.5 注意 The phpMyAdmin Project - phpMyAdmin の libraries/rte/rte_list.lib.php の PMA_TRI_getRowForList 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4955 2014-07-23 13:52 2014-07-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291031 - google chrome_os Use-after-free vulnerability in the O3D plug-in in Google Chrome OS before 26.0.1410.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors rela… CWE-399
 Resource Management Errors 		CVE-2013-2833 2024-11-21 10:52 2013-04-17 Show GitHub Exploit DB Packet Storm
291032 - google chrome_os The Buffer::Set function in core/cross/buffer.cc in the O3D plug-in in Google Chrome OS before 26.0.1410.57 does not prevent uninitialized data from remaining in a buffer, which might allow remote at… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2832 2024-11-21 10:52 2013-04-17 Show GitHub Exploit DB Packet Storm
291033 - bestwebsharing groovy_media_player Buffer overflow in Groovy Media Player 3.2.0 allows remote attackers to execute arbitrary code via a long string in a .m3u file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2760 2024-11-21 10:52 2013-04-16 Show GitHub Exploit DB Packet Storm
291034 - qualcomm
motorola 		msm8960
android
atrix_hd
razr_hd
razr_m 		The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the … CWE-16
Configuration 		CVE-2013-3051 2024-11-21 10:52 2013-04-13 Show GitHub Exploit DB Packet Storm
291035 - zapms zapms SQL injection vulnerability in ZAPms 1.41 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter to product. CWE-89
SQL Injection 		CVE-2013-3050 2024-11-21 10:52 2013-04-13 Show GitHub Exploit DB Packet Storm
291036 - cisco ios_xe
asr_1001
asr_1002
asr_1002-x
asr_1002_fixed_router
asr_1004
asr_1006
asr_1013
asr_1023_router 		Cisco IOS XE 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR) does not properly implement the Cisco Multicast Leaf Recycle Elimination (MLRE) fe… CWE-20
 Improper Input Validation  		CVE-2013-2779 2024-11-21 10:52 2013-04-11 Show GitHub Exploit DB Packet Storm
291037 - splunk splunk Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk 4.3.0 through 4.3.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-2766 2024-11-21 10:52 2013-04-11 Show GitHub Exploit DB Packet Storm
291038 - puppetlabs
puppet 		puppet
puppet_enterprise 		Puppet Labs Puppet Enterprise before 2.8.0 does not use a "randomized secret" in the CAS client config file (cas_client_config.yml) when upgrading from older 1.2.x or 2.0.x versions, which allows rem… CWE-310
Cryptographic Issues 		CVE-2013-2716 2024-11-21 10:52 2013-04-11 Show GitHub Exploit DB Packet Storm
291039 - chatelao php_address_book Cross-site request forgery (CSRF) vulnerability in addressbook/register/delete_user.php in PHP Address Book 8.2.5 allows remote attackers to hijack the authentication of administrators for requests t… CWE-352
 Origin Validation Error 		CVE-2013-2778 2024-11-21 10:52 2013-04-9 Show GitHub Exploit DB Packet Storm
291040 - apple
todd_miller 		mac_os_x
sudo 		sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2777 2024-11-21 10:52 2013-04-9 Show GitHub Exploit DB Packet Storm