Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
218071 6.1 警告 アップル - Apple iOS のカーネルの IPv6 の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-2391 2015-02-2 12:28 2013-09-18 Show GitHub Exploit DB Packet Storm
218072 6.8 警告 JAKWEB - Gecko CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2015-1424 2015-02-2 11:28 2015-01-12 Show GitHub Exploit DB Packet Storm
218073 6.5 警告 JAKWEB - Gecko CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2015-1423 2015-02-2 11:27 2015-01-12 Show GitHub Exploit DB Packet Storm
218074 5.4 警告 DISH Network LLC
オラクル
- Android 用 DISH Anywhere アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-5704 2015-02-2 10:26 2014-09-3 Show GitHub Exploit DB Packet Storm
218075 4.3 警告 アップル
Apache Software Foundation
ヒューレット・パッカード
オラクル
- Apache HTTP Server の mod_proxy モジュールにおけるイントラネットサーバにリクエストを送信される脆弱性 CWE-20
不適切な入力確認
CVE-2011-4317 2015-01-30 17:59 2011-11-30 Show GitHub Exploit DB Packet Storm
218076 4.3 警告 Apache Software Foundation
アップル
富士通
ヒューレット・パッカード
オラクル
日立
- Apache HTTP Server の protocol.c における HTTPOnly Cookie の値を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0053 2015-01-30 17:58 2012-01-23 Show GitHub Exploit DB Packet Storm
218077 4.3 警告 レッドハット
Mozilla Foundation
オラクル
- Mozilla Network Security Services の TLS の実装における識別攻撃およびプレーンテキストリカバリ攻撃を誘発される脆弱性 CWE-310
暗号の問題
CVE-2013-1620 2015-01-30 17:57 2013-02-8 Show GitHub Exploit DB Packet Storm
218078 4 警告 OpenStack
オラクル
- OpenStack Neutron におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2014-7821 2015-01-30 15:55 2014-11-19 Show GitHub Exploit DB Packet Storm
218079 5 警告 Wireshark
オラクル
- Wireshark の SigComp UDVM ディセクタの epan/sigcomp-udvm.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2014-8710 2015-01-30 15:45 2014-11-12 Show GitHub Exploit DB Packet Storm
218080 6.5 警告 X.Org Foundation
オラクル
- X.Org Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2014-8103 2015-01-30 15:42 2014-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297521 - ibm security_network_protection_firmware
security_network_protection_xgs_5100
Cross-site scripting (XSS) vulnerability in the Local Management Interface (LMI) in IBM Security Network Protection on XGS 5100 devices with firmware 5.1 before 5.1.0.6 and 5.1.1 before 5.1.1.1 allow… CWE-79
Cross-site Scripting
CVE-2013-5442 2024-11-21 10:57 2013-11-14 Show GitHub Exploit DB Packet Storm
297522 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.x before 7.0.0.2 CF25 and 8.x before 8.0.0.1 CF8 allows remote authenticated users to inject arbitrary web script or HTML by leverag… CWE-79
Cross-site Scripting
CVE-2013-5379 2024-11-21 10:57 2013-11-14 Show GitHub Exploit DB Packet Storm
297523 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.x before 8.0.0.1 CF8 allows remote authenticated users to inject arbitrary web script or HTML by leveraging incorrect IBM Connection… CWE-79
Cross-site Scripting
CVE-2013-5378 2024-11-21 10:57 2013-11-14 Show GitHub Exploit DB Packet Storm
297524 - adobe flash_player
air
air_sdk
Adobe Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows and Mac OS X and before 11.2.202.327 on Linux, Adobe AIR before 3.9.0.1210, Adobe AIR SDK before 3.9.0.1210… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5330 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
297525 - adobe flash_player
air
air_sdk
Adobe Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows and Mac OS X and before 11.2.202.327 on Linux, Adobe AIR before 3.9.0.1210, Adobe AIR SDK before 3.9.0.1210… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5329 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
297526 - adobe coldfusion Adobe ColdFusion 10 before Update 12 allows remote attackers to read arbitrary files via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5328 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
297527 - adobe coldfusion Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 9.0 before Update 12, 9.0.1 before Update 11, 9.0.2 before Update 6, and 10 before Update 12, when the CFIDE directory is available, allow… CWE-79
Cross-site Scripting
CVE-2013-5326 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
297528 - cisco nx-os Cisco NX-OS 5.0 and earlier on MDS 9000 devices allows remote attackers to cause a denial of service (supervisor CPU consumption) via Authentication Header (AH) authentication in a Virtual Router Red… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5566 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
297529 - cisco ios_xr The OSPFv3 functionality in Cisco IOS XR 5.1 allows remote attackers to cause a denial of service (process crash) via a malformed LSA Type-1 packet, aka Bug ID CSCuj82176. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5565 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
297530 - cisco telepresence_vx_clinical_assistant The WIL-A module in Cisco TelePresence VX Clinical Assistant 1.2 before 1.21 changes the admin password to an empty password upon a reboot, which makes it easier for remote attackers to obtain access… CWE-255
Credentials Management
CVE-2013-5558 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm