Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218481 4.3 警告 Splunk - Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5198 2014-08-14 17:15 2014-08-4 Show GitHub Exploit DB Packet Storm
218482 4 警告 Splunk - Splunk Enterprise におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5197 2014-08-14 17:15 2014-08-4 Show GitHub Exploit DB Packet Storm
218483 7.5 危険 WordPress Gallery Objects - WordPress 用 Gallery Objects プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5201 2014-08-14 17:14 2014-07-18 Show GitHub Exploit DB Packet Storm
218484 7.5 危険 Chris & Andrew Fox - WordPress 用 FB Gorilla プラグインの game_play.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5200 2014-08-14 17:14 2014-07-28 Show GitHub Exploit DB Packet Storm
218485 6.8 警告 Iptanus - WordPress 用 File Upload プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-5199 2014-08-14 17:14 2014-08-8 Show GitHub Exploit DB Packet Storm
218486 4.3 警告 Blackbam - WordPress 用 Improved user search in backend プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5196 2014-08-14 17:13 2014-08-8 Show GitHub Exploit DB Packet Storm
218487 4.9 警告 ゾール・メディカル - ZOLL 除細動器 X シリーズにおけるデバイスの設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-7395 2014-08-14 17:08 2013-08-1 Show GitHub Exploit DB Packet Storm
218488 4.9 警告 ゾール・メディカル - ZOLL 除細動器の複数のシリーズにおけるデバイスの設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-6756 2014-08-14 17:07 2007-05-1 Show GitHub Exploit DB Packet Storm
218489 4 警告 ヒューレット・パッカード - HP NonStop Safeguard Security Software におけるプログラムのアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2629 2014-08-14 16:12 2014-08-5 Show GitHub Exploit DB Packet Storm
218490 7.2 危険 IBM - IBM Security AppScan Source の Automation Server における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-3072 2014-08-14 15:59 2014-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290881 - videocharge watermark_master Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote attackers to execute arbitrary code via a long string in the name attribute of the cols element in a .wstyle file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6937 2024-11-21 11:00 2013-12-5 Show GitHub Exploit DB Packet Storm
290882 5.5 MEDIUM
Local 		triplc trilogi_server Internet TRiLOGI Server (unknown versions) could allow a local user to bypass security and create a local user account. NVD-CWE-Other
CVE-2013-6927 2024-11-21 10:59 2020-02-14 Show GitHub Exploit DB Packet Storm
290883 9.8 CRITICAL
Network 		xerox colorqube_9201_firmware
colorqube_9202_firmware
colorqube_9203_firmware
workcentre_6400_firmware
workcentre_7525_firmware
workcentre_7530_firmware
workcentre_7535_firmware
workce… 		Xerox ColorCube and WorkCenter devices in 2013 had hardcoded FTP and shell user accounts. CWE-798
 Use of Hard-coded Credentials 		CVE-2013-6362 2024-11-21 10:59 2020-02-14 Show GitHub Exploit DB Packet Storm
290884 7.5 HIGH
Network 		trendnet ts-s402_firmware TRENDnet TS-S402 has a backdoor to enable TELNET. CWE-287
Improper Authentication 		CVE-2013-6360 2024-11-21 10:59 2020-02-14 Show GitHub Exploit DB Packet Storm
290885 5.9 MEDIUM
Network 		mapway tube_map Tube Map Live Underground for Android before 3.0.22 has an Information Disclosure Vulnerability CWE-200
Information Exposure 		CVE-2013-6681 2024-11-21 10:59 2020-02-13 Show GitHub Exploit DB Packet Storm
290886 5.3 MEDIUM
Network 		mediawiki mediawiki The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of… CWE-200
Information Exposure 		CVE-2013-6455 2024-11-21 10:59 2020-01-29 Show GitHub Exploit DB Packet Storm
290887 6.1 MEDIUM
Network 		mediawiki mediawiki Cross-site scripting (XSS) vulnerability in MediaWiki 1.19.9 before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via unspecifie… CWE-79
Cross-site Scripting 		CVE-2013-6451 2024-11-21 10:59 2020-01-29 Show GitHub Exploit DB Packet Storm
290888 9.8 CRITICAL
Network 		google android Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability NVD-CWE-Other
CVE-2013-6792 2024-11-21 10:59 2020-01-24 Show GitHub Exploit DB Packet Storm
290889 4.3 MEDIUM
Network 		supermicro intelligent_platform_management_interface Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter. CWE-22
Path Traversal 		CVE-2013-6785 2024-11-21 10:59 2020-01-24 Show GitHub Exploit DB Packet Storm
290890 7.8 HIGH
Local 		splunk splunk Splunk 5.0.3 has an Unquoted Service Path in Windows for Universal Forwarder which can allow an attacker to escalate privileges CWE-269
 Improper Privilege Management 		CVE-2013-6773 2024-11-21 10:59 2020-01-24 Show GitHub Exploit DB Packet Storm