Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218601 4.3 警告 PaperThin - PaperThin CommonSpot におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2860 2014-04-21 19:01 2014-04-14 Show GitHub Exploit DB Packet Storm
218602 7.5 危険 PaperThin - PaperThin CommonSpot におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2859 2014-04-21 19:01 2014-04-14 Show GitHub Exploit DB Packet Storm
218603 4 警告 コクヨS&T株式会社 - Android 版 CamiApp における Content Provider のアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1986 2014-04-21 18:31 2014-04-14 Show GitHub Exploit DB Packet Storm
218604 2.1 注意 PackageKit Project - PackageKit の Zypper バックエンドにおけるパッケージをダウングレードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1764 2014-04-21 18:28 2013-05-8 Show GitHub Exploit DB Packet Storm
218605 4.6 警告 bzip.org - bzip2 の bzexe コマンドにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4089 2014-04-21 17:56 2011-12-4 Show GitHub Exploit DB Packet Storm
218606 7.5 危険 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z で使用される KIWI における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2011-4195 2014-04-21 17:27 2011-12-15 Show GitHub Exploit DB Packet Storm
218607 4.3 警告 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z のオーバーレイファイルタブにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4193 2014-04-21 17:25 2011-12-15 Show GitHub Exploit DB Packet Storm
218608 7.5 危険 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z で使用される KIWI における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2011-4192 2014-04-21 17:24 2011-12-15 Show GitHub Exploit DB Packet Storm
218609 7.5 危険 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z で使用される KIWI における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2011-3180 2014-04-21 17:23 2011-12-15 Show GitHub Exploit DB Packet Storm
218610 2.1 注意 Novell - SUSE Lifecycle Management Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0993 2014-04-21 17:22 2011-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291651 - redhat
opensuse 		enterprise_linux
opensuse 		The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the join command, when using the -i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0223 2024-11-21 10:47 2013-11-24 Show GitHub Exploit DB Packet Storm
291652 - redhat
opensuse 		enterprise_linux
opensuse 		The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the uniq command, which triggers a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0222 2024-11-21 10:47 2013-11-24 Show GitHub Exploit DB Packet Storm
291653 - redhat
opensuse 		enterprise_linux
opensuse 		The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the sort command, when using the (1… CWE-20
 Improper Input Validation  		CVE-2013-0221 2024-11-21 10:47 2013-11-24 Show GitHub Exploit DB Packet Storm
291654 - redhat
clusterlabs 		enterprise_linux
pacemaker 		Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote a… CWE-399
 Resource Management Errors 		CVE-2013-0281 2024-11-21 10:47 2013-11-23 Show GitHub Exploit DB Packet Storm
291655 - ibm lotus_sametime The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of shared links by leveraging meeting-attendance privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0537 2024-11-21 10:47 2013-11-9 Show GitHub Exploit DB Packet Storm
291656 - f5 nginx The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive informati… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0337 2024-11-21 10:47 2013-10-27 Show GitHub Exploit DB Packet Storm
291657 - ibm storwize_v7000_unified_software
storwize_v7000_unified 		IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.2.0 does not properly handle device files that are created with the NFS protocol but accessed with a non-NFS protocol, which allows remote authen… CWE-20
 Improper Input Validation  		CVE-2013-0500 2024-11-21 10:47 2013-10-17 Show GitHub Exploit DB Packet Storm
291658 - ibm infosphere_optim_data_growth_for_oracle_e-business_suite Cross-site request forgery (CSRF) vulnerability in the Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to hijack the… CWE-352
 Origin Validation Error 		CVE-2013-0580 2024-11-21 10:47 2013-10-10 Show GitHub Exploit DB Packet Storm
291659 - ibm infosphere_optim_data_growth_for_oracle_e-business_suite The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote attackers to impersonate arbitrary users by leveraging access to a legitimate user's… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0579 2024-11-21 10:47 2013-10-10 Show GitHub Exploit DB Packet Storm
291660 - ibm infosphere_optim_data_growth_for_oracle_e-business_suite The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to bypass intended access restrictions and create, modify, or de… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0577 2024-11-21 10:47 2013-10-10 Show GitHub Exploit DB Packet Storm