Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218641 2.6 注意 httplib2 Project
Canonical		 - httplib2 における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2037 2014-01-23 16:11 2013-04-23 Show GitHub Exploit DB Packet Storm
218642 7.5 危険 UAEPD - UAEPD Shopping Cart Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-1618 2014-01-23 15:57 2014-01-8 Show GitHub Exploit DB Packet Storm
218643 5.8 警告 FreeBSD - FreeBSD で使用される bsnmpd の lib/snmpagent.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-1452 2014-01-23 15:49 2014-01-14 Show GitHub Exploit DB Packet Storm
218644 6.5 警告 Open Dynamics - Collabtive の managetimetracker.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-6872 2014-01-23 15:44 2013-11-26 Show GitHub Exploit DB Packet Storm
218645 4.3 警告 IBM - 複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6746 2014-01-23 15:36 2013-12-23 Show GitHub Exploit DB Packet Storm
218646 10 危険 IBM - IBM Java SDK における脆弱性 CWE-noinfo
情報不足 		CVE-2013-0485 2014-01-23 15:36 2013-04-9 Show GitHub Exploit DB Packet Storm
218647 4.3 警告 IBM - IBM Platform Symphony における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-6305 2014-01-23 15:33 2013-10-31 Show GitHub Exploit DB Packet Storm
218648 2.1 注意 IBM - IBM Tivoli Federated Identity Manager および Tivoli Federated Identity Manager Business Gateway におけるトランザクションを完了される脆弱性 CWE-287
不適切な認証 		CVE-2013-5429 2014-01-23 15:33 2013-12-31 Show GitHub Exploit DB Packet Storm
218649 4 警告 The Tor Project - Tor における暗号保護メカニズムを回避される脆弱性 CWE-310
暗号の問題 		CVE-2013-7295 2014-01-23 12:13 2013-12-22 Show GitHub Exploit DB Packet Storm
218650 7.8 危険 デル - Dell PowerConnect スイッチ上で稼働する GoAhead Web Server のログインページにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3606 2014-01-22 19:13 2014-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295421 - cisco ios
ios_xe 		Cisco IOS 15.1 and 15.2 and IOS XE 3.x, when configured as an IPsec hub with X.509 certificates in use, allows remote authenticated users to cause a denial of service (segmentation fault and device c… CWE-20
 Improper Input Validation  		CVE-2011-4231 2024-11-21 10:32 2012-05-3 Show GitHub Exploit DB Packet Storm
295422 - scadatec
craig_peterson 		modbustagserver
turbopower_abbrevia
scadaphone 		Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-4535 2024-11-21 10:32 2012-04-3 Show GitHub Exploit DB Packet Storm
295423 - cisco unified_communications_manager
business_edition_3000_software
business_edition_3000
business_edition_5000_software
business_edition_5000
business_edition_6000_software
business_edit… 		SQL injection vulnerability in Cisco Unified Communications Manager (CUCM) with software 6.x and 7.x before 7.1(5b)su5, 8.0 before 8.0(3a)su3, and 8.5 and 8.6 before 8.6(2a)su1 and Cisco Business Edi… CWE-89
SQL Injection 		CVE-2011-4487 2024-11-21 10:32 2012-03-1 Show GitHub Exploit DB Packet Storm
295424 - cisco unified_communications_manager
business_edition_3000_software
business_edition_3000
business_edition_5000_software
business_edition_5000
business_edition_6000_software
business_edit… 		Cisco Unified Communications Manager (CUCM) with software 6.x and 7.x before 7.1(5b)su5, 8.0 before 8.0(3a)su3, and 8.5 and 8.6 before 8.6(2a)su1 and Cisco Business Edition 3000 with software before … CWE-399
 Resource Management Errors 		CVE-2011-4486 2024-11-21 10:32 2012-03-1 Show GitHub Exploit DB Packet Storm
295425 - advantech advantech_webaccess Buffer overflow in an ActiveX control in Advantech/BroadWin WebAccess before 7.0 might allow remote attackers to execute arbitrary code via a long string value in unspecified parameters. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-4526 2024-11-21 10:32 2012-02-21 Show GitHub Exploit DB Packet Storm
295426 - advantech advantech_webaccess Advantech/BroadWin WebAccess before 7.0 allows remote attackers to trigger the extraction of arbitrary web content into a batch file on a client system, and execute this batch file, via unspecified v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4525 2024-11-21 10:32 2012-02-21 Show GitHub Exploit DB Packet Storm
295427 - advantech advantech_webaccess Buffer overflow in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via a long string value in unspecified parameters. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-4524 2024-11-21 10:32 2012-02-21 Show GitHub Exploit DB Packet Storm
295428 - advantech advantech_webaccess Cross-site scripting (XSS) vulnerability in bwview.asp in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. CWE-79
Cross-site Scripting 		CVE-2011-4523 2024-11-21 10:32 2012-02-21 Show GitHub Exploit DB Packet Storm
295429 - advantech advantech_webaccess Cross-site scripting (XSS) vulnerability in bwerrdn.asp in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. CWE-79
Cross-site Scripting 		CVE-2011-4522 2024-11-21 10:32 2012-02-21 Show GitHub Exploit DB Packet Storm
295430 - advantech advantech_webaccess SQL injection vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary SQL commands via crafted string input. CWE-89
SQL Injection 		CVE-2011-4521 2024-11-21 10:32 2012-02-21 Show GitHub Exploit DB Packet Storm