Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218671 5 警告 SAP - SAP HANA Extend Application Services におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5173 2014-08-4 13:43 2014-03-11 Show GitHub Exploit DB Packet Storm
218672 4.3 警告 SAP - SAP HANA の XS Administration Tool におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5172 2014-08-4 13:43 2014-04-8 Show GitHub Exploit DB Packet Storm
218673 2.9 注意 SAP - SAP HANA Extend Application Services における認証情報およびその他の重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-5171 2014-08-4 13:42 2014-03-11 Show GitHub Exploit DB Packet Storm
218674 6.8 警告 Jiri Pirko - libndp の ndp_msg_opt_dnssl_domain 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-3554 2014-08-4 13:34 2014-07-11 Show GitHub Exploit DB Packet Storm
218675 5 警告 The Netty project - Netty の SslHandler におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-3488 2014-08-4 13:33 2014-06-11 Show GitHub Exploit DB Packet Storm
218676 5 警告 SEO Peter - WordPress 用 Vitamin プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-6651 2014-08-4 13:33 2012-08-6 Show GitHub Exploit DB Packet Storm
218677 4.3 警告 ホームページの飾り職人 - PerlMailer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3897 2014-08-1 18:27 2014-07-29 Show GitHub Exploit DB Packet Storm
218678 5.1 警告 株式会社シーズ - acmailer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3896 2014-08-1 18:25 2014-07-29 Show GitHub Exploit DB Packet Storm
218679 6.4 警告 株式会社アイ・オー・データ機器 - アイ・オー・データ機器製の複数の IP カメラにおける認証回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3895 2014-08-1 18:24 2014-07-29 Show GitHub Exploit DB Packet Storm
218680 5 警告 Innominate Security Technologies AG - Innominate mGuard における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-2356 2014-08-1 18:09 2014-07-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290771 - chainfire
androidsu
koushik_dutta 		supersu
chainsdd_superuser
superuser 		Untrusted search path vulnerability in the ChainsDD Superuser package 3.1.3 for Android 4.2.x and earlier, CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and earlier, and … NVD-CWE-Other
CVE-2013-6774 2024-11-21 10:59 2014-03-31 Show GitHub Exploit DB Packet Storm
290772 - koushik_dutta superuser Untrusted search path vulnerability in the CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and earlier allows attackers to trigger the launch of a Trojan horse app_process … CWE-22
Path Traversal 		CVE-2013-6768 2024-11-21 10:59 2014-03-31 Show GitHub Exploit DB Packet Storm
290773 - ibm quickfile Cross-site scripting (XSS) vulnerability in IBM QuickFile 1.0.0.0 before iFix 4 and 1.1.0.1 before iFix 3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. CWE-79
Cross-site Scripting 		CVE-2013-6729 2024-11-21 10:59 2014-03-21 Show GitHub Exploit DB Packet Storm
290774 - jansson_project jansson Jansson, possibly 2.4 and earlier, does not restrict the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a … CWE-310
Cryptographic Issues 		CVE-2013-6401 2024-11-21 10:59 2014-03-21 Show GitHub Exploit DB Packet Storm
290775 - apache
oracle
canonical 		http_server
ubuntu_linux 		The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote atta… NVD-CWE-noinfo
CVE-2013-6438 2024-11-21 10:59 2014-03-18 Show GitHub Exploit DB Packet Storm
290776 - canonical
debian
fedoraproject
linuxfoundation 		ubuntu_linux
debian_linux
fedora
cups-filters 		The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6476 2024-11-21 10:59 2014-03-15 Show GitHub Exploit DB Packet Storm
290777 - canonical
debian
fedoraproject
linuxfoundation 		ubuntu_linux
debian_linux
fedora
cups-filters 		Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a c… CWE-189
Numeric Errors 		CVE-2013-6475 2024-11-21 10:59 2014-03-15 Show GitHub Exploit DB Packet Storm
290778 - linuxfoundation
canonical
debian
fedoraproject 		cups-filters
ubuntu_linux
debian_linux
fedora 		Heap-based buffer overflow in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows remote attackers to execute arbitrary code via a crafted PDF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6474 2024-11-21 10:59 2014-03-15 Show GitHub Exploit DB Packet Storm
290779 - canonical
linuxfoundation 		ubuntu_linux
cups-filters 		Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 before 1.0.47 allow remote attackers to execute arbitrary code via a large (1) page or (2) line in a URF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6473 2024-11-21 10:59 2014-03-15 Show GitHub Exploit DB Packet Storm
290780 - apple iphone_os TelephonyUI Framework in Apple iOS 7 before 7.1, when Safari is used, does not require user confirmation for FaceTime audio calls, which allows remote attackers to obtain telephone number or e-mail a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6835 2024-11-21 10:59 2014-03-14 Show GitHub Exploit DB Packet Storm