Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218861 5 警告 University of California - BOINC の client/cs_account.cpp の PROJECT::write_account_file 関数におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2013-7386 2014-06-4 14:46 2013-04-25 Show GitHub Exploit DB Packet Storm
218862 9.3 危険 University of California - BOINC の XML パーサにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2298 2014-06-4 14:45 2013-03-7 Show GitHub Exploit DB Packet Storm
218863 9.3 危険 University of California - BOINC におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2019 2014-06-4 14:45 2013-04-28 Show GitHub Exploit DB Packet Storm
218864 5 警告 University of California - BOINC におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5280 2014-06-4 14:45 2011-11-6 Show GitHub Exploit DB Packet Storm
218865 7.5 危険 XOOPS - XOOPS 用 Glossaire モジュールの glossaire-aff.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3935 2014-06-4 14:35 2014-05-19 Show GitHub Exploit DB Packet Storm
218866 7.5 危険 PHPNUKE - PHP-Nuke 用 Submit News モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3934 2014-06-4 13:59 2014-05-24 Show GitHub Exploit DB Packet Storm
218867 5 警告 OpenStack - OpenStack Identity におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2014 2014-06-4 12:12 2013-02-21 Show GitHub Exploit DB Packet Storm
218868 5 警告 MediaWiki - MediaWiki の maintenance/mwdoc-filter.php における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1818 2014-06-4 12:08 2013-03-4 Show GitHub Exploit DB Packet Storm
218869 6.8 警告 MediaWiki - MediaWiki 用 CentralAuth 拡張機能における Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2012-5395 2014-06-4 12:08 2012-11-30 Show GitHub Exploit DB Packet Storm
218870 6.8 警告 MediaWiki - MediaWiki の Special:UserLogin における Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2012-5391 2014-06-4 12:08 2012-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291431 9.8 CRITICAL
Network 		foswiki foswiki Foswiki before 1.1.8 contains a code injection vulnerability in the MAKETEXT macro. CWE-94
Code Injection 		CVE-2013-1666 2024-11-21 10:50 2019-11-2 Show GitHub Exploit DB Packet Storm
291432 8.8 HIGH
Network 		call-cc chicken Multiple buffer overflows in the (1) R5RS char-ready, (2) tcp-accept-ready, and (3) file-select procedures in Chicken through 4.8.0.3 allows attackers to cause a denial of service (crash) by opening … CWE-120
Classic Buffer Overflow 		CVE-2013-2075 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291433 8.8 HIGH
Network 		call-cc
debian 		chicken
debian_linux 		OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0. CWE-78
OS Command  		CVE-2013-2024 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291434 7.3 HIGH
Local 		autojump_project
debian 		autojump
debian_linux 		autojump before 21.5.8 allows local users to gain privileges via a Trojan horse custom_install directory in the current working directory. CWE-269
 Improper Privilege Management 		CVE-2013-2012 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291435 6.1 MEDIUM
Network 		mediawiki
debian 		mediawiki
debian_linux 		A cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.5 and 1.20.x before 1.20.4 and allows remote attackers to inject arbitrary web script or HTML via Lua function names. CWE-79
Cross-site Scripting 		CVE-2013-1951 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291436 3.3 LOW
Local 		ruby-lang ruby193 ruby193 uses an insecure LD_LIBRARY_PATH setting. CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2013-1945 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291437 5.4 MEDIUM
Network 		mantisbt
debian 		mantisbt
debian_linux 		A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2013-1934 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291438 5.4 MEDIUM
Network 		mantisbt mantisbt A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via a p… CWE-79
Cross-site Scripting 		CVE-2013-1932 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291439 6.1 MEDIUM
Network 		mantisbt
fedoraproject 		mantisbt
fedora 		A cross-site scripting (XSS) vulnerability in MantisBT 1.2.14 allows remote attackers to inject arbitrary web script or HTML via a version, related to deleting a version. CWE-79
Cross-site Scripting 		CVE-2013-1931 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm
291440 4.3 MEDIUM
Network 		mantisbt
fedoraproject 		mantisbt
fedora 		MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues. CWE-20
 Improper Input Validation  		CVE-2013-1930 2024-11-21 10:50 2019-11-1 Show GitHub Exploit DB Packet Storm