Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218881 10 危険 Mozilla Foundation - Mozilla Firefox の mozilla::dom::workers::WorkerPrivateParent 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-1537 2014-06-12 17:54 2014-06-10 Show GitHub Exploit DB Packet Storm
218882 10 危険 Mozilla Foundation - Mozilla Firefox の PropertyProvider::FindJustificationRange 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-1536 2014-06-12 17:53 2014-06-10 Show GitHub Exploit DB Packet Storm
218883 10 危険 Mozilla Foundation - Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-1534 2014-06-12 17:53 2014-06-10 Show GitHub Exploit DB Packet Storm
218884 5.1 警告 マイクロソフト - 複数の Microsoft Windows 製品の Remote Desktop Protocol の実装における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-0296 2014-06-12 17:49 2014-06-10 Show GitHub Exploit DB Packet Storm
218885 6.8 警告 マイクロソフト - Internet Explorer 8 CMarkup における解放済みメモリ使用の脆弱性 CWE-399
CWE-Other
CVE-2014-1770 2014-06-12 17:44 2014-05-21 Show GitHub Exploit DB Packet Storm
218886 9.3 危険 マイクロソフト - Microsoft Word 2007 および Office 互換機能パックにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-2778 2014-06-12 17:30 2014-06-10 Show GitHub Exploit DB Packet Storm
218887 4.3 警告 マイクロソフト - Microsoft XML コアサービスにおけるクライアントシステム上のフルパス名およびフルパス名に埋め込まれたローカルユーザ名を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1816 2014-06-12 17:25 2014-06-10 Show GitHub Exploit DB Packet Storm
218888 5 警告 マイクロソフト - 複数の Microsoft Windows 製品の TCP の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1811 2014-06-12 17:22 2014-06-10 Show GitHub Exploit DB Packet Storm
218889 4.3 警告 マイクロソフト - Microsoft Lync Server 2010 および 2013 の Web コンポーネントサーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1823 2014-06-12 17:18 2014-06-10 Show GitHub Exploit DB Packet Storm
218890 9.3 危険 マイクロソフト - 複数の Microsoft 製品の GDI+ における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1818 2014-06-12 17:09 2014-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291081 7.8 HIGH
Local 		xnview xnview xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a R… CWE-787
 Out-of-bounds Write 		CVE-2013-3939 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291082 7.8 HIGH
Local 		xnview xnview Heap-based buffer overflow in xnview.exe in XnView before 2.13 allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file. CWE-787
 Out-of-bounds Write 		CVE-2013-3937 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291083 8.8 HIGH
Network 		jomres jomres SQL injection vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2013-3932 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291084 5.4 MEDIUM
Network 		jomres jomres Cross-site scripting (XSS) vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to inject arbitrary web… CWE-79
Cross-site Scripting 		CVE-2013-3931 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291085 7.8 HIGH
Local 		extensis mrsid Heap-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a levels header. CWE-787
 Out-of-bounds Write 		CVE-2013-3946 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291086 7.8 HIGH
Local 		extensis mrsid The MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a nband tag. CWE-20
 Improper Input Validation  		CVE-2013-3945 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291087 7.8 HIGH
Local 		extensis mrsid Stack-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via an IMAGE tag. CWE-787
 Out-of-bounds Write 		CVE-2013-3944 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291088 7.5 HIGH
Network 		supermicro
citrix 		smt_x9_firmware
smt_x8_firmware
netscaler_sdx_firmware
netscaler_firmware
netscaler_sd-wan_firmware 		Hardcoded WSMan credentials in Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before 3.15 (SMT_X9_315) and firmware for Supermicro X8 generat… CWE-522
 Insufficiently Protected Credentials 		CVE-2013-3620 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291089 6.1 MEDIUM
Network 		opsview opsview
opsview_core 		Multiple cross-site scripting (XSS) vulnerabilities in Opsview before 4.4.1 and Opsview Core before 20130522 allow remote attackers to inject arbitrary web script or HTML. CWE-79
Cross-site Scripting 		CVE-2013-3936 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291090 8.8 HIGH
Network 		opsview opsview
opsview_core 		Cross-site request forgery (CSRF) vulnerability in Opsview before 4.4.1 and Opsview Core before 20130522 allows remote attackers to hijack the authentication of administrators for requests that chang… CWE-352
 Origin Validation Error 		CVE-2013-3935 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm