Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219071 6.8 警告 IndiaNIC - WordPress 用 IndiaNIC Testimonial プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5672 2013-09-12 14:31 2013-09-1 Show GitHub Exploit DB Packet Storm
219072 4.3 警告 ImageMagick - ImageMagick の coders/gif.c 内の ReadGIFImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4298 2013-09-12 14:29 2013-08-5 Show GitHub Exploit DB Packet Storm
219073 5 警告 Fedora Project - 389 Directory Server の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4283 2013-09-12 14:16 2013-08-28 Show GitHub Exploit DB Packet Storm
219074 6.9 警告 GNOME Project - GNOME Display Manager における任意のディレクトリのパーミッションを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-4169 2013-09-12 13:42 2013-09-5 Show GitHub Exploit DB Packet Storm
219075 3.5 注意 AlienWP - Drupal 用 Hatch テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4138 2013-09-11 16:42 2013-07-10 Show GitHub Exploit DB Packet Storm
219076 7.2 危険 ソフォス - Sophos Web Appliance の /opt/cma/bin/clear_keys.pl の close_connections 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4984 2013-09-11 14:45 2013-09-9 Show GitHub Exploit DB Packet Storm
219077 7.5 危険 VMware - VMware ESX および ESXi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3657 2013-09-11 14:02 2013-09-6 Show GitHub Exploit DB Packet Storm
219078 6.4 警告 VMware - VMware ESX および ESXi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3658 2013-09-11 13:54 2013-09-6 Show GitHub Exploit DB Packet Storm
219079 4.3 警告 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5714 2013-09-11 13:51 2013-08-23 Show GitHub Exploit DB Packet Storm
219080 5 警告 Digium - 複数の Asterisk 製品の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5642 2013-09-11 13:50 2013-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278421 - apple mac_os_x
mac_os_x_server 		passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file. CWE-59
Link Following 		CVE-2005-2714 2018-10-20 00:33 2005-12-31 Show GitHub Exploit DB Packet Storm
278422 - apple quicktime Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file that causes a sign extension of the length element in a Pascal style s… CWE-189
Numeric Errors 		CVE-2005-2753 2018-10-20 00:33 2005-11-5 Show GitHub Exploit DB Packet Storm
278423 - apple quicktime Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file with "Improper movie attributes." CWE-189
Numeric Errors 		CVE-2005-2754 2018-10-20 00:33 2005-11-5 Show GitHub Exploit DB Packet Storm
278424 - apple quicktime Apple QuickTime Player before 7.0.3 allows user-assisted attackers to cause a denial of service (crash) via a crafted file with a missing movie attribute, which leads to a null dereference. NVD-CWE-Other
CVE-2005-2755 2018-10-20 00:33 2005-11-5 Show GitHub Exploit DB Packet Storm
278425 - apple quicktime Apple QuickTime before 7.0.3 allows user-assisted attackers to overwrite memory and execute arbitrary code via a crafted PICT file that triggers an overflow during expansion. NVD-CWE-Other
CVE-2005-2756 2018-10-20 00:33 2005-11-5 Show GitHub Exploit DB Packet Storm
278426 - ilia_alshanetsky fudforum The Avatar upload feature in FUD Forum before 2.7.0 does not properly verify uploaded files, which allows remote attackers to execute arbitrary PHP code via a file with a .php extension that contains… NVD-CWE-Other
CVE-2005-2781 2018-10-20 00:33 2005-09-3 Show GitHub Exploit DB Packet Storm
278427 - openbsd openssh sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to… NVD-CWE-Other
CVE-2005-2798 2018-10-20 00:33 2005-09-7 Show GitHub Exploit DB Packet Storm
278428 - flatnuke flatnuke Directory traversal vulnerability in FlatNuke 2.5.6 and possibly earlier allows remote attackers to read arbitrary files via ".." sequences and "%00" (trailing null byte) characters in the id paramet… NVD-CWE-Other
CVE-2005-2813 2018-10-20 00:33 2005-09-8 Show GitHub Exploit DB Packet Storm
278429 - mywebland mybloggie SQL injection vulnerability in login.php in myBloggie 2.1.3-beta and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NVD-CWE-Other
CVE-2005-2838 2018-10-20 00:33 2005-09-8 Show GitHub Exploit DB Packet Storm
278430 - winace winace Stack-based buffer overflow in the WinACE UNACEV2.DLL third-party compression utility before 2.6.0.0, as used in multiple products including (1) ALZip 5.51 through 6.11, (2) Servant Salamander 2.0 an… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-2856 2018-10-20 00:33 2005-09-8 Show GitHub Exploit DB Packet Storm