Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 31, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 219361 | 10 | 危険 | マイクロソフト アドビシステムズ |
- | Adobe Flash Player におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2014-0510 | 2014-06-4 18:15 | 2014-03-14 | Show | GitHub Exploit DB Packet Storm |
| 219362 | 4.3 | 警告 | Huawei | - | Huawei E303 におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2014-2946 | 2014-06-4 17:55 | 2014-05-30 | Show | GitHub Exploit DB Packet Storm |
| 219363 | 9 | 危険 | クアンタム デル |
- | Dell ML6000 と Quantum Scalar i500 に OS コマンドインジェクションの脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2014-2959 | 2014-06-4 17:40 | 2014-05-30 | Show | GitHub Exploit DB Packet Storm |
| 219364 | 4.3 | 警告 | Sergio Martin Morillas | - | Alfresco Enterprise に複数のクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-2939 | 2014-06-4 17:03 | 2014-05-28 | Show | GitHub Exploit DB Packet Storm |
| 219365 | 7.5 | 危険 | Ajay D'Souza | - | WordPress 用 Contextual Related Posts プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-3937 | 2014-06-4 16:18 | 2014-06-2 | Show | GitHub Exploit DB Packet Storm |
| 219366 | 6.8 | 警告 | Ajay D'Souza | - | WordPress 用 Contextual Related Posts プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-2710 | 2014-06-4 16:17 | 2013-05-8 | Show | GitHub Exploit DB Packet Storm |
| 219367 | 6.8 | 警告 | Zemanta | - | WordPress 用 WordPress Related Posts プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3476 | 2014-06-4 16:08 | 2013-05-14 | Show | GitHub Exploit DB Packet Storm |
| 219368 | 6.8 | 警告 | Zemanta | - | WordPress 用 Related Posts プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3257 | 2014-06-4 16:07 | 2013-05-14 | Show | GitHub Exploit DB Packet Storm |
| 219369 | 6.8 | 警告 | bufferapp | - | WordPress 用 Digg Digg プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3258 | 2014-06-4 16:07 | 2013-05-14 | Show | GitHub Exploit DB Packet Storm |
| 219370 | 4.3 | 警告 | レッドハット | - | Red Hat Enterprise Linux OpenStack Platform で使用される OpenStack Heat Templates における任意のパッケージをインストールされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2014-0042 | 2014-06-4 15:52 | 2014-05-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 291261 | 9.8 |
CRITICAL
Network |
netgear |
wnr3500u_firmware wnr3500l_firmware |
Symlink Traversal vulnerability in NETGEAR WNR3500U and WNR3500L due to misconfiguration in the SMB service. |
CWE-22
Path Traversal |
CVE-2013-4657 | 2024-11-21 10:56 | 2019-11-14 | Show | GitHub Exploit DB Packet Storm |
| 291262 | 9.8 |
CRITICAL
Network |
asus |
rt-ac66u_firmware rt-n56u_firmware |
Symlink Traversal vulnerability in ASUS RT-AC66U and RT-N56U due to misconfiguration in the SMB service. |
CWE-22
Path Traversal |
CVE-2013-4656 | 2024-11-21 10:56 | 2019-11-14 | Show | GitHub Exploit DB Packet Storm |
| 291263 | 8.1 |
HIGH
Network |
sensiolabs fedoraproject redhat |
symfony fedora enterprise_linux |
php-symfony2-Validator has loss of information during serialization |
CWE-20
Improper Input Validation |
CVE-2013-4751 | 2024-11-21 10:56 | 2019-11-1 | Show | GitHub Exploit DB Packet Storm |
| 291264 | 8.8 |
HIGH
Network |
tp-link | tl-wdr4300_firmware | TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities. |
CWE-352
Origin Validation Error |
CVE-2013-4848 | 2024-11-21 10:56 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 291265 | 9.8 |
CRITICAL
Network |
linksys | ea6500_firmware | Linksys EA6500 has SMB Symlink Traversal allowing symbolic links to be created to locations outside of the Samba share. |
CWE-22
Path Traversal |
CVE-2013-4658 | 2024-11-21 10:56 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 291266 | 9.8 |
CRITICAL
Network |
dlink | dir-865l_firmware | D-Link DIR-865L has PHP File Inclusion in the router xml file. |
CWE-91
Blind XPath Injection |
CVE-2013-4857 | 2024-11-21 10:56 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 291267 | 6.5 |
MEDIUM
Adjacent |
dlink | dir-865l_firmware | D-Link DIR-865L has Information Disclosure. |
CWE-200
Information Exposure |
CVE-2013-4856 | 2024-11-21 10:56 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 291268 | 8.8 |
HIGH
Adjacent |
dlink | dir-865l_firmware | D-Link DIR-865L has SMB Symlink Traversal due to misconfiguration in the SMB service allowing symbolic links to be created to locations outside of the Samba share. |
CWE-22
Path Traversal |
CVE-2013-4855 | 2024-11-21 10:56 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 291269 | 6.1 |
MEDIUM
Network |
codeigniter | codeigniter | The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag. |
CWE-79
Cross-site Scripting |
CVE-2013-4891 | 2024-11-21 10:56 | 2018-02-22 | Show | GitHub Exploit DB Packet Storm |
| 291270 | 9.8 |
CRITICAL
Network |
asus trendnet |
rt-ac66u_firmware tew-812dru_firmware |
Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U an… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-4659 | 2024-11-21 10:56 | 2017-03-14 | Show | GitHub Exploit DB Packet Storm |