Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219391 5 警告 MediaWiki - MediaWiki の maintenance/mwdoc-filter.php における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1818 2014-06-4 12:08 2013-03-4 Show GitHub Exploit DB Packet Storm
219392 6.8 警告 MediaWiki - MediaWiki 用 CentralAuth 拡張機能における Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2012-5395 2014-06-4 12:08 2012-11-30 Show GitHub Exploit DB Packet Storm
219393 6.8 警告 MediaWiki - MediaWiki の Special:UserLogin における Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2012-5391 2014-06-4 12:08 2012-11-30 Show GitHub Exploit DB Packet Storm
219394 7.5 危険 CoSoSys Ltd - CoSoSys Endpoint Protector 4 の wsf/webservice.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3932
SEC Consult Vulnerability Lab Security Advisory < 20140521-0 > 		2014-06-4 11:38 2014-05-21 Show GitHub Exploit DB Packet Storm
219395 5.8 警告 Daniel Korte - Drupal 用 Node Access Keys モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4596 2014-06-4 11:08 2013-11-1 Show GitHub Exploit DB Packet Storm
219396 3.5 注意 New Signature - Drupal 用 AddressField Tokens モジュールの address コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3933 2014-06-4 11:08 2014-05-14 Show GitHub Exploit DB Packet Storm
219397 5 警告 Cogent Real-Time Systems Inc. - Cogent DataHub における平文のパスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-2354 2014-06-3 18:18 2014-04-29 Show GitHub Exploit DB Packet Storm
219398 4.3 警告 Cogent Real-Time Systems Inc. - Cogent DataHub におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2353 2014-06-3 18:17 2014-04-29 Show GitHub Exploit DB Packet Storm
219399 6.4 警告 Cogent Real-Time Systems Inc. - Cogent DataHub におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2352 2014-06-3 18:17 2014-04-29 Show GitHub Exploit DB Packet Storm
219400 2.1 注意 Triangle MicroWorks - Triangle MicroWorks SCADA Data Gateway におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2343 2014-06-3 17:51 2014-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291261 - cisco identity_services_engine_software The Sponsor Portal in Cisco Identity Services Engine (ISE) 1.2 and earlier does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attack… CWE-20
 Improper Input Validation  		CVE-2013-5523 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
291262 - cisco ios The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh… NVD-CWE-noinfo
CVE-2013-5499 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
291263 - joomla joomla\! administrator/components/com_media/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote authenticated users or remote attackers to bypass intended … CWE-20
 Improper Input Validation  		CVE-2013-5576 2024-11-21 10:57 2013-10-9 Show GitHub Exploit DB Packet Storm
291264 - adobe robohelp MDBMS.dll in Adobe RoboHelp 10 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5327 2024-11-21 10:57 2013-10-9 Show GitHub Exploit DB Packet Storm
291265 - adobe acrobat
acrobat_reader 		Adobe Reader and Acrobat 11.x before 11.0.05 on Windows allow remote attackers to execute arbitrary JavaScript code in a javascript: URL via a crafted PDF document. CWE-94
Code Injection 		CVE-2013-5325 2024-11-21 10:57 2013-10-9 Show GitHub Exploit DB Packet Storm
291266 - ibm aix Multiple buffer overflows in (1) mkque and (2) mkquedev in bos.rte.printers in IBM AIX 6.1 and 7.1 allow local users to gain privileges by leveraging printq group membership. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5419 2024-11-21 10:57 2013-10-4 Show GitHub Exploit DB Packet Storm
291267 - apple mac_os_x Directory Services in Apple Mac OS X before 10.8.5 Supplemental Update allows local users to bypass password-based authentication and modify arbitrary Directory Services records via unspecified vecto… CWE-287
Improper Authentication 		CVE-2013-5163 2024-11-21 10:57 2013-10-4 Show GitHub Exploit DB Packet Storm
291268 - watchguard server_center Multiple untrusted search path vulnerabilities in (1) Watchguard Log Collector (wlcollector.exe) and (2) Watchguard WebBlocker Server (wbserver.exe) in WatchGuard Server Center 11.7.4, 11.7.3, and po… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5701 2024-11-21 10:57 2013-10-4 Show GitHub Exploit DB Packet Storm
291269 - open-xchange open-xchange_appsuite Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange AppSuite before 7.2.2 allow remote authenticated users to inject arbitrary web script or HTML via (1) content with the text/xml MIM… CWE-79
Cross-site Scripting 		CVE-2013-5690 2024-11-21 10:57 2013-10-4 Show GitHub Exploit DB Packet Storm
291270 - cisco wireless_lan_controller Cross-site scripting (XSS) vulnerability in the management interface on Cisco Wireless LAN Controller (WLC) devices allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a… CWE-79
Cross-site Scripting 		CVE-2013-5519 2024-11-21 10:57 2013-10-3 Show GitHub Exploit DB Packet Storm