Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219401 6.8 警告 シスコシステムズ - Cisco Emergency Responder の CERUserServlet ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2115 2014-04-7 14:57 2014-04-3 Show GitHub Exploit DB Packet Storm
219402 4.3 警告 シスコシステムズ - Cisco Emergency Responder の UserServlet におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2114 2014-04-7 14:57 2014-04-3 Show GitHub Exploit DB Packet Storm
219403 4.3 警告 DELL EMC (旧 EMC Corporation) - RSA Adaptive Authentication におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0638 2014-04-7 14:19 2014-04-1 Show GitHub Exploit DB Packet Storm
219404 4.3 警告 DELL EMC (旧 EMC Corporation) - RSA Adaptive Authentication のバックオフィスケース管理アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0637 2014-04-7 14:18 2014-04-1 Show GitHub Exploit DB Packet Storm
219405 9.3 危険 Core FTP - Core FTP におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3930 2014-04-7 14:03 2013-08-14 Show GitHub Exploit DB Packet Storm
219406 10 危険 サムスン - Samsung Kies の SyncService.dll ActiveX コントロールの PrepareSync メソッドにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-6429 2014-04-7 13:51 2012-12-27 Show GitHub Exploit DB Packet Storm
219407 7.8 危険 Schneider Electric - 複数の Schneider Electric OPC Factory Server 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0789 2014-04-7 12:30 2014-03-25 Show GitHub Exploit DB Packet Storm
219408 7.5 危険 The Foreman - Foreman における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5648 2014-04-7 12:21 2012-12-19 Show GitHub Exploit DB Packet Storm
219409 7.5 危険 Crowbar
Novell		 - SUSE Cloud 3 で使用される Crowbar Framework 用 Barclamp におけるセキュリティグループの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0592 2014-04-7 12:01 2014-03-27 Show GitHub Exploit DB Packet Storm
219410 4.3 警告 Robert Abramski - WordPress 用 Uploader プラグインの views/notify.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2287 2014-04-7 11:52 2013-03-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292211 - ibm lotus_inotes
lotus_domino 		Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka… CWE-79
Cross-site Scripting 		CVE-2013-0590 2024-11-21 10:47 2013-08-27 Show GitHub Exploit DB Packet Storm
292212 - ibm cognos_business_intelligence Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1 allows remote authenticated users to inject arbitrary web script … CWE-79
Cross-site Scripting 		CVE-2013-0586 2024-11-21 10:47 2013-08-27 Show GitHub Exploit DB Packet Storm
292213 - ibm websphere_commerce Multiple cross-site scripting (XSS) vulnerabilities in the (1) Accelerator JSPs, (2) Organization Administration Console JSPs, and (3) Administration Console JSPs in WebSphere Commerce Tools in IBM W… CWE-79
Cross-site Scripting 		CVE-2013-0566 2024-11-21 10:47 2013-08-27 Show GitHub Exploit DB Packet Storm
292214 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before 8.0.0.7, and 8.5 before 8.5.5.0, when OAuth is used, allows remote authenticated use… CWE-79
Cross-site Scripting 		CVE-2013-0597 2024-11-21 10:47 2013-08-22 Show GitHub Exploit DB Packet Storm
292215 - ibm global_console_manager_16_firmware
global_console_manager_32_firmware 		ping.php in Global Console Manager 16 (GCM16) and Global Console Manager 32 (GCM32) before 1.20.0.22575 on the IBM Avocent 1754 KVM switch allows remote authenticated users to execute arbitrary comma… CWE-20
 Improper Input Validation  		CVE-2013-0526 2024-11-21 10:47 2013-08-22 Show GitHub Exploit DB Packet Storm
292216 - ibm websphere_portal Multiple cross-site scripting (XSS) vulnerabilities in IBM WebSphere Portal before 8.0.0.1 CF07 allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) Portal, (2)… CWE-79
Cross-site Scripting 		CVE-2013-0587 2024-11-21 10:47 2013-08-16 Show GitHub Exploit DB Packet Storm
292217 - ibm infosphere_information_server Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Information Server through 8.5 FP3, 8.7 through FP2, and 9.1 allow remote authenticated users to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2013-0585 2024-11-21 10:47 2013-08-16 Show GitHub Exploit DB Packet Storm
292218 - ibm sterling_b2b_integrator IBM Sterling B2B Integrator 5.0 and 5.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted HTTP (1) Range or (2) Request-Range header. CWE-399
 Resource Management Errors 		CVE-2013-0494 2024-11-21 10:47 2013-08-10 Show GitHub Exploit DB Packet Storm
292219 - ibm informix_open_admin_tool Cross-site scripting (XSS) vulnerability in IBM Informix Open Admin Tool (OAT) 2.x and 3.x before 3.11.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. CWE-79
Cross-site Scripting 		CVE-2013-0492 2024-11-21 10:47 2013-08-10 Show GitHub Exploit DB Packet Storm
292220 - ibm api_management Unspecified vulnerability in IBM API Management 2.0 before 2.0.0.1 allows remote attackers to access tenant APIs, and consequently obtain sensitive information or modify data, via unknown vectors. NVD-CWE-noinfo
CVE-2013-0559 2024-11-21 10:47 2013-07-19 Show GitHub Exploit DB Packet Storm