Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219491 5 警告 D-Link Systems, Inc. - D-Link DIR-601 Wireless N150 Home Router のファームウェアにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4821 2014-06-24 11:04 2011-12-5 Show GitHub Exploit DB Packet Storm
219492 7.5 危険 Ubisoft - Ubisoft Rayman Legends におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-4334 2014-06-23 16:28 2014-06-17 Show GitHub Exploit DB Packet Storm
219493 6.8 警告 ZTE - ZTE ZXV10 W300 ルータのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-4155 2014-06-23 16:06 2014-05-15 Show GitHub Exploit DB Packet Storm
219494 4.3 警告 Apache Software Foundation - Apache Open For Business Project におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1621 2014-06-23 15:28 2012-04-15 Show GitHub Exploit DB Packet Storm
219495 5 警告 Apache Software Foundation - Apache MyFaces Core の MyFaces JavaServer Faces におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4367 2014-06-23 15:26 2011-11-4 Show GitHub Exploit DB Packet Storm
219496 7.8 危険 Belkin International - Belkin N150 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2962 2014-06-23 13:52 2014-06-18 Show GitHub Exploit DB Packet Storm
219497 5.5 警告 F5 Networks - F5 ARX Data Manager に SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2949 2014-06-23 13:52 2014-06-17 Show GitHub Exploit DB Packet Storm
219498 4 警告 東日本旅客鉄道株式会社 - Android 版アプリ「JR東日本アプリ」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2014-2001 2014-06-23 13:51 2014-06-18 Show GitHub Exploit DB Packet Storm
219499 2.6 注意 エヌ・ティ・ティ・コミュニケーションズ株式会社 - Android 版アプリ「050 plus」における情報管理不備の脆弱性 CWE-200
情報漏えい 		CVE-2014-2000 2014-06-23 13:51 2014-06-17 Show GitHub Exploit DB Packet Storm
219500 4.3 警告 Real Time Logic - BarracudaDrive におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4335 2014-06-23 13:47 2014-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291491 6.5 MEDIUM
Network 		google chrome Google Chrome caches TLS sessions before certificate validation occurs. CWE-295
Improper Certificate Validation  		CVE-2013-6662 2024-11-21 10:59 2017-04-14 Show GitHub Exploit DB Packet Storm
291492 7.5 HIGH
Network 		google skia SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash). NVD-CWE-noinfo
CVE-2013-6648 2024-11-21 10:59 2017-04-14 Show GitHub Exploit DB Packet Storm
291493 9.8 CRITICAL
Network 		google chrome A use-after-free in AnimationController::endAnimationUpdate in Google Chrome. CWE-416
 Use After Free 		CVE-2013-6647 2024-11-21 10:59 2017-04-12 Show GitHub Exploit DB Packet Storm
291494 3.1 LOW
Network 		cloudera cdh The JobHistory Server in Cloudera CDH 4.x before 4.6.0 and 5.x before 5.0.0 Beta 2, when using MRv2/YARN with HTTP authentication, allows remote authenticated users to obtain sensitive job informatio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6446 2024-11-21 10:59 2017-03-24 Show GitHub Exploit DB Packet Storm
291495 - php
suse 		php
linux_enterprise_server 		The default soap.wsdl_cache_dir setting in (1) php.ini-production and (2) php.ini-development in PHP through 5.6.7 specifies the /tmp directory, which makes it easier for local users to conduct WSDL … CWE-74
Injection 		CVE-2013-6501 2024-11-21 10:59 2015-03-30 Show GitHub Exploit DB Packet Storm
291496 - websvn
debian 		websvn
debian_linux 		WebSVN 2.3.3 allows remote authenticated users to read arbitrary files via a symlink attack in a commit. CWE-200
Information Exposure 		CVE-2013-6892 2024-11-21 10:59 2015-01-22 Show GitHub Exploit DB Packet Storm
291497 - phpthumb_project phpthumb The default configuration of phpThumb before 1.7.12 has a false value for the disable_debug option, which allows remote attackers to conduct Server-Side Request Forgery (SSRF) attacks via the src par… NVD-CWE-Other
CVE-2013-6919 2024-11-21 10:59 2014-12-28 Show GitHub Exploit DB Packet Storm
291498 - rpm
debian 		rpm
debian_linux 		Race condition in RPM 4.11.1 and earlier allows remote attackers to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the sig… CWE-74
Injection 		CVE-2013-6435 2024-11-21 10:59 2014-12-17 Show GitHub Exploit DB Packet Storm
291499 - fedup_project fedup fedup 0.9.0 in Fedora 19, 20, and 21 uses a temporary directory with a static name for its download cache, which allows local users to cause a denial of service (prevention of system updates). CWE-17
Code 		CVE-2013-6494 2024-11-21 10:59 2014-12-2 Show GitHub Exploit DB Packet Storm
291500 - clamav clamav clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service (crash) as demonstrated by the jwplayer.js file. CWE-17
Code 		CVE-2013-6497 2024-11-21 10:59 2014-12-2 Show GitHub Exploit DB Packet Storm