Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219761	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品の ShellExecute API における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1807	2014-05-15 14:27	2014-05-13	Show	GitHub Exploit DB Packet Storm

219762	10	危険	マイクロソフト	-	Microsoft .NET Framework の .NET Remoting の実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-1806	2014-05-15 14:26	2014-05-13	Show	GitHub Exploit DB Packet Storm

219763	6.8	警告	マイクロソフト	-	複数の Microsoft Windows 製品のグループポリシーの実装における重要な認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-1812	2014-05-15 14:25	2014-05-13	Show	GitHub Exploit DB Packet Storm

219764	6.8	警告	マイクロソフト	-	Microsoft Office の MSCOMCTL ライブラリにおける ASLR 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1809	2014-05-15 14:25	2014-05-13	Show	GitHub Exploit DB Packet Storm

219765	4.3	警告	マイクロソフト	-	Microsoft Office 2013 における重要なトークン情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-1808	2014-05-15 14:24	2014-05-13	Show	GitHub Exploit DB Packet Storm

219766	4.3	警告	マイクロソフト	-	複数の Microsoft 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1754	2014-05-15 14:21	2014-05-13	Show	GitHub Exploit DB Packet Storm

219767	9	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-0251	2014-05-15 14:21	2014-05-13	Show	GitHub Exploit DB Packet Storm

219768	5	警告	Haxx アップル Canonical	-	cURL および libcurl の cookie.c における Cookie を盗まれる脆弱性	CWE-200 情報漏えい	CVE-2013-1944	2014-05-14 18:45	2013-04-12	Show	GitHub Exploit DB Packet Storm

219769	4.3	警告	FreeType Project	-	FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5670	2014-05-14 18:44	2012-12-20	Show	GitHub Exploit DB Packet Storm

219770	4.3	警告	FreeType Project	-	FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5669	2014-05-14 18:43	2012-12-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294071	8.8	HIGH Network	vivotek	pt7135_firmware	A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary co…	CWE-78 OS Command	CVE-2013-1598	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

294072	6.5	MEDIUM Network	vivotek	pt7135_firmware	A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials.	CWE-22 Path Traversal	CVE-2013-1597	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

294073	5.3	MEDIUM Network	vivotek	pt7135_firmware	An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554.	CWE-287 Improper Authentication	CVE-2013-1596	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

294074	9.8	CRITICAL Network	vivotek	pt7135_firmware	A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote …	CWE-120 Classic Buffer Overflow	CVE-2013-1595	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

294075	7.5	HIGH Network	vivotek	pt7135_firmware	An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text.	CWE-200 Information Exposure	CVE-2013-1594	2024-11-21 10:49	2020-01-25	Show	GitHub Exploit DB Packet Storm

294076	7.5	HIGH Network	sap	netweaver	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server pack…	CWE-129 Improper Validation of Array Index	CVE-2013-1593	2024-11-21 10:49	2020-01-24	Show	GitHub Exploit DB Packet Storm

294077	9.8	CRITICAL Network	sap	netweaver	A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in…	CWE-120 Classic Buffer Overflow	CVE-2013-1592	2024-11-21 10:49	2020-01-24	Show	GitHub Exploit DB Packet Storm

294078	6.1	MEDIUM Network	get-simple	getsimple_cms	Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS before 3.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to backup-edit.php; (2) title …	CWE-79 Cross-site Scripting	CVE-2013-1420	2024-11-21 10:49	2020-01-3	Show	GitHub Exploit DB Packet Storm

294079	6.3	MEDIUM Local	debian canonical	lintian debian_linux ubuntu_linux	Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks.	CWE-59 Link Following	CVE-2013-1429	2024-11-21 10:49	2019-11-8	Show	GitHub Exploit DB Packet Storm

294080	6.1	MEDIUM Network	mahara	mahara	Cross-site Scripting (XSS) in Mahara before 1.5.9 and 1.6.x before 1.6.4 allows remote attackers to inject arbitrary web script or HTML via the TinyMCE editor.	CWE-79 Cross-site Scripting	CVE-2013-1426	2024-11-21 10:49	2019-11-8	Show	GitHub Exploit DB Packet Storm