Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219851	3.5	注意	Eugene Pankov	-	Eugene Pankov Ajenti の plugins/main/content/js/ajenti.coffee におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2260	2014-05-2 15:15	2014-01-16	Show	GitHub Exploit DB Packet Storm

219852	7.2	危険	Super Project	-	Super の super.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0470	2014-05-2 15:10	2014-04-28	Show	GitHub Exploit DB Packet Storm

219853	9	危険	フォーティネット	-	FortiGuard FortiAuthenticator における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6990	2014-05-2 15:07	2013-12-15	Show	GitHub Exploit DB Packet Storm

219854	6.5	警告	ブルーコートシステムズ	-	Blue Coat Content Analysis System のコマンドラインインターフェースにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-2565	2014-05-2 15:05	2014-04-4	Show	GitHub Exploit DB Packet Storm

219855	5	警告	レッドハット	-	Red Hat Enterprise MRG で使用される Cumin における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-6445	2014-05-2 14:55	2013-11-4	Show	GitHub Exploit DB Packet Storm

219856	9.3	危険	Debian Canonical	-	dpkg の解凍機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-0471	2014-05-2 14:54	2014-04-28	Show	GitHub Exploit DB Packet Storm

219857	5	警告	TIBCO Software	-	複数の TIBCO 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2545	2014-05-2 14:52	2014-04-29	Show	GitHub Exploit DB Packet Storm

219858	7.5	危険	Igor Sysoev	-	nginx の ngx_http_spdy_module モジュールの SPDY の実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0088	2014-05-2 14:42	2014-03-4	Show	GitHub Exploit DB Packet Storm

219859	4.3	警告	MediaWiki	-	MediaWiki の includes/actions/InfoAction.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2853	2014-05-2 12:01	2014-03-29	Show	GitHub Exploit DB Packet Storm

219860	6.8	警告	シスコシステムズ	-	Cisco WebEx Meetings Server の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-2186	2014-05-2 11:41	2014-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293871	-	apple microsoft	itunes windows_xp	WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related …	CWE-399 Resource Management Errors	CVE-2013-0992	2024-11-21 10:48	2013-05-20	Show	GitHub Exploit DB Packet Storm

293872	-	apple	itunes	WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related …	CWE-399 Resource Management Errors	CVE-2013-0991	2024-11-21 10:48	2013-05-20	Show	GitHub Exploit DB Packet Storm

293873	-	mozilla	firefox thunderbird thunderbird_esr	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allow remo…	NVD-CWE-noinfo	CVE-2013-0801	2024-11-21 10:48	2013-05-16	Show	GitHub Exploit DB Packet Storm

293874	-	microsoft	internet_explorer	Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Ex…	CWE-416 Use After Free	CVE-2013-0811	2024-11-21 10:48	2013-05-15	Show	GitHub Exploit DB Packet Storm

293875	-	cisco	ios	The crypto engine process in Cisco IOS on Aggregation Services Router (ASR) Route Processor 2 does not properly manage memory, which allows local users to cause a denial of service (route processor c…	CWE-399 Resource Management Errors	CVE-2013-1136	2024-11-21 10:48	2013-05-13	Show	GitHub Exploit DB Packet Storm

293876	-	emc	alphastor	Buffer overflow in the Library Control Program (LCP) in EMC AlphaStor 4.0 before build 910 allows remote attackers to execute arbitrary code via crafted commands.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0946	2024-11-21 10:48	2013-05-10	Show	GitHub Exploit DB Packet Storm

293877	-	emc	documentum_webtop documentum_records_manager documentum_wdk documentum_taskspace	EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive info…	CWE-20 Improper Input Validation	CVE-2013-0939	2024-11-21 10:48	2013-05-10	Show	GitHub Exploit DB Packet Storm

293878	-	emc	documentum_webtop documentum_records_manager documentum_wdk documentum_taskspace	Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 all…	CWE-79 Cross-site Scripting	CVE-2013-0938	2024-11-21 10:48	2013-05-10	Show	GitHub Exploit DB Packet Storm

293879	-	emc	documentum_webtop documentum_records_manager documentum_wdk documentum_taskspace	Session fixation vulnerability in EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allows remote…	CWE-287 Improper Authentication	CVE-2013-0937	2024-11-21 10:48	2013-05-10	Show	GitHub Exploit DB Packet Storm

293880	-	invensys	wonderware_information_server	Cross-site scripting (XSS) vulnerability in Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote attackers to inject arbitrary web script or HTML via un…	CWE-79 Cross-site Scripting	CVE-2013-0688	2024-11-21 10:48	2013-05-9	Show	GitHub Exploit DB Packet Storm