Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219861 2.6 注意 Novell - Novell Open Enterprise Server の Novell Client for Linux の /opt/novell/ncl/bin/nwrights における S 権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-0595 2014-05-9 12:28 2014-04-21 Show GitHub Exploit DB Packet Storm
219862 7.6 危険 シマンテック - Symantec Critical System Protection におけるポリシー設定を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5016 2014-05-9 12:14 2013-07-29 Show GitHub Exploit DB Packet Storm
219863 4.3 警告 シスコシステムズ - Telco および Wireless 用 Cisco Broadcast Access Center の Web フレームワークにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2191 2014-05-8 18:44 2014-05-7 Show GitHub Exploit DB Packet Storm
219864 6.8 警告 シスコシステムズ - Telco および Wireless 用 Cisco Broadcast Access Center の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2190 2014-05-8 18:44 2014-05-7 Show GitHub Exploit DB Packet Storm
219865 6.8 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアにおけるファイルを読まれる脆弱性 CWE-287
不適切な認証 		CVE-2014-2181 2014-05-8 18:44 2014-05-7 Show GitHub Exploit DB Packet Storm
219866 5 警告 シスコシステムズ - VMware 用 Cisco Nexus 1000V InterCloud における ACL 拒否のステートメントを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0685 2014-05-8 18:43 2014-05-6 Show GitHub Exploit DB Packet Storm
219867 4.6 警告 シスコシステムズ - Cisco Nexus 7000 スイッチ上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0684 2014-05-8 18:43 2014-05-6 Show GitHub Exploit DB Packet Storm
219868 5 警告 strongSwan - strongSwan におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-2891 2014-05-8 18:22 2014-05-5 Show GitHub Exploit DB Packet Storm
219869 3.5 注意 サイボウズ - サイボウズ ガルーンの電話メモにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-1988 2014-05-8 18:16 2014-04-30 Show GitHub Exploit DB Packet Storm
219870 3.5 注意 サイボウズ - サイボウズ ガルーンの API におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1989 2014-05-8 18:05 2014-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294051 - redhat
canonical
opensuse 		icedtea-web
ubuntu_linux
opensuse 		The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 allows remote attackers to execute arbitrary code via a crafted file that validates as both a GIF and a Java JAR file, aka "GIFAR." NVD-CWE-noinfo
CVE-2013-1927 2024-11-21 10:50 2013-04-30 Show GitHub Exploit DB Packet Storm
294052 - redhat
canonical
opensuse 		icedtea-web
ubuntu_linux
opensuse 		The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 uses the same class loader for applets with the same codebase path but from different domains, which allows remote attackers to obtain sensi… NVD-CWE-noinfo
CVE-2013-1926 2024-11-21 10:50 2013-04-30 Show GitHub Exploit DB Packet Storm
294053 - gnu glibc Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17 and earlier allows remote attackers to cause a denial of service (cra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1914 2024-11-21 10:50 2013-04-30 Show GitHub Exploit DB Packet Storm
294054 - linux
redhat 		linux_kernel
enterprise_linux
enterprise_mrg 		The ext4_orphan_del function in fs/ext4/namei.c in the Linux kernel before 3.7.3 does not properly handle orphan-list entries for non-journal filesystems, which allows physically proximate attackers … CWE-399
 Resource Management Errors 		CVE-2013-2015 2024-11-21 10:50 2013-04-29 Show GitHub Exploit DB Packet Storm
294055 - linux
redhat 		linux_kernel
enterprise_linux 		The do_video_set_spu_palette function in fs/compat_ioctl.c in the Linux kernel before 3.6.5 on unspecified architectures lacks a certain error check, which might allow local users to obtain sensitive… CWE-200
Information Exposure 		CVE-2013-1928 2024-11-21 10:50 2013-04-29 Show GitHub Exploit DB Packet Storm
294056 - xmlsoft libxml2 Multiple use-after-free vulnerabilities in libxml2 2.9.0 and possibly other versions might allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code v… CWE-399
 Resource Management Errors 		CVE-2013-1969 2024-11-21 10:50 2013-04-26 Show GitHub Exploit DB Packet Storm
294057 - blinkwebeffects social-media-widget Social Media Widget (social-media-widget) plugin 4.0 for WordPress contains an externally introduced modification (Trojan Horse), which allows remote attackers to force the upload of arbitrary files. NVD-CWE-noinfo
CVE-2013-1949 2024-11-21 10:50 2013-04-26 Show GitHub Exploit DB Packet Storm
294058 - rob_westgeest md2pdf converter.rb in the md2pdf gem 0.0.1 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename. NVD-CWE-noinfo
CVE-2013-1948 2024-11-21 10:50 2013-04-26 Show GitHub Exploit DB Packet Storm
294059 - kelly_d._redding kelredd-pruview kelredd-pruview gem 0.3.8 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename argument to (1) document.rb, (2) video.rb, or (3) video_imag… CWE-78
OS Command  		CVE-2013-1947 2024-11-21 10:50 2013-04-26 Show GitHub Exploit DB Packet Storm
294060 - documentcloud karteek-docsplit The extract_from_ocr function in lib/docsplit/text_extractor.rb in the Karteek Docsplit (karteek-docsplit) gem 0.5.4 for Ruby allows context-dependent attackers to execute arbitrary commands via shel… CWE-78
OS Command  		CVE-2013-1933 2024-11-21 10:50 2013-04-26 Show GitHub Exploit DB Packet Storm