Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219971 3.3 注意 npm, Inc. - Node Packaged Modules の lib/npm.js における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-4116 2014-04-25 14:26 2013-07-8 Show GitHub Exploit DB Packet Storm
219972 4.3 警告 Apache Software Foundation - Apache Archiva におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2187 2014-04-25 14:14 2013-02-19 Show GitHub Exploit DB Packet Storm
219973 3.3 注意 Jonathan Leung - Ruby 用 Show In Browser gem における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-2105 2014-04-25 14:06 2013-05-18 Show GitHub Exploit DB Packet Storm
219974 4.3 警告 k5n.us - Craig Knudsen WebCalendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1421 2014-04-25 13:57 2013-02-22 Show GitHub Exploit DB Packet Storm
219975 6.8 警告 PaperCut Software International Pty - Papercut MF および NG の管理 UI におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2659 2014-04-25 13:39 2014-04-10 Show GitHub Exploit DB Packet Storm
219976 4.3 警告 CJ Niemira - phpMyID の MyID.php の wrap_html 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2890 2014-04-25 12:26 2014-04-17 Show GitHub Exploit DB Packet Storm
219977 4.9 警告 アップル - Apple OS X のカーネルにおける ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-1322 2014-04-25 12:21 2014-04-22 Show GitHub Exploit DB Packet Storm
219978 3.3 注意 アップル - Apple OS X のパワーマネジメントにおける画面ロック状態への遷移を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1321 2014-04-25 12:21 2014-04-22 Show GitHub Exploit DB Packet Storm
219979 4.9 警告 アップル - 複数の Apple 製品の IOKit における ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-1320 2014-04-25 12:20 2014-04-22 Show GitHub Exploit DB Packet Storm
219980 5.8 警告 yaSSL - wolfSSL CyaSSL におけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-2900 2014-04-25 12:19 2014-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292101 - sierrawireless raven_x_ev-do_firmware
airlink_mp_at\&t
airlink_mp_at\&t_wifi
airlink_mp_bell
airlink_mp_bell_wifi
airlink_mp_row
airlink_mp_row_wifi
airlink_mp_sprint
airlink_mp_spri… 		The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) upd… CWE-255
Credentials Management 		CVE-2013-2819 2024-11-21 10:52 2014-01-16 Show GitHub Exploit DB Packet Storm
292102 - idleman leed Leed (Light Feed), possibly before 1.5 Stable, allows remote attackers to bypass authorization via vectors related to the (1) importForm, (2) importFeed, (3) addFavorite, or (4) removeFavorite action… CWE-20
 Improper Input Validation  		CVE-2013-2629 2024-11-21 10:52 2013-12-24 Show GitHub Exploit DB Packet Storm
292103 - novatech orion5_dnp_slave
orionlx_dnp_slave
orion5r_dnp_master
orion5r_dnp_slave
orionlx_dnp_master
orion5_dnp_master 		NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow physically pro… CWE-20
 Improper Input Validation  		CVE-2013-2822 2024-11-21 10:52 2013-12-21 Show GitHub Exploit DB Packet Storm
292104 - novatech orion5_dnp_slave
orionlx_dnp_slave
orion5r_dnp_master
orion5r_dnp_slave
orionlx_dnp_master
orion5_dnp_master 		NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow remote attacke… CWE-20
 Improper Input Validation  		CVE-2013-2821 2024-11-21 10:52 2013-12-21 Show GitHub Exploit DB Packet Storm
292105 - idleman leed Multiple cross-site request forgery (CSRF) vulnerabilities in action.php in Leed (Light Feed), possibly before 1.5 Stable, allow remote attackers to hijack the authentication of administrators for un… CWE-352
 Origin Validation Error 		CVE-2013-2628 2024-11-21 10:52 2013-12-21 Show GitHub Exploit DB Packet Storm
292106 - idleman leed SQL injection vulnerability in action.php in Leed (Light Feed), possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action. CWE-89
SQL Injection 		CVE-2013-2627 2024-11-21 10:52 2013-12-21 Show GitHub Exploit DB Packet Storm
292107 - cooperindustries smp_4_gateway_\(data_concentrator\)
smp_4\/dp_gateway_\(data_concentrator\)
smp_16_gateway_\(data_concentrator\) 		The DNP3 component in Cooper Power Systems SMP 4, 4/DP, and 16 gateways allows physically proximate attackers to cause a denial of service (reboot or link outage) via crafted input over a serial line. CWE-20
 Improper Input Validation  		CVE-2013-2816 2024-11-21 10:52 2013-12-18 Show GitHub Exploit DB Packet Storm
292108 - cooperindustries dnp3_master_opc_server Cooper Power Systems Cybectec DNP3 Master OPC Server allows remote attackers to cause a denial of service (unhandled exception and process crash) via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2013-2814 2024-11-21 10:52 2013-12-18 Show GitHub Exploit DB Packet Storm
292109 - cooperindustries smp_4_gateway_\(data_concentrator\)
smp_4\/dp_gateway_\(data_concentrator\)
smp_16_gateway_\(data_concentrator\) 		The DNP3 component in Cooper Power Systems SMP 4, 4/DP, and 16 gateways allows remote attackers to cause a denial of service (reboot or link outage) via a crafted DNP3 TCP packet. CWE-20
 Improper Input Validation  		CVE-2013-2813 2024-11-21 10:52 2013-12-18 Show GitHub Exploit DB Packet Storm
292110 - ibm rational_software_architect_design_manager
rhapsody_design_manager 		Directory traversal vulnerability in the client in IBM Rational Software Architect Design Manager and Rhapsody Design Manager 3.x and 4.x before 4.0.5 allows local users to read arbitrary files via v… CWE-22
Path Traversal 		CVE-2013-3043 2024-11-21 10:52 2013-12-15 Show GitHub Exploit DB Packet Storm