Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219981	5	警告	IBM	-	IBM Sametime の Meeting Server における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-3867	2014-05-28 14:29	2014-05-21	Show	GitHub Exploit DB Packet Storm

219982	4.3	警告	IBM	-	IBM Sametime の Meeting Server におけるユーザの検索アクションを行われる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0906	2014-05-28 14:28	2014-05-21	Show	GitHub Exploit DB Packet Storm

219983	5	警告	IBM	-	IBM Sametime の Meeting Server における Cookie をキャプチャされる脆弱性	CWE-200 情報漏えい	CVE-2013-3984	2014-05-28 14:28	2013-06-7	Show	GitHub Exploit DB Packet Storm

219984	5	警告	IBM	-	IBM Sametime の Meeting Server における不特定のインストール情報および技術データを取得される脆弱性	CWE-200 情報漏えい	CVE-2013-3982	2014-05-28 14:27	2013-06-7	Show	GitHub Exploit DB Packet Storm

219985	5	警告	IBM	-	IBM Sametime の Meeting Server における任意のユーザのアバターの写真をダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3981	2014-05-28 14:27	2013-06-7	Show	GitHub Exploit DB Packet Storm

219986	5	警告	IBM	-	IBM Sametime の Meeting Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3980	2014-05-28 14:26	2013-06-7	Show	GitHub Exploit DB Packet Storm

219987	4.3	警告	IBM	-	IBM Sametime の Meeting Server におけるユーザによって所有されている会議室を確定される脆弱性	CWE-287 不適切な認証	CVE-2013-3977	2014-05-28 14:25	2013-06-7	Show	GitHub Exploit DB Packet Storm

219988	5	警告	IBM	-	IBM Sametime の Meeting Server におけるユーザ名を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-3975	2014-05-28 14:25	2013-06-7	Show	GitHub Exploit DB Packet Storm

219989	2.9	注意	IBM	-	IBM Sametime の Meeting Server におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2013-3046	2014-05-28 14:23	2013-04-12	Show	GitHub Exploit DB Packet Storm

219990	4.3	警告	Nullsoft	-	Winamp におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-3442	2014-05-28 13:49	2014-05-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296621	8.8	HIGH Network	apache	vcl	The Privileges portion of the web GUI and the XMLRPC API in Apache VCL 2.3.x before 2.3.2, 2.2.x before 2.2.2 and 2.1 allow remote authenticated users with nodeAdmin, manageGroup, resourceGrant, or u…	CWE-264 CWE-20 Permissions, Privileges, and Access Controls Improper Input Validation	CVE-2013-0267	2024-11-21 10:47	2018-02-22	Show	GitHub Exploit DB Packet Storm

296622	-		webfs	webfs	The Gentoo init script for webfs uses world-readable permissions for /var/log/webfsd.log, which allows local users to have unspecified impact by reading the file.	CWE-200 Information Exposure	CVE-2013-0347	2024-11-21 10:47	2014-11-16	Show	GitHub Exploit DB Packet Storm

296623	-		redhat	freeipa	The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (cr…	CWE-20 Improper Input Validation	CVE-2013-0336	2024-11-21 10:47	2014-11-4	Show	GitHub Exploit DB Packet Storm

296624	-		bundler opensuse fedoraproject	bundler opensuse fedora	Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.	CWE-20 Improper Input Validation	CVE-2013-0334	2024-11-21 10:47	2014-10-31	Show	GitHub Exploit DB Packet Storm

296625	-		corosync	corosync	The init_nss_hash function in exec/totemcrypto.c in Corosync 2.0 before 2.3 does not properly initialize the HMAC key, which allows remote attackers to cause a denial of service (crash) via a crafted…	NVD-CWE-Other	CVE-2013-0250	2024-11-21 10:47	2014-06-6	Show	GitHub Exploit DB Packet Storm

296626	-		owncloud	owncloud	ownCloud Server before 4.5.7 does not properly check ownership of calendars, which allows remote authenticated users to read arbitrary calendars via the calid parameter to /apps/calendar/export.php. …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0304	2024-11-21 10:47	2014-06-6	Show	GitHub Exploit DB Packet Storm

296627	-		owncloud	owncloud	Unspecified vulnerability in ownCloud Server before 4.0.12 allows remote attackers to obtain sensitive information via unspecified vectors related to "inclusion of the Amazon SDK testing suite." NOTE…	NVD-CWE-noinfo	CVE-2013-0302	2024-11-21 10:47	2014-06-6	Show	GitHub Exploit DB Packet Storm

296628	-		owncloud	owncloud	settings/personal.php in ownCloud 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via crafted mount point settings.	CWE-94 Code Injection	CVE-2013-0204	2024-11-21 10:47	2014-06-4	Show	GitHub Exploit DB Packet Storm

296629	-		lucas_clemente_vella	libpam-pgsql	libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.	CWE-287 Improper Authentication	CVE-2013-0191	2024-11-21 10:47	2014-06-3	Show	GitHub Exploit DB Packet Storm

296630	-		redhat	freeipa	The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNTTrustAuthIncoming and (2) ipaNTTrustAuthOutgoing attributes, which allow remote attackers to obtain the Cross-…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0199	2024-11-21 10:47	2014-05-29	Show	GitHub Exploit DB Packet Storm