Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220021 10 危険 オラクル - Debian GNU/Linux および Ubuntu 上で稼動する OpenJDK における脆弱性 CWE-noinfo
情報不足 		CVE-2014-0462 2014-05-16 15:09 2014-04-24 Show GitHub Exploit DB Packet Storm
220022 6.8 警告 レッドハット - IcedTea6 および IcedTea-Web の Java Network Launching Protocol の実装におけるローカルファイルへのアクセスを許可される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2514 2014-05-16 14:47 2011-07-27 Show GitHub Exploit DB Packet Storm
220023 5 警告 レッドハット - IcedTea6 および IcedTea-Web の Java Network Launching Protocol の実装におけるユーザ名などを取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2513 2014-05-16 14:47 2011-07-27 Show GitHub Exploit DB Packet Storm
220024 6.9 警告 BMC Software - BMC PATROL for AIX における権限を取得される脆弱性 CWE-Other
その他 		CVE-2014-2591 2014-05-16 14:12 2014-04-9 Show GitHub Exploit DB Packet Storm
220025 6.8 警告 Open Assessment Technologies S.A. - Open Assessment Technologies TAO におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2989 2014-05-16 12:24 2014-05-7 Show GitHub Exploit DB Packet Storm
220026 10 危険 ShenZhen Foscam Intelligent Technology - Foscam IP camera における任意のカメラを偽装またはハイジャックされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-1849 2014-05-16 12:19 2014-05-8 Show GitHub Exploit DB Packet Storm
220027 6.8 警告 OpenVPN Technologies - OpenVPN Access Server の管理 Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2692 2014-05-16 12:18 2013-05-8 Show GitHub Exploit DB Packet Storm
220028 6.8 警告 Tips and Tricks HQ - WordPress 用 WordPress Simple Paypal Shopping Cart プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2705 2014-05-16 12:11 2013-06-5 Show GitHub Exploit DB Packet Storm
220029 4.3 警告 NetWebLogic - WordPress 用 Events Manager プラグインおよび Events Manager Pro プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1407 2014-05-16 12:10 2013-01-22 Show GitHub Exploit DB Packet Storm
220030 7.5 危険 Drupalauth Project - simpleSAMLphp 用 drupalauth モジュールの lib/Auth/Source/External.php における任意のユーザとして認証される脆弱性 CWE-287
不適切な認証 		CVE-2013-4552 2014-05-16 11:16 2013-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291551 - dell quest_one_password_manager The Dell Quest One Password Manager, possibly 5.0, allows remote attackers to bypass CAPTCHA protections and obtain sensitive information (user's full name) by sending a login request with a valid do… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6246 2024-11-21 10:58 2013-10-24 Show GitHub Exploit DB Packet Storm
291552 - sybase adaptive_server_enterprise Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3. 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to … NVD-CWE-noinfo
CVE-2013-6245 2024-11-21 10:58 2013-10-24 Show GitHub Exploit DB Packet Storm
291553 - sap netweaver The Live Update webdynpro application (webdynpro/dispatcher/sap.com/tc~slm~ui_lup/LUP) in SAP NetWeaver 7.31 and earlier allows remote attackers to read arbitrary files and directories via an XML doc… NVD-CWE-noinfo
CVE-2013-6244 2024-11-21 10:58 2013-10-24 Show GitHub Exploit DB Packet Storm
291554 - landing_pages_project landing_pages_plugin SQL injection vulnerability in the Landing Pages plugin 1.2.3, before 20131009, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the "post" parameter to index.p… CWE-89
SQL Injection 		CVE-2013-6243 2024-11-21 10:58 2013-10-24 Show GitHub Exploit DB Packet Storm
291555 - vmware vcenter_server Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote attackers to hijack web sessions and gain privileges via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5971 2024-11-21 10:58 2013-10-21 Show GitHub Exploit DB Packet Storm
291556 - vmware esx
esxi 		hostd-vmdb in VMware ESXi 4.0 through 5.0 and ESX 4.0 through 4.1 allows remote attackers to cause a denial of service (hostd-vmdb service outage) by modifying management traffic. CWE-20
 Improper Input Validation  		CVE-2013-5970 2024-11-21 10:58 2013-10-21 Show GitHub Exploit DB Packet Storm
291557 - vbulletin vbulletin The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid, htmldata[password], htmldata[confirmpassword], and htmldata[email] … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6129 2024-11-21 10:58 2013-10-19 Show GitHub Exploit DB Packet Storm
291558 - dlink dir-100 Stack-based buffer overflow in the RuntimeDiagnosticPing function in /bin/webs on D-Link DIR-100 routers might allow remote authenticated administrators to execute arbitrary commands via a long set/r… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6027 2024-11-21 10:58 2013-10-19 Show GitHub Exploit DB Packet Storm
291559 - dlink
alphanetworks
planex 		di-604s
tm-g5240
di-524up
di-604up
di-624s
di-604\+
dir-120
dir-100
vdsl_asl-55052
vdsl_asl-56552
brl-04r
brl-04cw
brl-04ur 		The web interface on D-Link DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, and TM-G5240 routers; Planex BRL-04R, BRL-04UR, and BRL-04CW routers; and Alpha Networks routers allows re… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6026 2024-11-21 10:58 2013-10-19 Show GitHub Exploit DB Packet Storm
291560 - sybase adaptive_server_enterprise The XMLParse procedure in SAP Sybase Adaptive Server Enterprise (ASE) 15.7 ESD 2 allows remote authenticated users to read arbitrary files via a SQL statement containing an XML document with an exter… CWE-94
Code Injection 		CVE-2013-6025 2024-11-21 10:58 2013-10-19 Show GitHub Exploit DB Packet Storm