Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220031 6.8 警告 Lester Chan - WordPress 用 WP-PostViews プラグインのオプションの管理者ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3252 2014-04-14 18:26 2013-05-7 Show GitHub Exploit DB Packet Storm
220032 6.8 警告 Qian Qin - WordPress 用 qTranslate プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3251 2014-04-14 18:26 2013-06-4 Show GitHub Exploit DB Packet Storm
220033 6.8 警告 Jeremy Massel - WordPress 用 underConstruction プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2699 2014-04-14 18:26 2013-06-3 Show GitHub Exploit DB Packet Storm
220034 6.8 警告 Lester Chan - WordPress 用 WP-Print プラグインのオプションにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2693 2014-04-14 18:25 2013-04-5 Show GitHub Exploit DB Packet Storm
220035 6.8 警告 Dean Adjie Minwarie - WordPress 用 DVS Custom Notification プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4921 2014-04-14 18:24 2012-09-14 Show GitHub Exploit DB Packet Storm
220036 5.8 警告 kernel.org - Linux-PAM 用 pam_timestamp モジュールの pam_timestamp.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2583 2014-04-14 18:04 2014-03-26 Show GitHub Exploit DB Packet Storm
220037 7.5 危険 Pearson Education, Inc. - Pearson eSIS Enterprise Student Information System のパスワードリセット機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-1455 2014-04-14 17:52 2014-04-6 Show GitHub Exploit DB Packet Storm
220038 2.1 注意 CloudBees - CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2033 2014-04-14 17:38 2013-05-2 Show GitHub Exploit DB Packet Storm
220039 6.5 警告 レッドハット (KIE Group)
レッドハット		 - 複数の Red Hat Jboss 製品における任意の Java コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-6468 2014-04-14 17:23 2013-11-4 Show GitHub Exploit DB Packet Storm
220040 7.5 危険 SAP - SAP Business Object Processing Framework for ABAP におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-2752 2014-04-14 17:23 2014-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292581 - simon_mcvittie telepathy_gabble The Wocky module in Telepathy Gabble before 0.16.6 and 0.17.x before 0.17.4, when connecting to a "legacy Jabber server," does not properly enforce the WockyConnector:tls-required flag, which allows … CWE-20
 Improper Input Validation  		CVE-2013-1431 2024-11-21 10:49 2013-09-24 Show GitHub Exploit DB Packet Storm
292582 - exactcode exactimage econvert in ExactImage 0.8.9 and earlier does not properly initialize the setjmp variable, which allows context-dependent users to cause a denial of service (crash) via a crafted image file. CWE-20
 Improper Input Validation  		CVE-2013-1441 2024-11-21 10:49 2013-09-17 Show GitHub Exploit DB Packet Storm
292583 - libraw libraw The "faster LJPEG decoder" in libraw 0.13.x, 0.14.x, and 0.15.x before 0.15.4 allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted photo file. NVD-CWE-Other
CVE-2013-1439 2024-11-21 10:49 2013-09-17 Show GitHub Exploit DB Packet Storm
292584 - microsoft windows_server_2008
windows_2003_server
windows_rt
windows_xp
windows_8
windows_7
windows_vista
windows_server_2012 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 201… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1344 2024-11-21 10:49 2013-09-11 Show GitHub Exploit DB Packet Storm
292585 - microsoft windows_server_2008
windows_2003_server
windows_rt
windows_xp
windows_8
windows_7
windows_vista
windows_server_2012 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 201… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1343 2024-11-21 10:49 2013-09-11 Show GitHub Exploit DB Packet Storm
292586 - microsoft windows_server_2008
windows_2003_server
windows_rt
windows_xp
windows_8
windows_7
windows_vista
windows_server_2012 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 201… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1342 2024-11-21 10:49 2013-09-11 Show GitHub Exploit DB Packet Storm
292587 - microsoft windows_server_2008
windows_2003_server
windows_xp
windows_8
windows_7
windows_vista 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows 8 allows local us… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1341 2024-11-21 10:49 2013-09-11 Show GitHub Exploit DB Packet Storm
292588 - microsoft sharepoint_services
sharepoint_foundation
sharepoint_server
sharepoint_portal_server
office_web_apps 		The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3 and 2010 SP1 and SP2, and Office Web Apps 2010 does not set the EnableViewStateMac attribute, whic… CWE-20
 Improper Input Validation  		CVE-2013-1330 2024-11-21 10:49 2013-09-11 Show GitHub Exploit DB Packet Storm
292589 - microsoft excel_viewer
excel
office_compatibility_pack
office
sharepoint_foundation
sharepoint_services
sharepoint_server
sharepoint_portal_server
office_web_apps 		Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; and Office Co… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1315 2024-11-21 10:49 2013-09-11 Show GitHub Exploit DB Packet Storm
292590 - cisco jabber Cisco Jabber on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and modify the client-server data stream via a crafted certifica… CWE-310
Cryptographic Issues 		CVE-2013-1228 2024-11-21 10:49 2013-09-6 Show GitHub Exploit DB Packet Storm