Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220041 6.8 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4726 2014-04-28 18:15 2013-08-26 Show GitHub Exploit DB Packet Storm
220042 5.8 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4723 2014-04-28 18:14 2013-08-26 Show GitHub Exploit DB Packet Storm
220043 4.3 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS の Admin/login/default.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4722 2014-04-28 18:14 2013-08-26 Show GitHub Exploit DB Packet Storm
220044 4 警告 東芝テック - 東芝テック製 e-Studio シリーズにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-1990 2014-04-28 18:07 2014-04-18 Show GitHub Exploit DB Packet Storm
220045 4.3 警告 LYSESOFT - AndExplorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1974 2014-04-28 18:05 2014-04-18 Show GitHub Exploit DB Packet Storm
220046 7.1 危険 サイボウズ - サイボウズ リモートサービスマネージャーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-1983 2014-04-28 17:59 2014-04-18 Show GitHub Exploit DB Packet Storm
220047 5.8 警告 サイボウズ - サイボウズ リモートサービスマネージャーにおけるセッション固定の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1984 2014-04-28 17:58 2014-04-18 Show GitHub Exploit DB Packet Storm
220048 4.3 警告 Ushahidi - Ushahidi Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2025 2014-04-28 17:51 2013-05-1 Show GitHub Exploit DB Packet Storm
220049 3.5 注意 Episerver - Ektron CMS の content.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2729 2014-04-28 17:42 2014-04-16 Show GitHub Exploit DB Packet Storm
220050 9.3 危険 Power Software - Power Software の WinArchiver におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5660 2014-04-28 17:13 2013-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292141 - spice_project
canonical 		spice
ubuntu_linux 		The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attack… CWE-399
 Resource Management Errors 		CVE-2013-4130 2024-11-21 10:54 2013-08-21 Show GitHub Exploit DB Packet Storm
292142 - ruby-lang ruby The OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7-p374, 1.9 before 1.9.3-p448, and 2.0 before 2.0.0-p247 does not properly handle a '\0' character i… CWE-310
Cryptographic Issues 		CVE-2013-4073 2024-11-21 10:54 2013-08-18 Show GitHub Exploit DB Packet Storm
292143 - henri_wahl nagstamon The automatic update request in Nagstamont before 0.9.10 uses a cleartext base64 format for transmission of a username and password, which allows remote attackers to obtain sensitive information by s… CWE-255
Credentials Management 		CVE-2013-4114 2024-11-21 10:54 2013-08-17 Show GitHub Exploit DB Packet Storm
292144 - redhat jboss_enterprise_application_platform Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client. CWE-16
Configuration 		CVE-2013-4128 2024-11-21 10:54 2013-08-17 Show GitHub Exploit DB Packet Storm
292145 - ibm advanced_management_module Cross-site scripting (XSS) vulnerability in adv_sw.php in the Advanced Management Module (AMM) with firmware BBET before BBET64G and BPET before BPET64G for IBM BladeCenter systems allows remote atta… CWE-79
Cross-site Scripting 		CVE-2013-4007 2024-11-21 10:54 2013-08-16 Show GitHub Exploit DB Packet Storm
292146 - ibm system_x3500_m3
flex_system_x440_compute_node
system_x3250_m4
system_x3550_m3
system_x3400_m2
bladecenter
system_x3550_m2
system_x3750_m4
system_x3650_m2
system_x3200_m3 		The Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers uses cleartext … CWE-310
Cryptographic Issues 		CVE-2013-4038 2024-11-21 10:54 2013-08-10 Show GitHub Exploit DB Packet Storm
292147 - ibm system_x3500_m3
flex_system_x440_compute_node
system_x3250_m4
system_x3550_m3
system_x3400_m2
bladecenter
system_x3550_m2
system_x3750_m4
system_x3650_m2
system_x3200_m3 		The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, F… NVD-CWE-noinfo
CVE-2013-4037 2024-11-21 10:54 2013-08-10 Show GitHub Exploit DB Packet Storm
292148 - ibm system_x3500_m3
flex_system_x440_compute_node
system_x3250_m4
system_x3550_m3
system_x3400_m2
bladecenter
system_x3550_m2
system_x3750_m4
system_x3650_m2
system_x3200_m3 		The Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPle… CWE-255
Credentials Management 		CVE-2013-4031 2024-11-21 10:54 2013-08-10 Show GitHub Exploit DB Packet Storm
292149 - opensuse
squid-cache 		opensuse
squid 		Buffer overflow in the idnsALookup function in dns_internal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service (memory corruption and server ter… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4115 2024-11-21 10:54 2013-08-10 Show GitHub Exploit DB Packet Storm
292150 - yard_radius_project yard_radius Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via f… CWE-134
Use of Externally-Controlled Format String 		CVE-2013-4147 2024-11-21 10:54 2013-08-10 Show GitHub Exploit DB Packet Storm