Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220041	4.3	警告	KDE project Urs Wolfer	-	KDE-Runtime などの製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8600	2014-12-9 13:42	2014-11-13	Show	GitHub Exploit DB Packet Storm

220042	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の url.php のリダイレクト機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9219	2014-12-9 11:56	2014-12-3	Show	GitHub Exploit DB Packet Storm

220043	5	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/common.inc.php におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-9218	2014-12-9 11:55	2014-12-3	Show	GitHub Exploit DB Packet Storm

220044	4.3	警告	VMware	-	VMware vCenter Server Appliance における ESXi ホスト上の CIM サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-8371	2014-12-9 11:52	2014-12-4	Show	GitHub Exploit DB Packet Storm

220045	4.3	警告	VMware	-	VMware vCenter Server Appliance におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3797	2014-12-9 11:43	2014-12-4	Show	GitHub Exploit DB Packet Storm

220046	7.5	危険	The PHP Group	-	PHP の ext/xmlrpc/libxmlrpc/xmlrpc.c 内の date_from_ISO8601 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8626	2014-12-8 17:21	2014-10-22	Show	GitHub Exploit DB Packet Storm

220047	7.5	危険	レッドハット	-	Red Hat OpenShift Enterprise における任意のギアのネットワークリソースにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3674	2014-12-8 17:11	2014-11-3	Show	GitHub Exploit DB Packet Storm

220048	2.1	注意	レッドハット	-	Red Hat OpenShift Enterprise におけるリモートシステムの IP アドレスおよびポート番号の情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3602	2014-12-8 17:10	2014-11-3	Show	GitHub Exploit DB Packet Storm

220049	7.5	危険	OpenBSD	-	OpenSSH の schnorr.c の hash_buffer 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-1692	2014-12-8 17:07	2014-01-29	Show	GitHub Exploit DB Packet Storm

220050	6	警告	OpenBSD	-	OpenSSH の sshd における ForceCommand およびログインシェルの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4548	2014-12-8 17:07	2013-11-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
297561	-	debian cacti opensuse	debian_linux cacti opensuse	SQL injection vulnerability in cacti/host.php in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2013-5589	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

297562	-	cacti opensuse	cacti opensuse	Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the step parameter to install/index.php or (2) th…	CWE-79 Cross-site Scripting	CVE-2013-5588	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

297563	-	freebsd	freebsd	The sctp_send_initiate_ack function in sys/netinet/sctp_output.c in the SCTP implementation in the kernel in FreeBSD 8.3 through 9.2-PRERELEASE does not properly initialize the state-cookie data stru…	CWE-200 Information Exposure	CVE-2013-5209	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

297564	-	staruml	staruml	Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote attackers to execute arbitrary code via a long argument.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5578	2024-11-21 10:57	2013-08-25	Show	GitHub Exploit DB Packet Storm

297565	-	bestpractical	rt	Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x before 4.0.13, when MakeClicky is configured, allows remote attackers to inject arbitrary web script or HTML via a URL in a ticket…	CWE-79 Cross-site Scripting	CVE-2013-5587	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

297566	-	axel_jung	js_css_optimizer	Cross-site scripting (XSS) vulnerability in the Javascript and CSS Optimizer extension before 1.1.14 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5570	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

297567	-	heiko_sudar	slideshare	SQL injection vulnerability in the Slideshare extension 0.1.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-5569	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

297568	-	stanislas_rolland	static_info_tables	Cross-site scripting (XSS) vulnerability in the Static Info Tables (static_info_tables) extension before 2.3.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified…	CWE-79 Cross-site Scripting	CVE-2013-5323	2024-11-21 10:57	2013-08-21	Show	GitHub Exploit DB Packet Storm

297569	-	jan_bednarik	cooluri	SQL injection vulnerability in the CoolURI extension before 1.0.30 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-5322	2024-11-21 10:57	2013-08-21	Show	GitHub Exploit DB Packet Storm

297570	-	alienvault	open_source_security_information_management	Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) sensor parameter in a…	CWE-89 SQL Injection	CVE-2013-5321	2024-11-21 10:57	2013-08-20	Show	GitHub Exploit DB Packet Storm