Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220081 3.5 注意 Drupal - Drupal 用 Nivo Slider モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8744 2014-10-20 17:04 2014-03-18 Show GitHub Exploit DB Packet Storm
220082 3.5 注意 Nextide - Drupal 用 Maestro モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8743 2014-10-20 17:04 2014-06-6 Show GitHub Exploit DB Packet Storm
220083 3.5 注意 オラクル - Oracle MySQL の MySQL Server における SERVER:MEMCACHED に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6474 2014-10-20 14:24 2014-10-14 Show GitHub Exploit DB Packet Storm
220084 5.5 警告 オラクル - Oracle MySQL の MySQL Server における SERVER:SP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6489 2014-10-20 14:24 2014-10-14 Show GitHub Exploit DB Packet Storm
220085 4 警告 オラクル - Oracle MySQL の MySQL Server における SERVER:INNODB FULLTEXT SEARCH DML に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6564 2014-10-20 14:24 2014-10-14 Show GitHub Exploit DB Packet Storm
220086 4.9 警告 オラクル - Oracle Enterprise Manager Grid Control の Application Performance Management における End User Experience Management に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6557 2014-10-20 10:13 2014-10-14 Show GitHub Exploit DB Packet Storm
220087 2.1 注意 オラクル - Oracle Enterprise Manager Grid Control の Enterprise Manager for Oracle Database における Content Management に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6488 2014-10-20 10:12 2014-10-14 Show GitHub Exploit DB Packet Storm
220088 5 警告 シスコシステムズ - Cisco Intrusion Detection System の Cisco Intrusion Prevention System の Web フレームワークにおけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2014-3402 2014-10-17 17:53 2014-10-8 Show GitHub Exploit DB Packet Storm
220089 6.8 警告 オラクル - Oracle Sun Solaris における Hermon HCA PCIe driver に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6529 2014-10-17 16:11 2014-10-14 Show GitHub Exploit DB Packet Storm
220090 7.8 危険 オラクル - Oracle Sun Solaris における iSCSI Data Mover に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6508 2014-10-17 16:11 2014-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297381 - hp storage_data_protector Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1869. NVD-CWE-noinfo
CVE-2013-2345 2024-11-21 10:51 2014-01-4 Show GitHub Exploit DB Packet Storm
297382 - hp storage_data_protector Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1866. NVD-CWE-noinfo
CVE-2013-2344 2024-11-21 10:51 2014-01-4 Show GitHub Exploit DB Packet Storm
297383 - phusion
redhat 		passenger
openshift 		Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a denial of service (prevent application start) or gain privileges by pre-creating a temporary "config"… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2119 2024-11-21 10:51 2014-01-4 Show GitHub Exploit DB Packet Storm
297384 - matrix42 service_store Cross-site scripting (XSS) vulnerability in SPS/Portal/default.aspx in Service Desk in Matrix42 Service Store 5.3 SP3 (aka 5.33.946.0) allows remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2013-2504 2024-11-21 10:51 2013-12-29 Show GitHub Exploit DB Packet Storm
297385 - x x_display_manager X.Org xdm 1.1.10, 1.1.11, and possibly other versions, when performing authentication using certain implementations of the crypt API function that can return NULL, allows remote attackers to cause a … CWE-310
Cryptographic Issues 		CVE-2013-2179 2024-11-21 10:51 2013-12-27 Show GitHub Exploit DB Packet Storm
297386 - redhat jboss_enterprise_application_platform
enterprise_linux 		The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) before 6.2.0, does not properly enforce the method level restrictions for JAX-WS S… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2133 2024-11-21 10:51 2013-12-7 Show GitHub Exploit DB Packet Storm
297387 - redhat
openfabrics 		enterprise_linux
ibutils 		OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (… CWE-59
Link Following 		CVE-2013-2561 2024-11-21 10:51 2013-11-24 Show GitHub Exploit DB Packet Storm
297388 - dlink dsl-2740b_firmware
dsl-2740b 		The D-Link DSL-2740B Gateway with firmware EU_1.0, when an active administrator session exists, allows remote attackers to bypass authentication and gain administrator access via a request to login.c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2271 2024-11-21 10:51 2013-11-19 Show GitHub Exploit DB Packet Storm
297389 - mediawiki mediawiki Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an … NVD-CWE-Other
CVE-2013-2114 2024-11-21 10:51 2013-11-18 Show GitHub Exploit DB Packet Storm
297390 - openvz vzkernel vzkernel before 042stab080.2 in the OpenVZ modification for the Linux kernel 2.6.32 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2239 2024-11-21 10:51 2013-11-12 Show GitHub Exploit DB Packet Storm