Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220091 4.3 警告 SilverStripe - SilverStripe の SSViewer.php の process 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4958 2014-04-9 11:02 2011-10-17 Show GitHub Exploit DB Packet Storm
220092 6.9 警告 Fedora Project
David Paleino		 - WICD の D-Bus インターフェースの SetWiredProperty 関数における任意の構成設定を書き込まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2095 2014-04-9 10:55 2012-04-11 Show GitHub Exploit DB Packet Storm
220093 5 警告 ZNC - ZNC の bouncedcc モジュール内の bouncedcc.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0033 2014-04-9 10:50 2012-01-1 Show GitHub Exploit DB Packet Storm
220094 4.3 警告 Par Thernstrom - WordPress 用 CMS Tree Page View プラグインの functions.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1834 2014-04-9 10:38 2012-03-26 Show GitHub Exploit DB Packet Storm
220095 4.3 警告 PrestaShop - PrestaShop の Socolissimo モジュールの redirect.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6641 2014-04-9 10:31 2012-03-26 Show GitHub Exploit DB Packet Storm
220096 5 警告 Rock Lobster - Rock Lobster Contact Form 7 における CAPTCHA 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2265 2014-04-8 17:49 2014-02-26 Show GitHub Exploit DB Packet Storm
220097 5 警告 アップル - Apple Safari などで使用される WebKit におけるサンドボックス保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1297 2014-04-8 17:33 2014-04-1 Show GitHub Exploit DB Packet Storm
220098 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の vmtypedarrayobject.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1514 2014-04-8 17:09 2014-03-18 Show GitHub Exploit DB Packet Storm
220099 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の TypedArrayObject.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1513 2014-04-8 17:08 2014-03-18 Show GitHub Exploit DB Packet Storm
220100 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンの TypeObject クラスにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1512 2014-04-8 17:07 2014-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293241 - spreecommerce spree Spree Commerce 1.0.x through 1.3.2 allows remote authenticated administrators to instantiate arbitrary Ruby objects and execute arbitrary commands via the (1) payment_method parameter to core/app/con… CWE-20
 Improper Input Validation  		CVE-2013-1656 2024-11-21 10:50 2013-03-9 Show GitHub Exploit DB Packet Storm
293242 - linux linux_kernel The _xfs_buf_find function in fs/xfs/xfs_buf.c in the Linux kernel before 3.7.6 does not validate block numbers, which allows local users to cause a denial of service (NULL pointer dereference and sy… CWE-20
 Improper Input Validation  		CVE-2013-1819 2024-11-21 10:50 2013-03-7 Show GitHub Exploit DB Packet Storm
293243 - php php The SOAP parser in PHP before 5.3.23 and 5.4.x before 5.4.13 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an … CWE-200
Information Exposure 		CVE-2013-1643 2024-11-21 10:50 2013-03-6 Show GitHub Exploit DB Packet Storm
293244 - php php ext/soap/soap.c in PHP before 5.3.22 and 5.4.x before 5.4.13 does not validate the relationship between the soap.wsdl_cache_dir directive and the open_basedir directive, which allows remote attackers… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1635 2024-11-21 10:50 2013-03-6 Show GitHub Exploit DB Packet Storm
293245 - todd_miller
apple 		sudo
mac_os_x 		sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1775 2024-11-21 10:50 2013-03-6 Show GitHub Exploit DB Packet Storm
293246 - linux
redhat 		linux_kernel
enterprise_linux
enterprise_mrg 		The chase_port function in drivers/usb/serial/io_ti.c in the Linux kernel before 3.7.4 allows local users to cause a denial of service (NULL pointer dereference and system crash) via an attempted /de… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1774 2024-11-21 10:50 2013-03-1 Show GitHub Exploit DB Packet Storm
293247 - linux
redhat 		linux_kernel
enterprise_linux
enterprise_mrg 		Buffer overflow in the VFAT filesystem implementation in the Linux kernel before 3.3 allows local users to gain privileges or cause a denial of service (system crash) via a VFAT write operation on a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1773 2024-11-21 10:50 2013-03-1 Show GitHub Exploit DB Packet Storm
293248 - linux linux_kernel The log_prefix function in kernel/printk.c in the Linux kernel 3.x before 3.4.33 does not properly remove a prefix string from a syslog header, which allows local users to cause a denial of service (… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1772 2024-11-21 10:50 2013-03-1 Show GitHub Exploit DB Packet Storm
293249 - linux linux_kernel Use-after-free vulnerability in the shmem_remount_fs function in mm/shmem.c in the Linux kernel before 3.7.10 allows local users to gain privileges or cause a denial of service (system crash) by remo… CWE-399
 Resource Management Errors 		CVE-2013-1767 2024-11-21 10:50 2013-03-1 Show GitHub Exploit DB Packet Storm
293250 - linux linux_kernel Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message. CWE-20
 Improper Input Validation  		CVE-2013-1763 2024-11-21 10:50 2013-03-1 Show GitHub Exploit DB Packet Storm