Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220111	6.2	警告	Linux	-	Linux Kernel の fs/cifs/file.c 内の cifs_iovec_write 関数における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2014-0069	2014-04-8 15:52	2014-02-14	Show	GitHub Exploit DB Packet Storm

220112	4.3	警告	Ruby on Rails project	-	Ruby on Rails の actionview/lib/action_view/helpers/number_helper.rb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0081	2014-04-8 15:48	2014-02-18	Show	GitHub Exploit DB Packet Storm

220113	4.3	警告	Horde	-	Horde Groupware Webmail Edition で使用される Horde Internet Mail Program におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6640	2014-04-8 14:40	2012-06-26	Show	GitHub Exploit DB Packet Storm

220114	4.3	警告	Horde	-	Horde Groupware Webmail Edition で使用される Horde Kronolith Calendar Application H4 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5567	2014-04-8 14:39	2012-11-14	Show	GitHub Exploit DB Packet Storm

220115	4.3	警告	Horde	-	Horde Groupware Webmail Edition で使用される Horde Kronolith Calendar Application H4 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5566	2014-04-8 14:33	2012-05-29	Show	GitHub Exploit DB Packet Storm

220116	4.3	警告	Horde	-	Horde Groupware Webmail Edition で使用される Horde Internet Mail Program におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5565	2014-04-8 14:32	2012-11-14	Show	GitHub Exploit DB Packet Storm

220117	4	警告	シスコシステムズ	-	Cisco Unity Connection のメッセージング API におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2145	2014-04-8 14:30	2014-04-7	Show	GitHub Exploit DB Packet Storm

220118	6.1	警告	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2144	2014-04-8 14:30	2014-04-4	Show	GitHub Exploit DB Packet Storm

220119	6.8	警告	Lee Howard	-	HylaFAX+ の hfaxd におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-5680	2014-04-8 13:59	2013-08-6	Show	GitHub Exploit DB Packet Storm

220120	4.3	警告	Klaus Purer	-	Drupal 用 RESTful Web Services モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1946	2014-04-8 13:36	2013-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293011	-	mozilla	firefox thunderbird thunderbird_esr	Stack-based buffer overflow in maintenanceservice.exe in the Mozilla Maintenance Service in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1706	2024-11-21 10:50	2013-08-7	Show	GitHub Exploit DB Packet Storm

293012	-	mozilla	seamonkey firefox	Heap-based buffer underflow in the cryptojs_interpret_key_gen_type function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denia…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1705	2024-11-21 10:50	2013-08-7	Show	GitHub Exploit DB Packet Storm

293013	-	mozilla	firefox seamonkey	Use-after-free vulnerability in the nsINode::GetParentNode function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of ser…	CWE-399 Resource Management Errors	CVE-2013-1704	2024-11-21 10:50	2013-08-7	Show	GitHub Exploit DB Packet Storm

293014	-	mozilla	seamonkey firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and applicat…	NVD-CWE-noinfo	CVE-2013-1702	2024-11-21 10:50	2013-08-7	Show	GitHub Exploit DB Packet Storm

293015	-	mozilla	seamonkey thunderbird firefox thunderbird_esr	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey…	NVD-CWE-noinfo	CVE-2013-1701	2024-11-21 10:50	2013-08-7	Show	GitHub Exploit DB Packet Storm

293016	-	python	setuptools	easy_install in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to e…	CWE-20 Improper Input Validation	CVE-2013-1633	2024-11-21 10:50	2013-08-6	Show	GitHub Exploit DB Packet Storm

293017	-	guillaume_gauvrit	pyshop	pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary c…	CWE-20 Improper Input Validation	CVE-2013-1630	2024-11-21 10:50	2013-08-6	Show	GitHub Exploit DB Packet Storm

293018	-	pypa	pip	pip before 1.3 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code v…	CWE-20 Improper Input Validation	CVE-2013-1629	2024-11-21 10:50	2013-08-6	Show	GitHub Exploit DB Packet Storm

293019	-	symantec	web_gateway web_gateway_appliance_8450 web_gateway_appliance_8490	Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allow remote authenticated administrators to execute arbitrary SQL commands v…	CWE-89 SQL Injection	CVE-2013-1617	2024-11-21 10:50	2013-08-1	Show	GitHub Exploit DB Packet Storm

293020	-	symantec	web_gateway web_gateway_appliance_8450 web_gateway_appliance_8490	The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote attackers to execute arbitrary commands by injecting a command into an application script.	CWE-78 OS Command	CVE-2013-1616	2024-11-21 10:50	2013-08-1	Show	GitHub Exploit DB Packet Storm