Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220111 7.1 危険 Linux - Linux Kernel の net/sctp/sm_statefuns.c 内の sctp_sf_do_5_1D_ce 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0101 2014-04-8 15:53 2014-03-3 Show GitHub Exploit DB Packet Storm
220112 6.2 警告 Linux - Linux Kernel の fs/cifs/file.c 内の cifs_iovec_write 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-0069 2014-04-8 15:52 2014-02-14 Show GitHub Exploit DB Packet Storm
220113 4.3 警告 Ruby on Rails project - Ruby on Rails の actionview/lib/action_view/helpers/number_helper.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0081 2014-04-8 15:48 2014-02-18 Show GitHub Exploit DB Packet Storm
220114 4.3 警告 Horde - Horde Groupware Webmail Edition で使用される Horde Internet Mail Program におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6640 2014-04-8 14:40 2012-06-26 Show GitHub Exploit DB Packet Storm
220115 4.3 警告 Horde - Horde Groupware Webmail Edition で使用される Horde Kronolith Calendar Application H4 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5567 2014-04-8 14:39 2012-11-14 Show GitHub Exploit DB Packet Storm
220116 4.3 警告 Horde - Horde Groupware Webmail Edition で使用される Horde Kronolith Calendar Application H4 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5566 2014-04-8 14:33 2012-05-29 Show GitHub Exploit DB Packet Storm
220117 4.3 警告 Horde - Horde Groupware Webmail Edition で使用される Horde Internet Mail Program におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5565 2014-04-8 14:32 2012-11-14 Show GitHub Exploit DB Packet Storm
220118 4 警告 シスコシステムズ - Cisco Unity Connection のメッセージング API におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2145 2014-04-8 14:30 2014-04-7 Show GitHub Exploit DB Packet Storm
220119 6.1 警告 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2144 2014-04-8 14:30 2014-04-4 Show GitHub Exploit DB Packet Storm
220120 6.8 警告 Lee Howard - HylaFAX+ の hfaxd におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5680 2014-04-8 13:59 2013-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293311 - zabbix zabbix The user.login function in Zabbix before 1.8.16 and 2.x before 2.0.5rc1 allows remote attackers to override LDAP configuration via the cnf parameter. CWE-287
Improper Authentication 		CVE-2013-1364 2024-11-21 10:49 2013-12-15 Show GitHub Exploit DB Packet Storm
293312 - uclouvain openjpeg OpenJPEG 1.3 and earlier allows remote attackers to cause a denial of service (memory consumption or crash) via unspecified vectors related to NULL pointer dereferences, division-by-zero, and other e… NVD-CWE-noinfo
CVE-2013-1447 2024-11-21 10:49 2013-12-13 Show GitHub Exploit DB Packet Storm
293313 - os4ed opensis Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 allows remote attackers to execute arbitrary PHP code via the modname parameter. CWE-94
Code Injection 		CVE-2013-1349 2024-11-21 10:49 2013-12-10 Show GitHub Exploit DB Packet Storm
293314 - mit kerberos_5 do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of s… CWE-20
 Improper Input Validation  		CVE-2013-1417 2024-11-21 10:49 2013-11-20 Show GitHub Exploit DB Packet Storm
293315 - mit
debian
opensuse 		kerberos_5
debian_linux
opensuse 		The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a deni… CWE-476
 NULL Pointer Dereference 		CVE-2013-1418 2024-11-21 10:49 2013-11-18 Show GitHub Exploit DB Packet Storm
293316 - microsoft office Heap-based buffer overflow in Microsoft Office 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) file, aka "Word Heap Overwrite Vulnera… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1325 2024-11-21 10:49 2013-11-13 Show GitHub Exploit DB Packet Storm
293317 - microsoft office_2013_rt
office 		Stack-based buffer overflow in Microsoft Office 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) fil… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1324 2024-11-21 10:49 2013-11-13 Show GitHub Exploit DB Packet Storm
293318 - dlitz pycrypto The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator (PRNG) before allowing a child process to access it, which makes it easier for c… CWE-310
Cryptographic Issues 		CVE-2013-1445 2024-11-21 10:49 2013-10-27 Show GitHub Exploit DB Packet Storm
293319 - debian
marc_vertes 		txt2man A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows local users to overwrite arbitrary files via a symlink attack on /tmp/2222. CWE-59
Link Following 		CVE-2013-1444 2024-11-21 10:49 2013-10-1 Show GitHub Exploit DB Packet Storm
293320 - xen xen Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not properly clear previous data from registers when using an XSAVE or XRSTOR to extend the state components of a saved or restored vCP… CWE-200
Information Exposure 		CVE-2013-1442 2024-11-21 10:49 2013-10-1 Show GitHub Exploit DB Packet Storm