Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220181	6.5	警告	Skyphe.org	-	WordPress 用 File Gallery プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-2558	2014-05-8 14:05	2014-04-13	Show	GitHub Exploit DB Packet Storm

220182	4.4	警告	Nagios Enterprises, LLC	-	Nagios Plugins の contrib/check_ipxping.c の IPXPING_COMMAND における権限を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2013-4215	2014-05-8 14:04	2013-04-28	Show	GitHub Exploit DB Packet Storm

220183	4.3	警告	Best Practical Solutions	-	Request Tracker の MobileUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3736	2014-05-8 13:53	2013-06-12	Show	GitHub Exploit DB Packet Storm

220184	7.5	危険	PHP-Fusion	-	PHP-Fusion の includes/classes/Authenticate.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-7375	2014-05-8 12:21	2013-02-16	Show	GitHub Exploit DB Packet Storm

220185	7.5	危険	PHP-Fusion	-	PHP-Fusion における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-1803	2014-05-8 12:20	2013-01-27	Show	GitHub Exploit DB Packet Storm

220186	7.5	危険	LiveZilla	-	LiveZilla の _lib/functions.global.inc.php の setCookieValue 関数における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-7034	2014-05-8 12:11	2013-12-10	Show	GitHub Exploit DB Packet Storm

220187	4.3	警告	LiveZilla	-	LiveZilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7003	2014-05-8 12:10	2013-12-10	Show	GitHub Exploit DB Packet Storm

220188	6.8	警告	Sitepark	-	Sitepark Information Enterprise Server における manager アカウントのパスワードを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3006	2014-05-8 11:40	2014-04-3	Show	GitHub Exploit DB Packet Storm

220189	6.3	警告	David Leonard	-	pktstat の tmp_smtp.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2013-0350	2014-05-8 11:34	2013-02-23	Show	GitHub Exploit DB Packet Storm

220190	4.3	警告	Fedora Project Randall Hand	-	Yerase's TNEF Stream Reader の ytnef.c 内の DecompressRTF 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-5109	2014-05-8 11:21	2010-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294291	-	wordpress	wordpress	WordPress before 3.5.2 allows remote attackers to read arbitrary files via an oEmbed XML provider response containing an external entity declaration in conjunction with an entity reference, related t…	CWE-200 Information Exposure	CVE-2013-2202	2024-11-21 10:51	2013-07-9	Show	GitHub Exploit DB Packet Storm

294292	-	wordpress	wordpress	Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) uploads of media files, (2) editi…	CWE-79 Cross-site Scripting	CVE-2013-2201	2024-11-21 10:51	2013-07-9	Show	GitHub Exploit DB Packet Storm

294293	-	wordpress	wordpress	WordPress before 3.5.2 does not properly check the capabilities of roles, which allows remote authenticated users to bypass intended restrictions on publishing and authorship reassignment via unspeci…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2200	2024-11-21 10:51	2013-07-9	Show	GitHub Exploit DB Packet Storm

294294	-	wordpress	wordpress	The HTTP API in WordPress before 3.5.2 allows remote attackers to send HTTP requests to intranet servers via unspecified vectors, related to a Server-Side Request Forgery (SSRF) issue, a similar vuln…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2199	2024-11-21 10:51	2013-07-9	Show	GitHub Exploit DB Packet Storm

294295	-	hp	procurve_switch h3c_switch h3c_ethernet_switch h3c_router 3com_router procurve_router 3com_switch h3c_routing_switch h3c_processing_module h3c_high_performance_main_process…	Unspecified vulnerability on the HP ProCurve JC###A, JC###B, JD###A, JD###B, JE###A, JF###A, JF###B, JF###C, JG###A, 658250-B21, and 658247-B21; HP 3COM routers and switches; and HP H3C routers and s…	NVD-CWE-noinfo	CVE-2013-2341	2024-11-21 10:51	2013-07-6	Show	GitHub Exploit DB Packet Storm

294296	-	linux	linux_kernel	The key_notify_policy_flush function in net/key/af_key.c in the Linux kernel before 3.9 does not initialize a certain structure member, which allows local users to obtain sensitive information from k…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2237	2024-11-21 10:51	2013-07-5	Show	GitHub Exploit DB Packet Storm

294297	-	linux	linux_kernel	The (1) key_notify_sa_flush and (2) key_notify_policy_flush functions in net/key/af_key.c in the Linux kernel before 3.10 do not initialize certain structure members, which allows local users to obta…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2234	2024-11-21 10:51	2013-07-5	Show	GitHub Exploit DB Packet Storm

294298	-	linux	linux_kernel	The ip6_sk_dst_check function in net/ipv6/ip6_output.c in the Linux kernel before 3.10 allows local users to cause a denial of service (system crash) by using an AF_INET6 socket for a connection to a…	CWE-20 Improper Input Validation	CVE-2013-2232	2024-11-21 10:51	2013-07-5	Show	GitHub Exploit DB Packet Storm

294299	-	redhat	enterprise_linux	A certain Red Hat patch for the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows local users to cause a denial of service (invalid free operation and system crash) or possibly gain pri…	NVD-CWE-Other	CVE-2013-2224	2024-11-21 10:51	2013-07-5	Show	GitHub Exploit DB Packet Storm

294300	-	hp	procurve_switch h3c_switch h3c_ethernet_switch h3c_router 3com_router procurve_router 3com_switch h3c_routing_switch h3c_processing_module h3c_high_performance_main_process…	Unspecified vulnerability on the HP ProCurve JC###A, JC###B, JD###A, JD###B, JE###A, JF###A, JF###B, JF###C, JG###A, 658250-B21, and 658247-B21; HP 3COM routers and switches; and HP H3C routers and s…	NVD-CWE-noinfo	CVE-2013-2340	2024-11-21 10:51	2013-07-6	Show	GitHub Exploit DB Packet Storm