Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220231	6.8	警告	マイクロソフト	-	Microsoft Office の MSCOMCTL ライブラリにおける ASLR 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1809	2014-05-15 14:25	2014-05-13	Show	GitHub Exploit DB Packet Storm

220232	4.3	警告	マイクロソフト	-	Microsoft Office 2013 における重要なトークン情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-1808	2014-05-15 14:24	2014-05-13	Show	GitHub Exploit DB Packet Storm

220233	4.3	警告	マイクロソフト	-	複数の Microsoft 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1754	2014-05-15 14:21	2014-05-13	Show	GitHub Exploit DB Packet Storm

220234	9	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-0251	2014-05-15 14:21	2014-05-13	Show	GitHub Exploit DB Packet Storm

220235	5	警告	Haxx アップル Canonical	-	cURL および libcurl の cookie.c における Cookie を盗まれる脆弱性	CWE-200 情報漏えい	CVE-2013-1944	2014-05-14 18:45	2013-04-12	Show	GitHub Exploit DB Packet Storm

220236	4.3	警告	FreeType Project	-	FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5670	2014-05-14 18:44	2012-12-20	Show	GitHub Exploit DB Packet Storm

220237	4.3	警告	FreeType Project	-	FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5669	2014-05-14 18:43	2012-12-20	Show	GitHub Exploit DB Packet Storm

220238	4.3	警告	FreeType Project	-	FreeType におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5668	2014-05-14 18:43	2012-12-20	Show	GitHub Exploit DB Packet Storm

220239	4.6	警告	サイバートラスト株式会社 XScreenSaver project レッドハット	-	XScreenSaver のクラッシュによりスクリーンロックが解除される問題	CWE-287 不適切な認証	CVE-2007-1859	2014-05-14 18:41	2007-05-3	Show	GitHub Exploit DB Packet Storm

220240	5	警告	VMware	-	VMware SpringSource Grails におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1833	2014-05-14 18:40	2012-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292261	-	danny_morris	lazy_seo	Unrestricted file upload vulnerability in lazyseo.php in the Lazy SEO plugin 1.1.9 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a…	NVD-CWE-Other	CVE-2013-5961	2024-11-21 10:58	2013-10-1	Show	GitHub Exploit DB Packet Storm

292262	-	adcisolutions	node_view_permissions	The Node View Permissions module 7.x-1.x before 7.x-1.2 for Drupal does not properly implement the hook_query_alter function, which might allow remote attackers to obtain sensitive information by rea…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5965	2024-11-21 10:58	2013-10-1	Show	GitHub Exploit DB Packet Storm

292263	-	joachim_noreiko	flag_module	Cross-site scripting (XSS) vulnerability in the administration page in the Flag module 7.x-3.x before 7.x-3.1 for Drupal allows remote authenticated users with the "Administer flags" permission to in…	CWE-79 Cross-site Scripting	CVE-2013-5964	2024-11-21 10:58	2013-10-1	Show	GitHub Exploit DB Packet Storm

292264	-	owasp	enterprise_security_api	The authenticated-encryption feature in the symmetric-encryption implementation in the OWASP Enterprise Security API (ESAPI) for Java 2.x before 2.1.0.1 does not properly resist tampering with serial…	CWE-310 Cryptographic Issues	CVE-2013-5960	2024-11-21 10:58	2013-10-1	Show	GitHub Exploit DB Packet Storm

292265	-	bluecoat	proxysgos proxysg	Blue Coat ProxySG before 6.2.14.1, 6.3.x, 6.4.x, and 6.5 before 6.5.2 allows remote attackers to cause a denial of service (memory consumption and dropped connections) via a recursive href in an HTML…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5959	2024-11-21 10:58	2013-09-29	Show	GitHub Exploit DB Packet Storm

292266	-	graphite_project	graphite	Multiple cross-site scripting (XSS) vulnerabilities in Graphite before 0.9.11 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5943	2024-11-21 10:58	2013-09-27	Show	GitHub Exploit DB Packet Storm

292267	-	graphite_project	graphite	Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to (1) remote_storage.py, (2) st…	CWE-94 Code Injection	CVE-2013-5942	2024-11-21 10:58	2013-09-27	Show	GitHub Exploit DB Packet Storm

292268	-	click2sell	click2sell_suite_module	Cross-site scripting (XSS) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a confirmation form.	CWE-79 Cross-site Scripting	CVE-2013-5938	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

292269	-	click2sell	click2sell_suite_module	Cross-site request forgery (CSRF) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete datab…	CWE-352 Origin Validation Error	CVE-2013-5937	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

292270	-	open-xchange	open-xchange_appsuite	The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 allows remote attackers to obtain sensitive information about (1) runtime activity, (2) networ…	CWE-200 Information Exposure	CVE-2013-5936	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm