Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220281 6.5 警告 TIBCO Software - TIBCO Silver Mobile のサーバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3315 2013-06-4 13:59 2013-05-8 Show GitHub Exploit DB Packet Storm
220282 4.3 警告 PhotoGalleryCreator - WordPress 用 GRAND FlAGallery プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3261 2013-06-4 13:55 2013-05-20 Show GitHub Exploit DB Packet Storm
220283 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3328 2013-06-3 15:58 2013-05-14 Show GitHub Exploit DB Packet Storm
220284 7.5 危険 FreeBSD - FreeBSD の NFS サーバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3266 2013-06-3 15:18 2013-04-29 Show GitHub Exploit DB Packet Storm
220285 2.6 注意 ヒューレット・パッカード - HP ProCurve 1700 シリーズのスイッチにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5216 2013-06-3 12:01 2013-06-3 Show GitHub Exploit DB Packet Storm
220286 7.5 危険 psychostats - PsychoStats の awards.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3721 2013-06-3 11:27 2013-05-31 Show GitHub Exploit DB Packet Storm
220287 4.3 警告 Feedweb Research - WordPress 用 Feedweb プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3720 2013-06-3 11:26 2013-03-31 Show GitHub Exploit DB Packet Storm
220288 4.3 警告 algisinfo - Joomla! 用の aiContactSafe コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3719 2013-06-3 11:25 2013-04-16 Show GitHub Exploit DB Packet Storm
220289 5 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1213 2013-05-31 14:32 2013-02-13 Show GitHub Exploit DB Packet Storm
220290 5 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS における VEM にアクセスされる脆弱性 CWE-287
不適切な認証 		CVE-2013-1211 2013-05-31 14:19 2013-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314241 - enterasys vertical_horizon-2402s Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 has a hard-coded account and password for debugging, which allows remote attackers to gain privileges. NVD-CWE-Other
CVE-2005-2026 2008-09-6 05:50 2005-06-16 Show GitHub Exploit DB Packet Storm
314242 - enterasys vertical_horizon-2402s Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information … NVD-CWE-Other
CVE-2005-2027 2008-09-6 05:50 2005-06-16 Show GitHub Exploit DB Packet Storm
314243 - amarok web_frontend amaroK Web Frontend 1.3 stores the globals.inc file under the web root without a .php extension and insufficient access control, which allows remote attackers to obtain the database username and pass… NVD-CWE-Other
CVE-2005-2029 2008-09-6 05:50 2005-06-17 Show GitHub Exploit DB Packet Storm
314244 - socialmpn socialmpn Multiple SQL injection vulnerabilities in socialMPN allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter to article.php, (2) uname parameter to user.php, (3) siteid para… NVD-CWE-Other
CVE-2005-2031 2008-09-6 05:50 2005-06-16 Show GitHub Exploit DB Packet Storm
314245 - fortibus fortibus_cms Fortibus CMS 4.0.0 allows remote attackers to modify information of other users, including Admin, via the "My info" page. NVD-CWE-Other
CVE-2005-2038 2008-09-6 05:50 2005-06-20 Show GitHub Exploit DB Packet Storm
314246 - nanoblogger nanoblogger Unknown vulnerability in "various plugins" for NanoBlogger 3.2.1 and earlier allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2005-2039 2008-09-6 05:50 2005-06-19 Show GitHub Exploit DB Packet Storm
314247 - telnetd telnetd Multiple buffer overflows in the getterminaltype function in telnetd for Heimdal before 0.6.5 may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2005-0468 and CV… NVD-CWE-Other
CVE-2005-2040 2008-09-6 05:50 2005-06-20 Show GitHub Exploit DB Packet Storm
314248 - ajax-spell ajax-spell Cross-site scripting (XSS) vulnerability in ajax-spell before 1.8 allows remote attackers to inject arbitrary web script or HTML via onmouseover or other events in HTML tags. NVD-CWE-Other
CVE-2005-2042 2008-09-6 05:50 2005-06-16 Show GitHub Exploit DB Packet Storm
314249 - xampp apache_distribution Directory traversal vulnerability in XAMPP before 1.4.14 allows remote attackers to inject arbitrary HTML and PHP code via lang.php. NVD-CWE-Other
CVE-2005-2043 2008-09-6 05:50 2005-06-17 Show GitHub Exploit DB Packet Storm
314250 - adaptive_technology_resource_centre atutor Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.4.3 and 1.5 RC 1 allow remote attackers to inject arbitrary web script or HTML via the (1) show_course parameter to browse.php, (2) sub… NVD-CWE-Other
CVE-2005-2044 2008-09-6 05:50 2005-06-16 Show GitHub Exploit DB Packet Storm