Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220391 5 警告 Plone Foundation - Plone の Products/CMFPlone/FactoryTool.py におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-7060 2014-05-7 17:37 2013-12-10 Show GitHub Exploit DB Packet Storm
220392 5 警告 エマソン - Emerson Avocent MergePoint Unity にディレクトリトラバーサルの脆弱性 CWE-22
CWE-Other
CVE-2013-6030  2014-05-7 17:24 2014-01-23 Show GitHub Exploit DB Packet Storm
220393 6.9 警告 fishshell - fish における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2905 2014-05-7 16:10 2014-04-28 Show GitHub Exploit DB Packet Storm
220394 7.5 危険 Dynamix Solutions - Ruby 用 Arabic Prawn gem の lib/string_utf_support.rb における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2014-2322 2014-05-7 16:02 2014-03-10 Show GitHub Exploit DB Packet Storm
220395 4.3 警告 シトリックス・システムズ - Citrix NetScaler Gateway におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1899 2014-05-7 15:39 2014-04-30 Show GitHub Exploit DB Packet Storm
220396 6.5 警告 Xerox - Xerox DocuShare における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3138 2014-05-7 15:07 2014-04-22 Show GitHub Exploit DB Packet Storm
220397 7.5 危険 Unitrends - Unitrends Enterprise Backup の recoveryconsole/bpl/snmpd.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-3139 2014-05-7 15:05 2014-04-15 Show GitHub Exploit DB Packet Storm
220398 4 警告 Core FTP - Core FTP Server における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-1443 2014-05-7 14:57 2014-01-30 Show GitHub Exploit DB Packet Storm
220399 4 警告 Core FTP - Core FTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1442 2014-05-7 14:57 2014-01-30 Show GitHub Exploit DB Packet Storm
220400 4.3 警告 Core FTP - Core FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2014-1441 2014-05-7 14:56 2014-01-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294661 5.9 MEDIUM
Network 		oracle
fujitsu
canonical
mozilla 		http_server
integrated_lights_out_manager_firmware
communications_application_session_controller
sparc_enterprise_m3000_firmware
sparc_enterprise_m4000_firmware
sparc_enterprise_m5000_… 		The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis… CWE-326
Inadequate Encryption Strength 		CVE-2013-2566 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm
294662 - linux
redhat 		linux_kernel
enterprise_mrg 		The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect length value during a copy operation,… CWE-310
Cryptographic Issues 		CVE-2013-2548 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm
294663 - linux
redhat 		linux_kernel
enterprise_mrg 		The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 does not initialize certain structure members, which al… CWE-310
Cryptographic Issues 		CVE-2013-2547 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm
294664 - linux
redhat 		linux_kernel
enterprise_mrg 		The report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect C library function for copying strings, which allows local users to obtain sensitive informatio… CWE-310
Cryptographic Issues 		CVE-2013-2546 2024-11-21 10:51 2013-03-16 Show GitHub Exploit DB Packet Storm
294665 - microsoft windows_8 Unspecified vulnerability in Microsoft Windows 8 allows remote attackers to cause a denial of service (reboot) or possibly have unknown other impact via a crafted TrueType Font (TTF) file, as demonst… NVD-CWE-noinfo
CVE-2013-2558 2024-11-21 10:51 2013-03-13 Show GitHub Exploit DB Packet Storm
294666 - bitcoin bitcoin-qt
bitcoind
bitcoin_core 		The CTransaction::FetchInputs method in bitcoind and Bitcoin-Qt before 0.8.0rc1 copies transactions from disk to memory without incrementally checking for spent prevouts, which allows remote attacker… CWE-399
 Resource Management Errors 		CVE-2013-2293 2024-11-21 10:51 2013-03-12 Show GitHub Exploit DB Packet Storm
294667 - bitcoin bitcoind
bitcoin-qt
bitcoin_core 		bitcoind and Bitcoin-Qt 0.8.0 and earlier allow remote attackers to cause a denial of service (electricity consumption) by mining a block to create a nonstandard Bitcoin transaction containing multip… CWE-399
 Resource Management Errors 		CVE-2013-2292 2024-11-21 10:51 2013-03-12 Show GitHub Exploit DB Packet Storm
294668 - bitcoin bitcoind
bitcoin-qt
bitcoin_core 		bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 make it easier for remote attackers to obtain … CWE-200
Information Exposure 		CVE-2013-2273 2024-11-21 10:51 2013-03-12 Show GitHub Exploit DB Packet Storm
294669 - bitcoin bitcoind
bitcoin-qt
bitcoin_core 		The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5r… CWE-200
Information Exposure 		CVE-2013-2272 2024-11-21 10:51 2013-03-12 Show GitHub Exploit DB Packet Storm
294670 - privoxy privoxy Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream, which makes it easier for remote HTTP servers to spoof the intended… CWE-20
 Improper Input Validation  		CVE-2013-2503 2024-11-21 10:51 2013-03-12 Show GitHub Exploit DB Packet Storm