Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 22, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 220991 | 2.9 | 注意 | IBM | - | IBM PowerVC Express Edition における認証情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2014-4750 | 2014-08-21 14:43 | 2014-08-18 | Show | GitHub Exploit DB Packet Storm |
| 220992 | 4.3 | 警告 | IBM | - | IBM PowerVC における SSH サーバを偽装される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-4749 | 2014-08-21 14:40 | 2014-08-18 | Show | GitHub Exploit DB Packet Storm |
| 220993 | 6.8 | 警告 | Disqus | - | WordPress 用 Disqus Comment System プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2014-5347 | 2014-08-21 14:37 | 2014-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220994 | 6.8 | 警告 | Disqus | - | WordPress 用 Disqus Comment System プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2014-5346 | 2014-08-21 14:36 | 2014-08-16 | Show | GitHub Exploit DB Packet Storm |
| 220995 | 4.3 | 警告 | Disqus | - | WordPress 用 Disqus Comment System プラグインの upgrade.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-5345 | 2014-08-21 14:35 | 2014-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220996 | 4.3 | 警告 | Mobiloud | - | WordPress 用 Mobiloud プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-5344 | 2014-08-21 14:34 | 2014-08-11 | Show | GitHub Exploit DB Packet Storm |
| 220997 | 5.5 | 警告 | レッドハット | - | JBoss Enterprise Application Platform で使用される Red Hat JBossWS における制限された JAX-WS ハンドラにアクセスされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-3464 | 2014-08-21 14:14 | 2014-08-6 | Show | GitHub Exploit DB Packet Storm |
| 220998 | 5 | 警告 | - | Google Chrome の Public Key Pinning の実装における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2014-3166 | 2014-08-20 17:23 | 2014-08-12 | Show | GitHub Exploit DB Packet Storm | |
| 220999 | 7.2 | 危険 | マイクロソフト | - | 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-0318 | 2014-08-20 17:22 | 2014-08-12 | Show | GitHub Exploit DB Packet Storm |
| 221000 | 4.9 | 警告 | マイクロソフト | - | 複数の Microsoft Windows 製品のカーネルモードドライバにおけるカーネルのアドレスについての重要な情報を取得される脆弱性 |
CWE-119
バッファエラー |
CVE-2014-4064 | 2014-08-20 17:20 | 2014-08-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 22, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 294741 | 7.8 |
HIGH
Local |
fuzezip_project | fuzezip | FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability |
CWE-787
Out-of-bounds Write |
CVE-2013-5656 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 294742 | 5.4 |
MEDIUM
Network |
transcend-info | wifisd_firmware | Transcend WiFiSD 1.8 has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5638 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 294743 | 5.4 |
MEDIUM
Network |
pqigroup | air_card_firmware | PQI AirCard has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5637 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 294744 | 5.9 |
MEDIUM
Network |
hmailserver | hmailserver | HMailServer 5.3.x and prior: Memory Corruption which could cause DOS |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5571 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 294745 | 9.8 |
CRITICAL
Network |
cisco |
linksys_ea2700_firmware linksys_ea3500_firmware linksys_e4200_firmware linksys_ea4500_firmware |
Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access |
CWE-287
Improper Authentication |
CVE-2013-5122 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 294746 | 5.9 |
MEDIUM
Network |
pypa virtualenv fedoraproject redhat debian |
pip virtualenv fedora openshift software_collections debian_linux |
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. |
CWE-287
Improper Authentication |
CVE-2013-5123 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 294747 | 5.9 |
MEDIUM
Network |
isc nlnetlabs nic redhat |
bind nsd knot_resolver enterprise_linux |
Cache Poisoning issue exists in DNS Response Rate Limiting. |
CWE-290
Authentication Bypass by Spoofing |
CVE-2013-5661 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 294748 | 9.1 |
CRITICAL
Network |
yingzhipython_project | yingzhipython | Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage |
CWE-284
Improper Access Control |
CVE-2013-5654 | 2024-11-21 10:57 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 294749 | 8.8 |
HIGH
Network |
ibm |
endpoint_manager_for_remote_control tivoli_remote_control |
IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by … |
CWE-255
Credentials Management |
CVE-2013-5461 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |
| 294750 | 5.3 |
MEDIUM
Network |
ibm |
worklight mobile_foundation |
IBM Worklight Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.x before 6.0.0 Fix Pack 2, and Mobile Foundation Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 an… |
CWE-310
Cryptographic Issues |
CVE-2013-5391 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |