Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221061 7.5 危険 マイクロソフト - 複数の Microsoft Windows 製品の Local RPC サーバの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-0316 2014-08-15 09:52 2014-08-12 Show GitHub Exploit DB Packet Storm
221062 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品の Windows Installer における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1814 2014-08-15 09:44 2014-08-12 Show GitHub Exploit DB Packet Storm
221063 4.3 警告 マイクロソフト - Microsoft .NET Framework における重要なアドレス情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4062 2014-08-14 18:00 2014-08-12 Show GitHub Exploit DB Packet Storm
221064 9.3 危険 マイクロソフト - Microsoft OneNote 2007 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2815 2014-08-14 17:53 2014-08-12 Show GitHub Exploit DB Packet Storm
221065 9.3 危険 マイクロソフト - Microsoft SharePoint Server 2013 および SharePoint Foundation 2013 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2816 2014-08-14 17:49 2014-08-12 Show GitHub Exploit DB Packet Storm
221066 4.3 警告 Splunk - Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5198 2014-08-14 17:15 2014-08-4 Show GitHub Exploit DB Packet Storm
221067 4 警告 Splunk - Splunk Enterprise におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5197 2014-08-14 17:15 2014-08-4 Show GitHub Exploit DB Packet Storm
221068 7.5 危険 WordPress Gallery Objects - WordPress 用 Gallery Objects プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5201 2014-08-14 17:14 2014-07-18 Show GitHub Exploit DB Packet Storm
221069 7.5 危険 Chris & Andrew Fox - WordPress 用 FB Gorilla プラグインの game_play.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5200 2014-08-14 17:14 2014-07-28 Show GitHub Exploit DB Packet Storm
221070 6.8 警告 Iptanus - WordPress 用 File Upload プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-5199 2014-08-14 17:14 2014-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295721 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess extension for MediaWiki 1.19.x before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to inject ar… CWE-79
Cross-site Scripting 		CVE-2013-4573 2024-11-21 10:55 2013-11-26 Show GitHub Exploit DB Packet Storm
295722 - ibus_project
opensuse 		ibus
opensuse 		The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allo… CWE-255
Credentials Management 		CVE-2013-4509 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295723 - ruby-lang ruby Heap-based buffer overflow in Ruby 1.8, 1.9 before 1.9.3-p484, 2.0 before 2.0.0-p353, 2.1 before 2.1.0 preview2, and trunk before revision 43780 allows context-dependent attackers to cause a denial o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4164 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295724 - f5
opensuse
suse 		nginx
opensuse
studio_onsite
webyast
lifecycle_management_server 		nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2013-4547 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295725 - robert_ancell
canonical 		lightdm
ubuntu_linux 		LightDM 1.7.5 through 1.8.3 and 1.9.x before 1.9.2 does not apply the AppArmor profile to the Guest account, which allows local users to bypass intended restrictions by leveraging the Guest account. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4459 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295726 - http-body_project http-body HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 through 1.22, before 1.23) uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, whic… NVD-CWE-noinfo
CVE-2013-4407 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295727 - openstack image_registry_and_delivery_service_\(glance\) The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image. CWE-20
 Improper Input Validation  		CVE-2013-4354 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295728 - ffmpeg ffmpeg The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference. NVD-CWE-Other
CVE-2013-4265 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295729 - ffmpeg ffmpeg The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4264 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
295730 - ffmpeg ffmpeg libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote vectors related to a crafted "plane," which triggers an out-of-bounds heap write. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4263 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm