Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221081	4.8	警告	シスコシステムズ	-	Cisco IOS XE の mDNS の実装における重要なネットワークサービス情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3290	2014-06-17 16:54	2014-06-13	Show	GitHub Exploit DB Packet Storm

221082	7.1	危険	シスコシステムズ	-	ASR 9000 デバイス上で稼働する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2014-2176	2014-06-17 16:53	2014-06-11	Show	GitHub Exploit DB Packet Storm

221083	7.6	危険	ジャストシステム	-	複数のジャストシステム製品同梱のオンラインアップデートプログラムに任意のコード実行可能な脆弱性	CWE-noinfo 情報不足	CVE-2014-2003	2014-06-17 16:24	2014-06-11	Show	GitHub Exploit DB Packet Storm

221084	4.3	警告	C-BOARD Moyuku 開発プロジェクト	-	C-BOARD Moyuku におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2002	2014-06-17 16:21	2014-06-11	Show	GitHub Exploit DB Packet Storm

221085	5	警告	インターネットイニシアティブ	-	SEIL シリーズにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-2004	2014-06-17 16:09	2014-06-13	Show	GitHub Exploit DB Packet Storm

221086	4.3	警告	SAP	-	SAP Supplier Relationship Management の la/umTestSSO.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4161	2014-06-17 14:19	2014-05-28	Show	GitHub Exploit DB Packet Storm

221087	4.3	警告	SAP	-	SAP NetWeaver Business Client の testcanvas ノードにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4160	2014-06-17 14:18	2014-05-28	Show	GitHub Exploit DB Packet Storm

221088	5.8	警告	SAP	-	SAP Supplier Relationship Management におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-4159	2014-06-17 14:18	2014-05-28	Show	GitHub Exploit DB Packet Storm

221089	7.5	危険	SENKAS	-	Kolibri におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-4158	2014-06-17 12:33	2014-04-25	Show	GitHub Exploit DB Packet Storm

221090	10	危険	AlienVault	-	AlienVault OSSIM の av-centerd SOAP サービスにおける任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-3805	2014-06-17 12:14	2014-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295281	-	i18n_project	i18n	Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem before 0.6.6 for Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted I18n::MissingTranslationDa…	CWE-79 Cross-site Scripting	CVE-2013-4492	2024-11-21 10:55	2013-12-7	Show	GitHub Exploit DB Packet Storm

295282	-	rubyonrails	rails ruby_on_rails	Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/translation_helper.rb in the internationalization component in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allo…	CWE-79 Cross-site Scripting	CVE-2013-4491	2024-11-21 10:55	2013-12-7	Show	GitHub Exploit DB Packet Storm

295283	-	jahia	jahia_xcm	Multiple cross-site scripting (XSS) vulnerabilities in Jahia xCM 6.6.1.0 before hotfix 7 allow remote attackers to inject arbitrary web script or HTML via (1) the site parameter to engines/manager.js…	CWE-79 Cross-site Scripting	CVE-2013-4624	2024-11-21 10:55	2013-11-28	Show	GitHub Exploit DB Packet Storm

295284	-	jahia	jahia_xcm	Jahia xCM before 6.6.2 does not include the HTTPOnly flag in a Set-Cookie header for the JSESSIONID cookie, which makes it easier for remote attackers to obtain potentially sensitive information via …	CWE-200 Information Exposure	CVE-2013-4617	2024-11-21 10:55	2013-11-28	Show	GitHub Exploit DB Packet Storm

295285	-	moodle	moodle	Cross-site scripting (XSS) vulnerability in mod/quiz/report/responses/responses_table.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authe…	CWE-79 Cross-site Scripting	CVE-2013-4525	2024-11-21 10:55	2013-11-26	Show	GitHub Exploit DB Packet Storm

295286	-	moodle	moodle	Directory traversal vulnerability in repository/filesystem/lib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authenticated users to read …	CWE-22 Path Traversal	CVE-2013-4524	2024-11-21 10:55	2013-11-26	Show	GitHub Exploit DB Packet Storm

295287	-	moodle	moodle	Cross-site scripting (XSS) vulnerability in message/lib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authenticated users to inject arbit…	CWE-79 Cross-site Scripting	CVE-2013-4523	2024-11-21 10:55	2013-11-26	Show	GitHub Exploit DB Packet Storm

295288	-	moodle	moodle	lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain …	CWE-200 Information Exposure	CVE-2013-4522	2024-11-21 10:55	2013-11-26	Show	GitHub Exploit DB Packet Storm

295289	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess extension for MediaWiki 1.19.x before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to inject ar…	CWE-79 Cross-site Scripting	CVE-2013-4573	2024-11-21 10:55	2013-11-26	Show	GitHub Exploit DB Packet Storm

295290	-	ibus_project opensuse	ibus opensuse	The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allo…	CWE-255 Credentials Management	CVE-2013-4509	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm