Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
221181 4.3 警告 Exponent CMS project - Exponent CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-6635 2014-10-29 15:45 2014-09-20 Show GitHub Exploit DB Packet Storm
221182 7.5 危険 XRMS CRM Project - XRMS CRM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-5520 2014-10-29 15:41 2014-08-27 Show GitHub Exploit DB Packet Storm
221183 7.5 危険 F5 Networks - F5 BIG-IP Analytics における脆弱性 CWE-310
暗号の問題
CVE-2013-7408 2014-10-29 15:40 2013-04-9 Show GitHub Exploit DB Packet Storm
221184 5 警告 DeepRoot Linux - DeepOfix の SMTP サーバにおける認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-6796 2014-10-29 15:39 2013-11-6 Show GitHub Exploit DB Packet Storm
221185 7.5 危険 Zoho Corporation - ZOHO ManageEngine EventLog Analyzer の agentUpload サーブレットにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2014-6037 2014-10-29 15:39 2014-08-31 Show GitHub Exploit DB Packet Storm
221186 4.4 警告 Vinay Sajip - python-gnupg の shell_quote 関数における脆弱性 CWE-20
不適切な入力確認
CVE-2014-1929 2014-10-29 15:28 2014-06-4 Show GitHub Exploit DB Packet Storm
221187 4.6 警告 Vinay Sajip - python-gnupg の shell_quote 関数における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-1928 2014-10-29 15:28 2014-02-5 Show GitHub Exploit DB Packet Storm
221188 7.5 危険 Vinay Sajip - python-gnupg の shell_quote 関数における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-1927 2014-10-29 15:27 2014-02-5 Show GitHub Exploit DB Packet Storm
221189 2.1 注意 IBM - IBM API Management における重要な暗号文情報を取得される脆弱性 CWE-noinfo
情報不足
CVE-2014-6133 2014-10-29 14:29 2014-10-21 Show GitHub Exploit DB Packet Storm
221190 5 警告 IBM - IBM Sterling B2B Integrator のパスワード変更機能における管理者のアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2014-6099 2014-10-29 14:25 2014-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295821 7.6 HIGH
Network
libgd libgd gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (… CWE-125
Out-of-bounds Read
CVE-2013-7456 2024-11-21 11:01 2016-08-7 Show GitHub Exploit DB Packet Storm
295822 7.8 HIGH
Local
google android Unspecified vulnerability in the Qualcomm components in Android before 2016-07-05 allows attackers to gain privileges via a crafted application. NVD-CWE-noinfo
CVE-2013-7457 2024-11-21 11:01 2016-07-11 Show GitHub Exploit DB Packet Storm
295823 5.9 MEDIUM
Network
python python The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof serve… CWE-19
 Data Processing Errors
CVE-2013-7440 2024-11-21 11:01 2016-06-8 Show GitHub Exploit DB Packet Storm
295824 7.5 HIGH
Network
php php file before 5.18, as used in the Fileinfo component in PHP before 5.6.0, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a zero root_storage … NVD-CWE-Other
CVE-2014-0236 2024-11-21 11:01 2016-05-16 Show GitHub Exploit DB Packet Storm
295825 9.8 CRITICAL
Network
littlecms little_cms_color_engine Double free vulnerability in the DefaultICCintents function in cmscnvrt.c in liblcms2 in Little CMS 2.x before 2.6 allows remote attackers to execute arbitrary code via a malformed ICC profile that t… NVD-CWE-Other
CVE-2013-7455 2024-11-21 11:01 2016-05-7 Show GitHub Exploit DB Packet Storm
295826 6.5 MEDIUM
Network
canonical
xchat
hexchat_project
ubuntu_linux
xchat
xchat_gnome
hexchat
The ssl_do_connect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows m… CWE-310
Cryptographic Issues
CVE-2013-7449 2024-11-21 11:01 2016-04-21 Show GitHub Exploit DB Packet Storm
295827 7.5 HIGH
Network
debian
didiwiki_project
debian_linux
didiwiki
Directory traversal vulnerability in wiki.c in didiwiki allows remote attackers to read arbitrary files via the page parameter to api/page/get. CWE-22
Path Traversal
CVE-2013-7448 2024-11-21 11:01 2016-02-24 Show GitHub Exploit DB Packet Storm
295828 6.5 MEDIUM
Network
canonical
samsung
ubuntu_linux
x14j_firmware
Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, all… NVD-CWE-Other
CVE-2013-7447 2024-11-21 11:01 2016-02-18 Show GitHub Exploit DB Packet Storm
295829 5.3 MEDIUM
Local
linux linux_kernel Use-after-free vulnerability in net/unix/af_unix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AF_UNIX socket permissions or cause a denial of service (panic) via crafted e… NVD-CWE-Other
CVE-2013-7446 2024-11-21 11:01 2015-12-28 Show GitHub Exploit DB Packet Storm
295830 - linux linux_kernel The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a deni… CWE-399
 Resource Management Errors
CVE-2013-7445 2024-11-21 11:01 2015-10-16 Show GitHub Exploit DB Packet Storm