Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221511 7.5 危険 phpManufaktur - KeepInTouch モジュール用 phpManufaktur kitForm 拡張機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3757 2014-05-19 15:48 2014-04-20 Show GitHub Exploit DB Packet Storm
221512 5.8 警告 Bilyoner.com - Android 用および iOS 用 Bilyoner アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-3750 2014-05-19 15:43 2014-05-15 Show GitHub Exploit DB Packet Storm
221513 4.3 警告 Open Dynamics - Collabtive におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3247 2014-05-19 15:26 2014-05-8 Show GitHub Exploit DB Packet Storm
221514 10 危険 PCMan's FTP Server project - PCMan's FTP Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4730 2014-05-19 15:16 2013-06-27 Show GitHub Exploit DB Packet Storm
221515 2.1 注意 MantisBT Group - MantisBT の core/summary_api.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1810 2014-05-19 14:16 2013-01-18 Show GitHub Exploit DB Packet Storm
221516 4.3 警告 MantisBT Group - MantisBT の core/filter_api.php 内の filter_draw_selection_area2 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0197 2014-05-19 14:15 2013-01-18 Show GitHub Exploit DB Packet Storm
221517 6.4 警告 XiaoWen Huang - iOS 用 YingZhi Python Programming Language の FTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5655 2014-05-19 13:45 2013-08-28 Show GitHub Exploit DB Packet Storm
221518 4.3 警告 Phpcms - PHPCMS 用 Guestbook モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5939 2014-05-19 12:10 2013-10-23 Show GitHub Exploit DB Packet Storm
221519 5 警告 OpenStack - OpenStack Dashboard の Identity v3 API におけるユーザのパスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4471 2014-05-19 12:03 2013-11-22 Show GitHub Exploit DB Packet Storm
221520 6.5 警告 VICIDIAL Group - VICIDIAL ダイヤラーにおける任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2013-4468 2014-05-19 11:53 2013-10-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273251 5.4 MEDIUM
Network 		vmware vrealize_business_advanced_and_enterprise Cross-site scripting (XSS) vulnerability in VMware vRealize Business Advanced and Enterprise 8.x before 8.2.5 on Linux allows remote authenticated users to inject arbitrary web script or HTML via uns… CWE-79
Cross-site Scripting 		CVE-2016-2075 2024-11-21 11:47 2016-03-16 Show GitHub Exploit DB Packet Storm
273252 8.0 HIGH
Network 		microfocus arcsight_enterprise_security_manager HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to conduct unspecified "file download… NVD-CWE-noinfo
CVE-2016-1991 2024-11-21 11:47 2016-03-16 Show GitHub Exploit DB Packet Storm
273253 7.8 HIGH
Local 		microfocus arcsight_enterprise_security_manager HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via unspeci… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1990 2024-11-21 11:47 2016-03-16 Show GitHub Exploit DB Packet Storm
273254 9.8 CRITICAL
Network 		hp network_automation HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerabili… NVD-CWE-noinfo
CVE-2016-1989 2024-11-21 11:47 2016-03-15 Show GitHub Exploit DB Packet Storm
273255 9.8 CRITICAL
Network 		hp network_automation HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerabili… NVD-CWE-noinfo
CVE-2016-1988 2024-11-21 11:47 2016-03-15 Show GitHub Exploit DB Packet Storm
273256 8.8 HIGH
Network 		mozilla firefox
network_security_services 		Use-after-free vulnerability in the PK11_ImportDERPrivateKeyInfoAndReturnKey function in Mozilla Network Security Services (NSS) before 3.21.1, as used in Mozilla Firefox before 45.0, allows remote a… NVD-CWE-Other
CVE-2016-1979 2024-11-21 11:47 2016-03-14 Show GitHub Exploit DB Packet Storm
273257 7.3 HIGH
Network 		mozilla firefox
network_security_services 		Use-after-free vulnerability in the ssl3_HandleECDHServerKeyExchange function in Mozilla Network Security Services (NSS) before 3.21, as used in Mozilla Firefox before 44.0, allows remote attackers t… NVD-CWE-Other
CVE-2016-1978 2024-11-21 11:47 2016-03-14 Show GitHub Exploit DB Packet Storm
273258 8.8 HIGH
Network 		suse
opensuse
oracle
sil
mozilla 		linux_enterprise
leap
opensuse
linux
graphite2
firefox 		The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1977 2024-11-21 11:47 2016-03-14 Show GitHub Exploit DB Packet Storm
273259 5.5 MEDIUM
Network 		mozilla
webrtc_project 		firefox
webrtc 		Use-after-free vulnerability in the DesktopDisplayDevice class in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service or poss… NVD-CWE-Other
CVE-2016-1976 2024-11-21 11:47 2016-03-14 Show GitHub Exploit DB Packet Storm
273260 6.3 MEDIUM
Network 		webrtc_project
mozilla 		webrtc
firefox 		Multiple race conditions in dom/media/systemservices/CamerasChild.cpp in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service … CWE-362
Race Condition 		CVE-2016-1975 2024-11-21 11:47 2016-03-14 Show GitHub Exploit DB Packet Storm