Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
221731 9 危険 OpenMediaVault - OpenMediaVault の rpc.php の Cron サービスにおける任意のユーザとして cron ジョブを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-3632 2014-10-1 14:42 2013-10-30 Show GitHub Exploit DB Packet Storm
221732 4.3 警告 Apache Friends - XAMPP における xampp/lang.tmp を変更される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-2586 2014-10-1 14:35 2013-09-26 Show GitHub Exploit DB Packet Storm
221733 7.1 危険 シスコシステムズ (Linksys) - Linksys EA6500 のファームウェアにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-3066 2014-10-1 14:26 2013-04-13 Show GitHub Exploit DB Packet Storm
221734 3.5 注意 シスコシステムズ (Linksys) - Linksys EA6500 のファームウェアの Parental Controls セクションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-3065 2014-10-1 14:26 2013-04-13 Show GitHub Exploit DB Packet Storm
221735 6.8 警告 シスコシステムズ (Linksys) - Linksys EA6500 のファームウェアの ui/dynamic/unsecured.html におけるオープンリダイレクトの脆弱性 CWE-Other
その他
CVE-2013-3064 2014-10-1 14:25 2013-04-13 Show GitHub Exploit DB Packet Storm
221736 5.4 警告 iLeaf Solutions - Android 用 Cloud Manager アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-5641 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
221737 5.4 警告 Huntington National Bank - Android 用 Huntington Mobile アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-5638 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
221738 5.4 警告 Cheetah Mobile - Android 用 CM Backup -Restore,Cloud,Photo アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-5640 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
221739 5.4 警告 Guilardi Mob - Android 用 Eu Sei アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-5637 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
221740 5.4 警告 IMPI - Android 用 IMPI Mobile Security アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-5642 2014-09-30 16:51 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273361 4.5 MEDIUM
Local
ibm sterling_connect\ IBM Sterling Connect:Direct 4.5.00, 4.5.01, 4.6.0 before 4.6.0.6 iFix008, and 4.7.0 before 4.7.0.4 on Windows allows local users to gain privileges via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5991 2024-11-21 11:55 2016-11-25 Show GitHub Exploit DB Packet Storm
273362 5.4 MEDIUM
Network
ibm filenet_workplace
filenet_workplace_xt
Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace XT through 1.1.5.2-WPXT-LA011 and FileNet Workplace (Application Engine) through 4.0.2.14-P8AE-IF001, when RegExpSecurityFilter and S… CWE-79
Cross-site Scripting
CVE-2016-5981 2024-11-21 11:55 2016-11-25 Show GitHub Exploit DB Packet Storm
273363 5.3 MEDIUM
Network
ibm tealeaf_customer_experience The Replay Server in IBM Tealeaf Customer Experience 8.x before 8.7.1.8847 FP10, 8.8.x before 8.8.0.9049 FP9, 9.0.0 and 9.0.1 before 9.0.1.1117 FP5, 9.0.1A before 9.0.1.5108 FP5, 9.0.2 before 9.0.2.1… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2016-5968 2024-11-21 11:55 2016-11-25 Show GitHub Exploit DB Packet Storm
273364 5.5 MEDIUM
Local
ibm rational_asset_analyzer The installation component in IBM Rational Asset Analyzer (RAA) 6.1.0 before FP10 allows local users to discover the WAS Admin password by reading IM native logs. CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2016-5967 2024-11-21 11:55 2016-11-25 Show GitHub Exploit DB Packet Storm
273365 5.4 MEDIUM
Network
ibm rational_doors_next_generation Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Next Generation 6.0.2 before iFix004 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2016-5955 2024-11-21 11:55 2016-11-25 Show GitHub Exploit DB Packet Storm
273366 10.0 CRITICAL
Network
ge bently_nevada_3500\/22m_usb_firmware
bently_nevada_3500\/22m_serial_firmware
General Electric (GE) Bently Nevada 3500/22M USB with firmware before 5.0 and Bently Nevada 3500/22M Serial have open ports, which makes it easier for remote attackers to obtain privileged access via… CWE-254
CWE-285
 7PK - Security Features
Improper Authorization
CVE-2016-5788 2024-11-21 11:55 2016-11-25 Show GitHub Exploit DB Packet Storm
273367 7.8 HIGH
Local
nvidia geforce_experience For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successf… NVD-CWE-Other
CVE-2016-5852 2024-11-21 11:55 2016-11-9 Show GitHub Exploit DB Packet Storm
273368 5.4 MEDIUM
Network
ibm financial_transaction_manager Cross-site scripting (XSS) vulnerability in the Web UI in IBM Financial Transaction Manager (FTM) for ACH Services 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users … CWE-79
Cross-site Scripting
CVE-2016-5920 2024-11-21 11:55 2016-10-29 Show GitHub Exploit DB Packet Storm
273369 7.5 HIGH
Network
cisco email_security_appliance A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition when the FTP application … CWE-20
 Improper Input Validation 
CVE-2016-6358 2024-11-21 11:55 2016-10-28 Show GitHub Exploit DB Packet Storm
273370 7.5 HIGH
Network
cisco email_security_appliance A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypas… CWE-388
 7PK - Errors
CVE-2016-6357 2024-11-21 11:55 2016-10-28 Show GitHub Exploit DB Packet Storm