Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222121	6.5	警告	シマンテック	-	Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5015	2014-02-17 11:26	2013-07-29	Show	GitHub Exploit DB Packet Storm

222122	7.5	危険	シマンテック	-	Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2013-5014	2014-02-17 11:21	2013-07-29	Show	GitHub Exploit DB Packet Storm

222123	3.5	注意	IBM	-	IBM Sametime の Meeting Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6743	2014-02-17 10:58	2013-11-8	Show	GitHub Exploit DB Packet Storm

222124	6.8	警告	IBM	-	IBM Sametime の Meeting Server におけるクリックジャッキング攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-3988	2014-02-17 10:57	2013-06-7	Show	GitHub Exploit DB Packet Storm

222125	7.5	危険	IBM	-	IBM Sametime の Meeting Server におけるアクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6742	2014-02-17 10:57	2013-11-8	Show	GitHub Exploit DB Packet Storm

222126	7.5	危険	IBM	-	IBM Sametime の Meeting Server における脆弱性	CWE-20 不適切な入力確認	CVE-2013-3983	2014-02-17 10:57	2013-06-7	Show	GitHub Exploit DB Packet Storm

222127	5	警告	IBM	-	IBM Sametime の Meeting Server における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3978	2014-02-17 10:56	2013-06-7	Show	GitHub Exploit DB Packet Storm

222128	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の Enterprise Mobility Application インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0729	2014-02-14 14:52	2014-02-13	Show	GitHub Exploit DB Packet Storm

222129	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0728	2014-02-14 14:51	2014-02-12	Show	GitHub Exploit DB Packet Storm

222130	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の CallManager Interactive Voice Response インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0727	2014-02-14 14:50	2014-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268311	8.1	HIGH Network	ibm	infosphere_information_server infosphere_datastage infosphere_information_server_on_cloud	IBM InfoSphere Information Server is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerabi…	CWE-611 XXE	CVE-2016-6059	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268312	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin…	CWE-79 Cross-site Scripting	CVE-2016-6054	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268313	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…	CWE-79 Cross-site Scripting	CVE-2016-6047	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268314	5.4	MEDIUM Network	ibm	tivoli_storage_manager	IBM Tivoli Storage Manager Operations Center is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio…	CWE-79 Cross-site Scripting	CVE-2016-6046	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268315	8.8	HIGH Network	ibm	tivoli_storage_manager	IBM Tivoli Storage Manager Operations Center is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the w…	CWE-352 Origin Validation Error	CVE-2016-6045	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268316	4.3	MEDIUM Network	ibm	tivoli_storage_manager	IBM Tivoli Storage Manager Operations Center could allow an authenticated attacker to enable or disable the application's REST API, which may let the attacker violate security policy.	CWE-284 Improper Access Control	CVE-2016-6044	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268317	7.0	HIGH Local	ibm	tivoli_storage_manager	Tivoli Storage Manager Operations Center could allow a local user to take over a previously logged in user due to session expiration not being enforced.	CWE-384 Session Fixation	CVE-2016-6043	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268318	7.3	HIGH Local	ibm	security_appscan	IBM AppScan Enterprise Edition could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafte…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-6042	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268319	5.0	MEDIUM Network	ibm	rational_collaborative_lifecycle_management	IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.	CWE-384 Session Fixation	CVE-2016-6040	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

268320	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…	CWE-79 Cross-site Scripting	CVE-2016-6039	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm