Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222301 4.3 警告 MyBB Group - MyBB の misc.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7275 2014-01-10 14:25 2013-11-20 Show GitHub Exploit DB Packet Storm
222302 4.3 警告 Wallpaper Script - Wallpaper Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7274 2014-01-10 14:10 2013-12-16 Show GitHub Exploit DB Packet Storm
222303 4.9 警告 Linux - Linux Kernel の net/ieee802154/dgram.c 内の dgram_recvmsg 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-7281 2014-01-10 14:00 2013-12-8 Show GitHub Exploit DB Packet Storm
222304 4.3 警告 FolioVision - WordPress 用 Foliopress WYSIWYG プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1232 2014-01-10 13:46 2014-01-3 Show GitHub Exploit DB Packet Storm
222305 6.8 警告 Technicolor - Technicolor TC7200 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-0621 2014-01-10 13:39 2014-01-3 Show GitHub Exploit DB Packet Storm
222306 4.3 警告 Technicolor - Technicolor TC7200 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0620 2014-01-10 13:39 2014-01-3 Show GitHub Exploit DB Packet Storm
222307 5 警告 7 Media Web Solutions, LLC. - 7 Media Web Solutions の eduTrac におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7097 2014-01-10 11:37 2013-12-16 Show GitHub Exploit DB Packet Storm
222308 4.3 警告 Anthony Mills - WordPress 用 S3 Video プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7279 2014-01-10 11:01 2013-12-17 Show GitHub Exploit DB Packet Storm
222309 7.5 危険 Naxtech - Naxtech CMS Afroditi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7278 2014-01-10 10:39 2013-12-30 Show GitHub Exploit DB Packet Storm
222310 5.8 警告 Mozilla Foundation - Mozilla Firefox の Web App インストレーションサイトになりすまされる脆弱性 CWE-noinfo
情報不足 		CVE-2013-5611 2014-01-10 09:44 2013-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268101 7.8 HIGH
Local 		flexerasoftware installanywhere Untrusted search path vulnerability in Flexera InstallAnywhere allows local users to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executable file. NVD-CWE-Other
CVE-2016-4560 2024-11-21 11:52 2016-07-2 Show GitHub Exploit DB Packet Storm
268102 8.1 HIGH
Network 		libexpat_project
canonical
mcafee
python 		libexpat
ubuntu_linux
policy_auditor
python 		The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4472 2024-11-21 11:52 2016-07-1 Show GitHub Exploit DB Packet Storm
268103 8.8 HIGH
Adjacent 		redhat openstack The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 (Liberty) director and Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) director (aka overcloud-full) use a de… CWE-200
CWE-254
Information Exposure
 7PK - Security Features 		CVE-2016-4474 2024-11-21 11:52 2016-07-1 Show GitHub Exploit DB Packet Storm
268104 5.5 MEDIUM
Local 		oracle
linux
novell
redhat 		vm_server
linux
linux_kernel
suse_linux_enterprise_real_time_extension
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enter… 		The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of s… NVD-CWE-Other
CVE-2016-4470 2024-11-21 11:52 2016-06-27 Show GitHub Exploit DB Packet Storm
268105 7.8 HIGH
Local 		linux linux_kernel arch/x86/kvm/vmx.c in the Linux kernel through 4.6.3 mishandles the APICv on/off state, which allows guest OS users to obtain direct APIC MSR access on the host OS, and consequently cause a denial of… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-4440 2024-11-21 11:52 2016-06-27 Show GitHub Exploit DB Packet Storm
268106 6.1 MEDIUM
Network 		schneider-electric powerlogic_pm8ecc_firmware Cross-site scripting (XSS) vulnerability in the Schneider Electric PowerLogic PM8ECC module before 2.651 for PowerMeter 800 devices allows remote attackers to inject arbitrary web script or HTML via … CWE-79
Cross-site Scripting 		CVE-2016-4513 2024-11-21 11:52 2016-06-26 Show GitHub Exploit DB Packet Storm
268107 5.0 MEDIUM
Local 		advantech webaccess Buffer overflow in Advantech WebAccess before 8.1_20160519 allows local users to cause a denial of service via a crafted DLL file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4528 2024-11-21 11:52 2016-06-25 Show GitHub Exploit DB Packet Storm
268108 6.6 MEDIUM
Local 		advantech webaccess Unspecified ActiveX controls in Advantech WebAccess before 8.1_20160519 allow remote authenticated users to obtain sensitive information or modify data via unknown vectors, related to the INTERFACESA… NVD-CWE-noinfo
CVE-2016-4525 2024-11-21 11:52 2016-06-25 Show GitHub Exploit DB Packet Storm
268109 9.8 CRITICAL
Network 		unitronics visilogic_oplc_ide Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4519 2024-11-21 11:52 2016-06-25 Show GitHub Exploit DB Packet Storm
268110 6.5 MEDIUM
Network 		osisoft pi_sql_data_access_server_2016 OSIsoft PI SQL Data Access Server (aka OLE DB) 2016 1.5 allows remote authenticated users to cause a denial of service (service outage and data loss) via a message. CWE-20
 Improper Input Validation  		CVE-2016-4530 2024-11-21 11:52 2016-06-20 Show GitHub Exploit DB Packet Storm