Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222341 4.3 警告 IBM - 複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6746 2014-01-23 15:36 2013-12-23 Show GitHub Exploit DB Packet Storm
222342 10 危険 IBM - IBM Java SDK における脆弱性 CWE-noinfo
情報不足 		CVE-2013-0485 2014-01-23 15:36 2013-04-9 Show GitHub Exploit DB Packet Storm
222343 4.3 警告 IBM - IBM Platform Symphony における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-6305 2014-01-23 15:33 2013-10-31 Show GitHub Exploit DB Packet Storm
222344 2.1 注意 IBM - IBM Tivoli Federated Identity Manager および Tivoli Federated Identity Manager Business Gateway におけるトランザクションを完了される脆弱性 CWE-287
不適切な認証 		CVE-2013-5429 2014-01-23 15:33 2013-12-31 Show GitHub Exploit DB Packet Storm
222345 4 警告 The Tor Project - Tor における暗号保護メカニズムを回避される脆弱性 CWE-310
暗号の問題 		CVE-2013-7295 2014-01-23 12:13 2013-12-22 Show GitHub Exploit DB Packet Storm
222346 7.8 危険 デル - Dell PowerConnect スイッチ上で稼働する GoAhead Web Server のログインページにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3606 2014-01-22 19:13 2014-01-17 Show GitHub Exploit DB Packet Storm
222347 6.8 警告 デル - Dell PowerConnect スイッチ上で稼働する OpenManage Web Application におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3595 2014-01-22 19:13 2014-01-17 Show GitHub Exploit DB Packet Storm
222348 10 危険 デル - Dell PowerConnect スイッチの SSH サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3594 2014-01-22 19:12 2014-01-17 Show GitHub Exploit DB Packet Storm
222349 4 警告 WordPress.org - WordPress の wp-admin/press-this.php における publish アクションを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5270 2014-01-22 18:49 2011-04-26 Show GitHub Exploit DB Packet Storm
222350 2.1 注意 WordPress.org - WordPress におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5297 2014-01-22 18:47 2010-06-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268331 7.8 HIGH
Local 		haxx curl Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking atta… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-4802 2024-11-21 11:53 2016-06-25 Show GitHub Exploit DB Packet Storm
268332 5.6 MEDIUM
Network 		ntt-bp japan_connected-free_wi-fi The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified… CWE-284
Improper Access Control 		CVE-2016-4811 2024-11-21 11:53 2016-06-20 Show GitHub Exploit DB Packet Storm
268333 5.3 MEDIUM
Network 		iodata etx-r_firmware I-O DATA DEVICE ETX-R devices allow remote attackers to cause a denial of service (web-server crash) via unspecified vectors. NVD-CWE-noinfo
CVE-2016-4821 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268334 8.8 HIGH
Network 		iodata etx-r_firmware Cross-site request forgery (CSRF) vulnerability on I-O DATA DEVICE ETX-R devices allows remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error 		CVE-2016-4820 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268335 9.8 CRITICAL
Network 		dx_library_project dx_library The printfDx function in Takumi Yamada DX Library for Borland C++ 3.13f through 3.16b, DX Library for Gnu C++ 3.13f through 3.16b, and DX Library for Visual C++ 3.13f through 3.16b allows remote atta… NVD-CWE-Other
CVE-2016-4819 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268336 7.5 HIGH
Network 		dena h2o lib/http2/connection.c in H2O before 1.7.3 and 2.x before 2.0.0-beta5 mishandles HTTP/2 disconnection, which allows remote attackers to cause a denial of service (use-after-free and application crash… NVD-CWE-Other
CVE-2016-4817 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268337 6.5 MEDIUM
Network 		buffalo wzr-600dhp3_firmware
hw-450hp-zwe_firmware
wzr-hp-g450h_firmware
wzr-450hp_firmware
wzr-900dhp2_firmware
wcr-300_firmware
wzr-450hp-cwt_firmware
wzr-hp-g301nh_firmware
wxr-175… 		BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-4816 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268338 7.5 HIGH
Network 		buffalo wzr-900dhp2_firmware
wzr-600dhp3_firmware
wzr-s900dhp_firmware
wzr-s600dhp_firmware
wzr-900dhp_firmware
wzr-600dhp2_firmware 		Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files … CWE-22
Path Traversal 		CVE-2016-4815 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268339 7.5 HIGH
Network 		gsi old_gsi_maps Directory traversal vulnerability in kml2jsonp.php in Geospatial Information Authority of Japan (aka GSI) Old_GSI_Maps before January 2015 on Windows allows remote attackers to read arbitrary files v… CWE-22
Path Traversal 		CVE-2016-4814 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
268340 8.8 HIGH
Network 		netcommons netcommons NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat (aka CLERK) users to gain privileges by creating a SYSTEM_ADMIN account. CWE-284
Improper Access Control 		CVE-2016-4813 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm