Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222441 4.3 警告 Novell - Novell Identity Manager 用 Roles Based Provisioning Module におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1096 2014-01-6 16:33 2013-11-17 Show GitHub Exploit DB Packet Storm
222442 10 危険 ヒューレット・パッカード - HP Application Information Optimizer の Archive Query Server における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6189 2014-01-6 16:32 2013-12-19 Show GitHub Exploit DB Packet Storm
222443 4.3 警告 Joomla! - Joomla! の libraries/idna_convert/example.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5583 2014-01-6 16:32 2013-08-5 Show GitHub Exploit DB Packet Storm
222444 7.5 危険 OpenX
Revive Adserver		 - Revive Adserver および OpenX Source における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7149 2014-01-6 16:31 2013-12-20 Show GitHub Exploit DB Packet Storm
222445 5.4 警告 シスコシステムズ - Cisco IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6981 2014-01-6 16:31 2013-12-24 Show GitHub Exploit DB Packet Storm
222446 5.2 警告 Linux
レッドハット		 - Linux Kernel の Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-2519 2014-01-6 16:19 2011-09-6 Show GitHub Exploit DB Packet Storm
222447 9.3 危険 アップル - Apple QuickTime の Picture Viewer における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-1819 2014-01-6 15:55 2010-09-15 Show GitHub Exploit DB Packet Storm
222448 4.3 警告 Matrix42 - Matrix42 Service Store の Service Desk におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2504 2014-01-6 15:54 2013-04-18 Show GitHub Exploit DB Packet Storm
222449 7.4 危険 レッドハット - Red Hat Enterprise Virtualization Hypervisor などの製品で使用される libspice における任意の QEMU メモリを読まれるまたは書き込まれる脆弱性 CWE-119
バッファエラー 		CVE-2010-0430 2014-01-6 15:23 2010-03-30 Show GitHub Exploit DB Packet Storm
222450 4.3 警告 マイクロソフト - Windows XP 上で稼働する Microsoft Windows Movie Maker におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4858 2014-01-6 15:03 2013-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272911 7.5 HIGH
Network 		google android An issue was discovered on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of … CWE-200
Information Exposure 		CVE-2015-9547 2024-11-21 11:40 2020-04-11 Show GitHub Exploit DB Packet Storm
272912 4.8 MEDIUM
Network 		google android An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker c… CWE-22
Path Traversal 		CVE-2015-9546 2024-11-21 11:40 2020-04-11 Show GitHub Exploit DB Packet Storm
272913 7.1 HIGH
Local 		cross_domain_local_storage_project cross_domain_local_storage An issue was discovered in xdLocalStorage through 2.0.5. The receiveMessage() function in xdLocalStorage.js does not implement any validation of the origin of web messages. Remote attackers who can e… CWE-20
 Improper Input Validation  		CVE-2015-9545 2024-11-21 11:40 2020-04-8 Show GitHub Exploit DB Packet Storm
272914 7.1 HIGH
Local 		cross_domain_local_storage_project cross_domain_local_storage An issue was discovered in xdLocalStorage through 2.0.5. The receiveMessage() function in xdLocalStoragePostMessageApi.js does not implement any validation of the origin of web messages. Remote attac… CWE-20
 Improper Input Validation  		CVE-2015-9544 2024-11-21 11:40 2020-04-8 Show GitHub Exploit DB Packet Storm
272915 7.5 HIGH
Network 		freeradius
debian
canonical 		pam_radius
debian_linux
ubuntu_linux 		add_password in pam_radius_auth.c in pam_radius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy(). An attacker could … CWE-787
 Out-of-bounds Write 		CVE-2015-9542 2024-11-21 11:40 2020-02-25 Show GitHub Exploit DB Packet Storm
272916 3.3 LOW
Local 		openstack nova An issue was discovered in OpenStack Nova before 18.2.4, 19.x before 19.1.0, and 20.x before 20.1.0. It can leak consoleauth tokens into log files. An attacker with read access to the service's logs … CWE-200
Information Exposure 		CVE-2015-9543 2024-11-21 11:40 2020-02-19 Show GitHub Exploit DB Packet Storm
272917 7.5 HIGH
Network 		qt
fedoraproject 		qt
fedora 		Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564. CWE-776
XML Entity Expansion 		CVE-2015-9541 2024-11-21 11:40 2020-01-25 Show GitHub Exploit DB Packet Storm
272918 6.1 MEDIUM
Network 		chamilo chamilo_lms Chamilo LMS through 1.9.10.2 allows a link_goto.php?link_url= open redirect, a related issue to CVE-2015-5503. CWE-601
Open Redirect 		CVE-2015-9540 2024-11-21 11:40 2020-01-4 Show GitHub Exploit DB Packet Storm
272919 6.1 MEDIUM
Network 		fast_secure_contact_form_project fast_secure_contact_form The Fast Secure Contact Form plugin before 4.0.38 for WordPress allows fs_contact_form1[welcome] XSS. CWE-79
Cross-site Scripting 		CVE-2015-9539 2024-11-21 11:40 2019-11-27 Show GitHub Exploit DB Packet Storm
272920 6.5 MEDIUM
Network 		imagely nextgen_gallery The NextGEN Gallery plugin before 2.1.15 for WordPress allows ../ Directory Traversal in path selection. CWE-22
Path Traversal 		CVE-2015-9538 2024-11-21 11:40 2019-11-27 Show GitHub Exploit DB Packet Storm