Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222501	7.5	危険	レッドハット	-	Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4461	2013-12-25 14:05	2013-12-17	Show	GitHub Exploit DB Packet Storm

222502	4.3	警告	レッドハット	-	Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4414	2013-12-25 14:04	2013-12-17	Show	GitHub Exploit DB Packet Storm

222503	6.8	警告	レッドハット	-	Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-4405	2013-12-25 14:04	2013-12-17	Show	GitHub Exploit DB Packet Storm

222504	6.5	警告	レッドハット	-	Red Hat Enterprise MRG Grid の cumin におけるロールの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4404	2013-12-25 14:03	2013-12-17	Show	GitHub Exploit DB Packet Storm

222505	5	警告	Idleman	-	Leed における認証を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2629	2013-12-25 14:03	2013-12-18	Show	GitHub Exploit DB Packet Storm

222506	2.1	注意	VMware	-	VMware ESX および ESXi において任意のファイルにアクセス可能な問題	CWE-noinfo 情報不足	CVE-2013-5973	2013-12-25 13:56	2013-12-24	Show	GitHub Exploit DB Packet Storm

222507	5	警告	アップル	-	Apple Motion の OZDocument::parseElement 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2013-6114	2013-12-25 13:53	2013-10-7	Show	GitHub Exploit DB Packet Storm

222508	4.9	警告	Novell	-	Windows 上で稼働する Novell Client の VBA32 AntiRootKit コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3705	2013-12-25 13:43	2013-12-10	Show	GitHub Exploit DB Packet Storm

222509	4	警告	シスコシステムズ	-	Cisco Unified Communications Manager のディザスタリカバリシステムコンポーネントにおける重要なデバイス情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-6978	2013-12-25 13:41	2013-12-18	Show	GitHub Exploit DB Packet Storm

222510	-	-	ヒューレット・パッカード	-	削除 HP Autonomy Ultraseek におけるクロスサイトスクリプティングの脆弱性	-	CVE-2013-6196	2013-12-25 13:40	2013-12-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268141	6.5	MEDIUM Network	ibm	sametime	IBM Sametime Meeting Server 8.5.2 and 9.0 is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading a user to visit a malicious link, a remote a…	CWE-352 Origin Validation Error	CVE-2016-2965	2024-11-21 11:49	2017-08-30	Show	GitHub Exploit DB Packet Storm

268142	4.3	MEDIUM Network	ibm	sametime	IBM Sametime Meeting Server 8.5.2 and 9.0 could allow a meeting room manager to remove the primary managers privileges. IBM X-Force ID: 113804.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2959	2024-11-21 11:49	2017-08-30	Show	GitHub Exploit DB Packet Storm

268143	4.3	MEDIUM Network	ibm	sametime	IBM Sametime 8.5 and 9.0 meetings server may provide detailed information in an error message that may provide details about the application to possible attackers. IBM X-Force ID: 113851.	CWE-200 Information Exposure	CVE-2016-2970	2024-11-21 11:49	2017-08-29	Show	GitHub Exploit DB Packet Storm

268144	6.1	MEDIUM Network	redhat	ovirt-engine	Cross-site scripting (XSS) vulnerability in ovirt-engine allows remote attackers to inject arbitrary web script or HTML.	CWE-79 Cross-site Scripting	CVE-2016-3113	2024-11-21 11:49	2017-08-8	Show	GitHub Exploit DB Packet Storm

268145	7.5	HIGH Network	netapp	data_ontap	NetApp Data ONTAP 8.1 and 8.2, when operating in 7-Mode, allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service via vectors related to the S…	CWE-254 7PK - Security Features	CVE-2016-3400	2024-11-21 11:49	2017-07-4	Show	GitHub Exploit DB Packet Storm

268146	7.5	HIGH Network	redhat	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node	mod_ns in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux Workstation 7 allows remote attackers to force the u…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2016-3099	2024-11-21 11:49	2017-06-9	Show	GitHub Exploit DB Packet Storm

268147	5.5	MEDIUM Local	fedoraproject pulpproject	fedora pulp	server/bin/pulp-gen-ca-certificate in Pulp before 2.8.2 allows local users to read the generated private key.	CWE-200 Information Exposure	CVE-2016-3095	2024-11-21 11:49	2017-06-9	Show	GitHub Exploit DB Packet Storm

268148	7.5	HIGH Network	pulpproject	pulp	client/consumer/cli.py in Pulp before 2.8.3 writes consumer private keys to etc/pki/pulp/consumer/consumer-cert.pem as world-readable, which allows remote authenticated users to obtain the consumer p…	CWE-284 Improper Access Control	CVE-2016-3112	2024-11-21 11:49	2017-06-9	Show	GitHub Exploit DB Packet Storm

268149	5.5	MEDIUM Local	pulpproject	pulp	pulp.spec in the installation process for Pulp 2.8.3 generates the RSA key pairs used to validate messages between the pulp server and pulp consumers in a directory that is world-readable before late…	CWE-200 Information Exposure	CVE-2016-3111	2024-11-21 11:49	2017-06-9	Show	GitHub Exploit DB Packet Storm

268150	7.1	HIGH Local	pulpproject	pulp	The pulp-gen-nodes-certificate script in Pulp before 2.8.3 allows local users to leak the keys or write to arbitrary files via a symlink attack.	CWE-59 Link Following	CVE-2016-3108	2024-11-21 11:49	2017-06-9	Show	GitHub Exploit DB Packet Storm