Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222711	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-3324	2013-12-19 18:36	2013-05-14	Show	GitHub Exploit DB Packet Storm

222712	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-2728	2013-12-19 18:32	2013-05-14	Show	GitHub Exploit DB Packet Storm

222713	7.8	危険	Wireshark	-	Wireshark の REsource LOcation And Discovery 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2013-2487	2013-12-19 18:29	2013-03-6	Show	GitHub Exploit DB Packet Storm

222714	5	警告	Boost.org	-	Boost の Boost.Locale ライブラリにおける入力検証の保護メカニズムを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0252	2013-12-19 18:28	2013-02-1	Show	GitHub Exploit DB Packet Storm

222715	6.1	警告	Wireshark	-	Wireshark の REsource LOcation And Discovery 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2013-2486	2013-12-19 18:27	2013-03-6	Show	GitHub Exploit DB Packet Storm

222716	5	警告	libarchive	-	libarchive の archive_write_set_format_zip.c における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2013-0211	2013-12-19 18:25	2013-03-22	Show	GitHub Exploit DB Packet Storm

222717	5	警告	thekelleys	-	Dnsmasq におけるサービス運用妨害 (トラフィック増幅) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0198	2013-12-19 18:24	2013-03-5	Show	GitHub Exploit DB Packet Storm

222718	4.3	警告	IOServer	-	IOServer の XML Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-4680	2013-12-19 18:23	2012-08-27	Show	GitHub Exploit DB Packet Storm

222719	6.8	警告	Trimble	-	SketchUp Viewer にバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2013-6038	2013-12-19 18:23	2013-12-12	Show	GitHub Exploit DB Packet Storm

222720	3.5	注意	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5402	2013-12-19 17:42	2013-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273311	5.4	MEDIUM Network	bedita	bedita	An issue was discovered in BEdita before 3.7.0. A cross-site scripting (XSS) attack occurs via a crafted pages/showObjects URI, as demonstrated by appending a payload to a pages/showObjects/2/0/0/lea…	CWE-79 Cross-site Scripting	CVE-2015-9260	2024-11-21 11:40	2018-07-5	Show	GitHub Exploit DB Packet Storm

273312	7.5	HIGH Network	ansi2html_project	ansi2html	ansi2html is vulnerable to regular expression denial of service (ReDoS) when certain types of user input is passed in.	CWE-20 Improper Input Validation	CVE-2015-9239	2024-11-21 11:40	2018-06-1	Show	GitHub Exploit DB Packet Storm

273313	5.3	MEDIUM Network	secure-compare_project	secure-compare	secure-compare 3.0.0 and below do not actually compare two strings properly. compare was actually comparing the first argument with itself, meaning the check passed for any two strings of the same le…	CWE-134 Use of Externally-Controlled Format String	CVE-2015-9238	2024-11-21 11:40	2018-06-1	Show	GitHub Exploit DB Packet Storm

273314	5.3	MEDIUM Network	hapijs	hapi	Hapi versions less than 11.0.0 implement CORS incorrectly and allowed for configurations that at best returned inconsistent headers and at worst allowed cross-origin activities that were expected to …	CWE-200 Information Exposure	CVE-2015-9236	2024-11-21 11:40	2018-06-1	Show	GitHub Exploit DB Packet Storm

273315	9.8	CRITICAL Network	mysqljs	mysql	Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.	CWE-89 SQL Injection	CVE-2015-9244	2024-11-21 11:40	2018-05-30	Show	GitHub Exploit DB Packet Storm

273316	5.9	MEDIUM Network	hapijs	hapi	When server level, connection level or route level CORS configurations in hapi node module before 11.1.4 are combined and when a higher level config included security restrictions (like origin), a hi…	CWE-254 7PK - Security Features	CVE-2015-9243	2024-11-21 11:40	2018-05-30	Show	GitHub Exploit DB Packet Storm

273317	7.5	HIGH Network	ecstatic_project	ecstatic	Certain input strings when passed to new Date() or Date.parse() in ecstatic node module before 1.4.0 will cause v8 to raise an exception. This leads to a crash and denial of service in ecstatic when …	CWE-20 Improper Input Validation	CVE-2015-9242	2024-11-21 11:40	2018-05-30	Show	GitHub Exploit DB Packet Storm

273318	7.5	HIGH Network	hapijs	hapi	Certain input passed into the If-Modified-Since or Last-Modified headers will cause an 'illegal access' exception to be raised. Instead of sending a HTTP 500 error back to the sender, hapi node modul…	CWE-20 Improper Input Validation	CVE-2015-9241	2024-11-21 11:40	2018-05-30	Show	GitHub Exploit DB Packet Storm

273319	7.5	HIGH Network	keystonejs	keystone	Due to a bug in the the default sign in functionality in the keystone node module before 0.3.16, incomplete email addresses could be matched. A correct password is still required to complete sign in.	CWE-255 Credentials Management	CVE-2015-9240	2024-11-21 11:40	2018-05-30	Show	GitHub Exploit DB Packet Storm

273320	9.8	CRITICAL Network	auth0	jsonwebtoken	In jsonwebtoken node module before 4.2.2 it is possible for an attacker to bypass verification when a token digitally signed with an asymmetric key (RS/ES family) of algorithms but instead the attack…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2015-9235	2024-11-21 11:40	2018-05-30	Show	GitHub Exploit DB Packet Storm