Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223931 4.3 警告 IBM - IBM WebSphere Application Server の RPC アダプタにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0565 2013-04-25 16:01 2013-04-15 Show GitHub Exploit DB Packet Storm
223932 5.5 警告 IBM - Linux および UNIX 上で稼働する IBM WebSphere Application Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-0544 2013-04-25 15:58 2013-04-15 Show GitHub Exploit DB Packet Storm
223933 6.8 警告 IBM - 複数の OS 上で稼働する IBM WebSphere Application Server におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0543 2013-04-25 15:54 2013-04-15 Show GitHub Exploit DB Packet Storm
223934 4.3 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0542 2013-04-25 15:50 2013-04-15 Show GitHub Exploit DB Packet Storm
223935 1.9 注意 IBM - Windows 上で稼働する IBM WebSphere Application Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0541 2013-04-25 15:33 2013-04-15 Show GitHub Exploit DB Packet Storm
223936 3.5 注意 IBM - IBM WebSphere Application Server の Liberty Profile におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-0540 2013-04-25 15:28 2013-04-15 Show GitHub Exploit DB Packet Storm
223937 1.9 注意 Google - Google Authenticator の PAM モジュールにおけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2012-6140 2013-04-25 15:19 2012-03-28 Show GitHub Exploit DB Packet Storm
223938 7.2 危険 ヒューレット・パッカード - HP ElitePad 900 の BIOS における BIOS 制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5218 2013-04-25 15:05 2013-04-23 Show GitHub Exploit DB Packet Storm
223939 6.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1283 2013-04-25 10:26 2013-04-9 Show GitHub Exploit DB Packet Storm
223940 7.1 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1291 2013-04-25 10:24 2013-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278051 - custom_search_project custom_search Cross-site scripting (XSS) vulnerability in the Custom Search module 6.x-1.x before 6.x-1.12 and 7.x-1.x before 7.x-1.14 for Drupal allows remote authenticated users with certain permissions to injec… CWE-79
Cross-site Scripting 		CVE-2014-8320 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278052 - easy_social_project easy_social Cross-site scripting (XSS) vulnerability in the easy_social_admin_summary function in the Easy Social module 7.x-2.x before 7.x-2.11 for Drupal allows remote authenticated users with certain permissi… CWE-79
Cross-site Scripting 		CVE-2014-8319 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278053 - webform_project webform Cross-site scripting (XSS) vulnerability in the Webform module 6.x-3.x before 6.x-3.20, 7.x-3.x before 7.x-3.20, and 7.x-4.x before 7.x-4.0-beta2 for Drupal allows remote authenticated users with cer… CWE-79
Cross-site Scripting 		CVE-2014-8318 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278054 - webform_validation_project webform_validation Cross-site scripting (XSS) vulnerability in the Webform Validation module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain permissions to in… CWE-79
Cross-site Scripting 		CVE-2014-8317 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278055 - sap businessobjects_explorer XML External Entity (XXE) vulnerability in polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 allows remote attackers to read arbitrary files via the xmlParameter parameter in an explo… NVD-CWE-Other
CVE-2014-8316 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278056 - sap businessobjects_explorer polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 replies with different timing depending on if a connection can be made, which allows remote attackers to conduct port scanning attack… CWE-200
Information Exposure 		CVE-2014-8315 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278057 - sap hana Multiple cross-site scripting (XSS) vulnerabilities in SAP HANA Developer Edition Revision 70 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) epm/admin/Da… CWE-79
Cross-site Scripting 		CVE-2014-8314 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278058 - sap hana Eval injection in ide/core/base/server/net.xsjs in the Developer Workbench in SAP HANA allows remote attackers to execute arbitrary XSJX code via unspecified vectors. CWE-94
Code Injection 		CVE-2014-8313 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278059 - sap netweaver_abap Business Warehouse (BW) in SAP Netweaver AS ABAP 7.31 allows remote authenticated users to obtain sensitive information via a request to the RSDU_CCMS_GET_PROFILE_PARAM RFC function. NVD-CWE-Other
CVE-2014-8312 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm
278060 - sap businessobjects SAP BusinessObjects Edge 4.0 allows remote attackers to obtain sensitive information via an InfoStore query to a CORBA listener. NVD-CWE-Other
CVE-2014-8311 2024-11-21 11:18 2014-10-17 Show GitHub Exploit DB Packet Storm