Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224001	4.3	警告	シスコシステムズ	-	Cisco Prime Central for Hosted Collaboration Solution におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1159	2013-05-2 15:18	2013-04-30	Show	GitHub Exploit DB Packet Storm

224002	4.3	警告	シスコシステムズ	-	Cisco Prime Central for Hosted Collaboration Solution におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1158	2013-05-2 15:17	2013-04-30	Show	GitHub Exploit DB Packet Storm

224003	4.3	警告	シスコシステムズ	-	Cisco Prime Central for Hosted Collaboration Solution におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1157	2013-05-2 15:16	2013-04-30	Show	GitHub Exploit DB Packet Storm

224004	5	警告	シスコシステムズ	-	Cisco Prime Central for Hosted Collaboration Solution におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1156	2013-05-2 15:15	2013-04-30	Show	GitHub Exploit DB Packet Storm

224005	4.3	警告	VMware	-	VMware vCenter Server における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3107	2013-05-2 14:59	2013-04-25	Show	GitHub Exploit DB Packet Storm

224006	9	危険	VMware	-	VMware vCenter Server Appliance における任意のファイルを作成または上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3080	2013-05-2 14:49	2013-04-25	Show	GitHub Exploit DB Packet Storm

224007	9	危険	VMware	-	VMware vCenter Server Appliance における任意のプログラムを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3079	2013-05-2 14:47	2013-04-25	Show	GitHub Exploit DB Packet Storm

224008	6	警告	SAP	-	SAP BASIS Communication Services における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-3063	2013-05-2 14:40	2013-04-16	Show	GitHub Exploit DB Packet Storm

224009	6.5	警告	SAP	-	SAP Production Planning and Control の Engineering Workbench コンポーネントにおけるトランザクションの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3062	2013-05-2 14:38	2013-04-16	Show	GitHub Exploit DB Packet Storm

224010	6.5	警告	SAP	-	SAP industry solution for healthcare および SAP ERP Central Component におけるトランザクションの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3061	2013-05-2 14:37	2013-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277981	-	mozilla	seamonkey firefox firefox_esr	Use-after-free vulnerability in the WebRTC implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, and SeaMonkey before 2.32 allows remote attackers to execute arbitrary code via…	NVD-CWE-Other	CVE-2014-8641	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277982	-	mozilla opensuse	firefox opensuse seamonkey	The mozilla::dom::AudioParamTimeline::AudioNodeInputValue function in the Web Audio API implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly restrict timeline ope…	CWE-362 Race Condition	CVE-2014-8640	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277983	-	mozilla	seamonkey firefox firefox_esr thunderbird	Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 do not properly interpret Set-Cookie headers within responses that have a 407 (aka Proxy …	NVD-CWE-Other	CVE-2014-8639	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277984	-	mozilla	firefox firefox_esr thunderbird seamonkey	The navigator.sendBeacon implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 omits the CORS Origin header, which allows rem…	CWE-352 Origin Validation Error	CVE-2014-8638	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277985	-	mozilla	seamonkey firefox	Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted…	CWE-200 Information Exposure	CVE-2014-8637	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277986	-	mozilla	firefox seamonkey	The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly interact with a DOM object that has a named getter, which might allow remote attackers to exe…	CWE-94 Code Injection	CVE-2014-8636	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277987	-	mozilla	seamonkey firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 allow remote attackers to cause a denial of service (memory corruption and applicat…	NVD-CWE-noinfo	CVE-2014-8635	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277988	-	mozilla	firefox firefox_esr seamonkey thunderbird	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 allow remote attackers to c…	NVD-CWE-noinfo	CVE-2014-8634	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277989	-	jce-tech	video_niche_script	Multiple cross-site scripting (XSS) vulnerabilities in view.php in JCE-Tech PHP Video Script (aka Video Niche Script) 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) vid…	CWE-79 Cross-site Scripting	CVE-2014-8752	2024-11-21 11:19	2015-01-1	Show	GitHub Exploit DB Packet Storm

277990	-	schneider_electric	proclima	Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8514	2024-11-21 11:19	2014-12-28	Show	GitHub Exploit DB Packet Storm