Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224351	7.2	危険	VMware	-	Linux 上で稼働する VMware Workstation および VMware Player におけるホスト OS の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5972	2013-11-20 17:14	2013-11-14	Show	GitHub Exploit DB Packet Storm

224352	5.8	警告	Google	-	Google Chrome におけるサンドボックスの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6802	2013-11-20 16:56	2013-11-14	Show	GitHub Exploit DB Packet Storm

224353	4.3	警告	Percipient Studios	-	Umbraco CMS 用 Percipient Studios ImageGen の imagegen.ashx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0741	2013-11-20 16:46	2013-10-31	Show	GitHub Exploit DB Packet Storm

224354	3.5	注意	D-Link Systems, Inc.	-	D-Link DSL-2760U ゲートウェイにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5223	2013-11-20 15:18	2013-11-12	Show	GitHub Exploit DB Packet Storm

224355	7.6	危険	D-Link Systems, Inc.	-	D-Link DSL-2740B ゲートウェイのファームウェアにおける認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2271	2013-11-20 15:18	2013-11-14	Show	GitHub Exploit DB Packet Storm

224356	6.8	警告	Sunil Nanda	-	WordPress 用 Blue Wrench Video Widget プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-6797	2013-11-20 15:01	2013-10-23	Show	GitHub Exploit DB Packet Storm

224357	4.3	警告	Softaculous	-	Softaculous Webuzo の File Manager モジュールの filemanager/login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6042	2013-11-20 14:34	2013-10-3	Show	GitHub Exploit DB Packet Storm

224358	4.3	警告	Beanbag	-	Review Board におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4519	2013-11-20 14:21	2013-11-5	Show	GitHub Exploit DB Packet Storm

224359	5.7	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-4551	2013-11-20 14:09	2013-11-8	Show	GitHub Exploit DB Packet Storm

224360	6.8	警告	BlackBerry	-	Windows または Mac OS X 上で稼働する BlackBerry Link における任意のファイルを読まれる脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3694	2013-11-20 13:39	2013-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276961	-	apple	xcode	The Swift implementation in Apple Xcode before 7.1 mishandles type conversion, which has unspecified impact and attack vectors.	CWE-17 Code	CVE-2015-7030	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276962	-	apple	iphone_os	The Telephony subsystem in Apple iOS before 9.1 allows attackers to obtain sensitive call-status information via a crafted app.	CWE-200 Information Exposure	CVE-2015-7022	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276963	-	apple	mac_os_x iphone_os itunes	CoreText in Apple iOS before 9.1, OS X before 10.11.1, and iTunes before 12.3.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font f…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7017	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276964	-	apple	iphone_os	WebKit, as used in Apple iOS before 9.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7005	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276965	-	apple	iphone_os	The kernel in Apple iOS before 9.1 allows attackers to cause a denial of service via a crafted app.	CWE-20 Improper Input Validation	CVE-2015-7004	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276966	-	apple	iphone_os	Notification Center in Apple iOS before 9.1 mishandles changes to "Show on Lock Screen" settings, which allows physically proximate attackers to obtain sensitive information by looking for a (1) Phon…	CWE-200 Information Exposure	CVE-2015-7000	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276967	-	apple	iphone_os	The OCSP client in Apple iOS before 9.1 does not check for certificate expiry, which allows remote attackers to spoof a valid certificate by leveraging access to a revoked certificate.	CWE-254 7PK - Security Features	CVE-2015-6999	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276968	-	apple	iphone_os watchos	The X.509 certificate-trust implementation in Apple iOS before 9.1 does not recognize that the kSecRevocationRequirePositiveResponse flag implies a revocation-checking requirement, which makes it eas…	CWE-254 7PK - Security Features	CVE-2015-6997	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276969	-	apple	mac_os_x iphone_os itunes	CoreText in Apple iOS before 9.1, OS X before 10.11.1, and iTunes before 12.3.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font f…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-6992	2024-11-21 11:36	2015-10-23	Show	GitHub Exploit DB Packet Storm

276970	-	nintex	k2_blackpearl k2_for_sharepoint k2_smartforms	SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter.	CWE-89 SQL Injection	CVE-2015-7299	2024-11-21 11:36	2015-10-22	Show	GitHub Exploit DB Packet Storm