Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224351	6	警告	Samba Project	-	Samba における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1863	2013-03-22 13:50	2013-03-19	Show	GitHub Exploit DB Packet Storm

224352	5	警告	シトリックス・システムズ	-	Citrix Access Gateway Standard Edition における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2263	2013-03-22 13:46	2013-03-5	Show	GitHub Exploit DB Packet Storm

224353	7.2	危険	アップル	-	Apple iOS および Apple TV のカーネルにおける権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-0981	2013-03-22 12:30	2013-03-19	Show	GitHub Exploit DB Packet Storm

224354	2.1	注意	アップル	-	Apple iOS のパスコードロックの実装におけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0980	2013-03-22 12:29	2013-03-19	Show	GitHub Exploit DB Packet Storm

224355	1.9	注意	アップル	-	Apple iOS の Lockdown における任意のファイルのパーミッションを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0979	2013-03-22 12:29	2013-03-19	Show	GitHub Exploit DB Packet Storm

224356	2.1	注意	アップル	-	Apple iOS および Apple TV のカーネルにおける ASLR 保護メカニズムを回避される脆弱性	CWE-200 情報漏えい	CVE-2013-0978	2013-03-22 12:28	2013-03-19	Show	GitHub Exploit DB Packet Storm

224357	4.6	警告	アップル	-	Apple iOS および Apple TV の dyld におけるコード署名の要求を回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-0977	2013-03-22 12:27	2013-03-19	Show	GitHub Exploit DB Packet Storm

224358	7.2	危険	IBM	-	UNIX および Linux 上で稼働する IBM InfoSphere Information Server におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5938	2013-03-22 11:19	2013-03-20	Show	GitHub Exploit DB Packet Storm

224359	4.3	警告	IBM	-	IBM Sterling Order Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0506	2013-03-22 11:18	2013-03-18	Show	GitHub Exploit DB Packet Storm

224360	5.5	警告	IBM	-	IBM Sterling Order Management における XPath インジェクション攻撃を実行される脆弱性	CWE-20 CWE-200	CVE-2013-0505	2013-03-22 11:18	2013-03-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278491	-	linux	linux_kernel	The net_get_random_once implementation in net/core/utils.c in the Linux kernel 3.13.x and 3.14.x before 3.14.5 on certain Intel processors does not perform the intended slow-path operation to initial…	CWE-200 Information Exposure	CVE-2014-7284	2024-11-21 11:16	2014-10-13	Show	GitHub Exploit DB Packet Storm

278492	-	linux redhat	linux_kernel mrg_realtime	The xfs_da3_fixhashpath function in fs/xfs/xfs_da_btree.c in the xfs implementation in the Linux kernel before 3.14.2 does not properly compare btree hash values, which allows local users to cause a …	CWE-399 Resource Management Errors	CVE-2014-7283	2024-11-21 11:16	2014-10-13	Show	GitHub Exploit DB Packet Storm

278493	-	kevin_renskers	dmmjobcontrol	Multiple SQL injection vulnerabilities in the search function in pi1/class.tx_dmmjobcontrol_pi1.php in the JobControl (dmmjobcontrol) extension 2.14.0 and earlier for TYPO3 allow remote attackers to …	CWE-89 SQL Injection	CVE-2014-7201	2024-11-21 11:16	2014-10-10	Show	GitHub Exploit DB Packet Storm

278494	-	kevin_renskers	dmmjobcontrol	Cross-site scripting (XSS) vulnerability in pi1/class.tx_dmmjobcontrol_pi1.php in the JobControl (dmmjobcontrol) extension 2.14.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web…	CWE-79 Cross-site Scripting	CVE-2014-7200	2024-11-21 11:16	2014-10-10	Show	GitHub Exploit DB Packet Storm

278495	-	cfdbplugin	contact_form_db	Multiple cross-site scripting (XSS) vulnerabilities in the Contact Form DB (aka CFDB and contact-form-7-to-database-extension) plugin before 2.8.16 for WordPress allow remote attackers to inject arbi…	CWE-79 Cross-site Scripting	CVE-2014-7139	2024-11-21 11:16	2014-10-10	Show	GitHub Exploit DB Packet Storm

278496	-	rejetto	http_file_server	The file comment feature in Rejetto HTTP File Server (hfs) 2.3c and earlier allows remote attackers to execute arbitrary code by uploading a file with certain invalid UTF-8 byte sequences that are in…	CWE-94 Code Injection	CVE-2014-7226	2024-11-21 11:16	2014-10-10	Show	GitHub Exploit DB Packet Storm

278497	-	oceanavenue	ocean_avenue_mobile_pro	The Ocean Avenue Mobile Pro (aka com.oceanavenue.mobile) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and…	CWE-310 Cryptographic Issues	CVE-2014-7047	2024-11-21 11:16	2014-10-10	Show	GitHub Exploit DB Packet Storm

278498	-	george_wassouf_project	george_wassouf	The George Wassouf (aka com.devkhr32.georgewassouf) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obta…	CWE-310 Cryptographic Issues	CVE-2014-7046	2024-11-21 11:16	2014-10-10	Show	GitHub Exploit DB Packet Storm

278499	-	eng	spagobi	The default configuration in the accessibility engine in SpagoBI 5.0.0 does not set FEATURE_SECURE_PROCESSING, which allows remote authenticated users to execute arbitrary Java code via a crafted XSL…	CWE-94 Code Injection	CVE-2014-7296	2024-11-21 11:16	2014-10-9	Show	GitHub Exploit DB Packet Storm

278500	-	openstack redhat	nova cinder trove openstack	The strutils.mask_password function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask passwords when logging commands, w…	CWE-200 Information Exposure	CVE-2014-7231	2024-11-21 11:16	2014-10-9	Show	GitHub Exploit DB Packet Storm