Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 23, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224401 | 4 | 警告 | IBM | - | 複数の IBM サーバ製品上で稼働する Integrated Management Module における重要な情報を取得される脆弱性 |
CWE-310
暗号の問題 |
CVE-2013-4038 | 2013-08-13 15:25 | 2013-08-1 | Show | GitHub Exploit DB Packet Storm |
| 224402 | 4.3 | 警告 | IBM | - | 複数の IBM サーバ製品上で稼働する Integrated Management Module におけるアクセス権を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-4037 | 2013-08-13 15:24 | 2013-08-1 | Show | GitHub Exploit DB Packet Storm |
| 224403 | 10 | 危険 | IBM | - | 複数の IBM サーバ製品上で稼働する Integrated Management Module における電源アクションを実行される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2013-4031 | 2013-08-13 15:23 | 2013-08-1 | Show | GitHub Exploit DB Packet Storm |
| 224404 | 4.3 | 警告 | Mike Jolley | - | WordPress 用 Download Monitor プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-5098 | 2013-08-13 14:04 | 2013-06-5 | Show | GitHub Exploit DB Packet Storm |
| 224405 | 4.3 | 警告 | Mike Jolley | - | WordPress 用 Download Monitor プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-3262 | 2013-08-13 14:04 | 2013-06-5 | Show | GitHub Exploit DB Packet Storm |
| 224406 | 4.3 | 警告 | Life in the Grid | - | WordPress 用 Duplicator プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4625 | 2013-08-13 13:43 | 2013-07-21 | Show | GitHub Exploit DB Packet Storm |
| 224407 | 6.8 | 警告 | Xhanch Studio | - | WordPress 用 Xhanch - My Twitter プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3253 | 2013-08-13 13:35 | 2013-08-2 | Show | GitHub Exploit DB Packet Storm |
| 224408 | 5 | 警告 | Jason A. Donenfeld Lars Hjemli |
- | cgit の ui-summary.c の cgit_parse_readme 関数におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2013-2117 | 2013-08-13 12:29 | 2013-05-27 | Show | GitHub Exploit DB Packet Storm |
| 224409 | 5 | 警告 | シスコシステムズ | - | Cisco Finesse の Web インタフェースにおける絶対パストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2013-3457 | 2013-08-13 11:08 | 2013-08-12 | Show | GitHub Exploit DB Packet Storm |
| 224410 | 4.3 | 警告 | OpenEMR | - | OpenEMR の interface/main/onotes/office_comments_full.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4620 | 2013-08-13 10:46 | 2013-06-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 279031 | 9.8 |
CRITICAL
Network |
opensuse_project opensuse canonical imagemagick |
suse_linux_enterprise_workstation_extension leap suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit opensuse ubuntu_linux i… |
The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2014-9843 | 2024-11-21 11:21 | 2017-03-21 | Show | GitHub Exploit DB Packet Storm |
| 279032 | 7.5 |
HIGH
Network |
opensuse_project opensuse canonical imagemagick |
suse_linux_enterprise_workstation_extension leap suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_debuginfo suse_linux_enterprise_software_development_k… |
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. |
CWE-400
Uncontrolled Resource Consumption |
CVE-2014-9842 | 2024-11-21 11:21 | 2017-03-21 | Show | GitHub Exploit DB Packet Storm |
| 279033 | 9.8 |
CRITICAL
Network |
opensuse_project opensuse canonical imagemagick |
suse_linux_enterprise_workstation_extension leap suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit opensuse ubuntu_linux i… |
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions." |
CWE-388
7PK - Errors |
CVE-2014-9841 | 2024-11-21 11:21 | 2017-03-21 | Show | GitHub Exploit DB Packet Storm |
| 279034 | 7.5 |
HIGH
Network |
imagemagick opensuse suse canonical |
imagemagick leap linux_enterprise_server linux_enterprise_software_development_kit opensuse suse_linux_enterprise_server ubuntu_linux |
coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." |
CWE-399
Resource Management Errors |
CVE-2014-9854 | 2024-11-21 11:21 | 2017-03-17 | Show | GitHub Exploit DB Packet Storm |
| 279035 | 5.5 |
MEDIUM
Local |
imagemagick suse novell opensuse_project opensuse canonical |
imagemagick linux_enterprise_server leap linux_enterprise_software_development_kit suse_linux_enterprise_software_development_kit linux_enterprise_debuginfo linux_enterprise_worksta… |
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. |
CWE-399
Resource Management Errors |
CVE-2014-9853 | 2024-11-21 11:21 | 2017-03-17 | Show | GitHub Exploit DB Packet Storm |
| 279036 | 9.8 |
CRITICAL
Network |
imagemagick suse opensuse |
imagemagick linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_workstation_extension linux_enterprise_desktop opensuse leap |
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. |
CWE-913
Improper Control of Dynamically-Managed Code Resources |
CVE-2014-9852 | 2024-11-21 11:21 | 2017-03-17 | Show | GitHub Exploit DB Packet Storm |
| 279037 | 9.8 |
CRITICAL
Network |
mcafee | cloud_analysis_and_deconstructive_services | Information disclosure vulnerability in McAfee (now Intel Security) Cloud Analysis and Deconstructive Services (CADS) 1.0.0.3x, 1.0.0.4d and earlier allows remote unauthenticated users to view, add, … |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2014-9921 | 2024-11-21 11:21 | 2017-03-15 | Show | GitHub Exploit DB Packet Storm |
| 279038 | 5.9 |
MEDIUM
Network |
mcafee | application_control | Unauthorized execution of binary vulnerability in McAfee (now Intel Security) McAfee Application Control (MAC) 6.0.0 before hotfix 9726, 6.0.1 before hotfix 9068, 6.1.0 before hotfix 692, 6.1.1 befor… |
CWE-284
Improper Access Control |
CVE-2014-9920 | 2024-11-21 11:21 | 2017-03-15 | Show | GitHub Exploit DB Packet Storm |
| 279039 | 5.5 |
MEDIUM
Local |
busybox | busybox | The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demo… |
CWE-20
Improper Input Validation |
CVE-2014-9645 | 2024-11-21 11:21 | 2017-03-12 | Show | GitHub Exploit DB Packet Storm |
| 279040 | 6.1 |
MEDIUM
Network |
bilboplanet | bilboplanet | Multiple cross-site scripting (XSS) vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) tribe_name or (2) tags parameter in a tribes page requ… |
CWE-79
Cross-site Scripting |
CVE-2014-9916 | 2024-11-21 11:21 | 2017-02-24 | Show | GitHub Exploit DB Packet Storm |