Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224601 4.9 警告 Puppet
Canonical		 - Puppet における任意のカタログを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1652 2013-04-23 13:54 2013-03-12 Show GitHub Exploit DB Packet Storm
224602 6.8 警告 Lester Chan - WordPress 用 WP-DownloadManager プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2697 2013-04-23 12:23 2013-04-5 Show GitHub Exploit DB Packet Storm
224603 4.3 警告 Novell - Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1086 2013-04-23 12:14 2013-04-16 Show GitHub Exploit DB Packet Storm
224604 9.3 危険 Bitberry Software - BitZipper にメモリ破壊の脆弱性 CWE-Other
その他 		CVE-2013-0138 2013-04-23 11:40 2013-04-19 Show GitHub Exploit DB Packet Storm
224605 1.9 注意 AVAST Software s.r.o. - avast! Mobile Security にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0122 2013-04-23 11:25 2013-04-10 Show GitHub Exploit DB Packet Storm
224606 3.5 注意 pd-admin - pd-admin にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0129 2013-04-23 11:09 2013-04-16 Show GitHub Exploit DB Packet Storm
224607 7.8 危険 Arecont Vision - AV1355DN にサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-0139 2013-04-22 16:55 2013-04-15 Show GitHub Exploit DB Packet Storm
224608 4.9 警告 シスコシステムズ - Cisco ASA 上で稼働するクライアントレス SSL VPN におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2013-1199 2013-04-22 16:49 2013-04-17 Show GitHub Exploit DB Packet Storm
224609 7.5 危険 Joomla! - Joomla! における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2013-1453 2013-04-22 16:48 2013-02-4 Show GitHub Exploit DB Packet Storm
224610 5 警告 シスコシステムズ - Cisco ASA デバイスの ISAKMP の実装におけるグループを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2013-1194 2013-04-22 16:46 2013-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278141 9.8 CRITICAL
Network 		dozer_project dozer Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object. CWE-502
 Deserialization of Untrusted Data 		CVE-2014-9515 2024-11-21 11:21 2017-12-30 Show GitHub Exploit DB Packet Storm
278142 9.8 CRITICAL
Network 		nwjs nw.js nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote attackers to have unspecified impact via unknown vectors. CWE-20
 Improper Input Validation  		CVE-2014-9733 2024-11-21 11:21 2017-10-17 Show GitHub Exploit DB Packet Storm
278143 7.5 HIGH
Network 		huawei usg9560_firmware
usg9520_firmware
usg9580_firmware 		Huawei USG9560/9520/9580 before V300R001C01SPC300 allows remote attackers to cause a memory leak or denial of service (memory exhaustion, reboot and MPU switchover) via a crafted website. CWE-400
 Uncontrolled Resource Consumption 		CVE-2014-9697 2024-11-21 11:21 2017-10-17 Show GitHub Exploit DB Packet Storm
278144 6.1 MEDIUM
Network 		flowpaper flexpaper FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to conduct content-spoofing attacks via the Swfile parameter. CWE-20
 Improper Input Validation  		CVE-2014-9678 2024-11-21 11:21 2017-10-17 Show GitHub Exploit DB Packet Storm
278145 6.1 MEDIUM
Network 		flowpaper flexpaper Cross-site scripting (XSS) vulnerability in FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the Swfile parameter. CWE-79
Cross-site Scripting 		CVE-2014-9677 2024-11-21 11:21 2017-10-17 Show GitHub Exploit DB Packet Storm
278146 8.8 HIGH
Network 		gollum_project gollum
gollum-lib
grit_adapter 		The gollum-grit_adapter Ruby gem dependency in gollum before 3.1.1 and the gollum-lib gem dependency in gollum-lib before 4.0.1 when the string "master" is in any of the wiki documents, allows remote… CWE-284
Improper Access Control 		CVE-2014-9489 2024-11-21 11:21 2017-10-17 Show GitHub Exploit DB Packet Storm
278147 9.8 CRITICAL
Network 		mediawiki mediawiki The getid3 library in MediaWiki before 1.24.1, 1.23.8, 1.22.15 and 1.19.23 allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML Externa… CWE-611
XXE 		CVE-2014-9487 2024-11-21 11:21 2017-10-17 Show GitHub Exploit DB Packet Storm
278148 5.9 MEDIUM
Network 		mapsplugin googlemaps The Googlemaps plugin 3.2 and earlier for Joomla! allows remote attackers with control of a sub-domain belonging to a victim domain to cause a denial of service via the 'url' parameter to plugin_goog… CWE-399
 Resource Management Errors 		CVE-2014-9686 2024-11-21 11:21 2017-09-28 Show GitHub Exploit DB Packet Storm
278149 6.1 MEDIUM
Network 		magento magento Cross-site scripting (XSS) vulnerability in Magento E-Commerce Platform 1.9.0.1. CWE-79
Cross-site Scripting 		CVE-2014-9758 2024-11-21 11:21 2017-09-21 Show GitHub Exploit DB Packet Storm
278150 7.2 HIGH
Network 		netsweeper netsweeper Unrestricted file upload vulnerability in webadmin/ajaxfilemanager/ajaxfilemanager.php in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote authenticated users with a… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2014-9619 2024-11-21 11:21 2017-09-20 Show GitHub Exploit DB Packet Storm