Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 17, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224661 | 5 | 警告 | レッドハット | - | JBoss Enterprise Portal Platform における任意のファイルを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0315 | 2013-04-16 16:28 | 2013-03-7 | Show | GitHub Exploit DB Packet Storm |
| 224662 | 7.5 | 危険 | レッドハット | - | JBoss Enterprise Portal Platform におけるサイトコンテンツを変更される脆弱性 |
CWE-287
不適切な認証 |
CVE-2013-0314 | 2013-04-16 16:27 | 2013-03-7 | Show | GitHub Exploit DB Packet Storm |
| 224663 | 6.8 | 警告 | レッドハット | - | JBoss Enterprise Portal Platform の GateIn Portal コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-3532 | 2013-04-16 16:20 | 2012-08-23 | Show | GitHub Exploit DB Packet Storm |
| 224664 | 9.3 | 危険 | IBM | - | IBM Cognos Disclosure Management およびその他の製品における任意のファイルを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0501 | 2013-04-16 16:15 | 2013-04-5 | Show | GitHub Exploit DB Packet Storm |
| 224665 | 9.3 | 危険 | IBM | - | 複数の IBM 製品における任意のコマンドを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-5937 | 2013-04-16 15:56 | 2013-04-10 | Show | GitHub Exploit DB Packet Storm |
| 224666 | 5 | 警告 | OpenStack | - | 複数の OpenStack コンポーネントにおけるアクセスの制限を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2013-0282 | 2013-04-16 15:52 | 2013-02-20 | Show | GitHub Exploit DB Packet Storm |
| 224667 | 5 | 警告 | OpenStack | - | OpenStack Keystone の Grizzly および Folsom におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2013-0270 | 2013-04-16 15:47 | 2013-04-4 | Show | GitHub Exploit DB Packet Storm |
| 224668 | 7.5 | 危険 | ZAPms | - | ZAPms における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-3050 | 2013-04-16 15:40 | 2013-04-10 | Show | GitHub Exploit DB Packet Storm |
| 224669 | 7.1 | 危険 | シスコシステムズ | - | Cisco Adaptive Security Appliances におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-1151 | 2013-04-15 11:42 | 2013-04-10 | Show | GitHub Exploit DB Packet Storm |
| 224670 | 5.7 | 警告 | シスコシステムズ | - | Cisco ユニバーサルブロードバンド 10000 シリーズルータにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-1189 | 2013-04-15 11:39 | 2013-04-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 17, 2026, 4:15 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 278231 | 7.5 |
HIGH
Network |
opensuse_project opensuse canonical imagemagick |
suse_linux_enterprise_workstation_extension leap suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_debuginfo suse_linux_enterprise_software_development_k… |
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. |
CWE-400
Uncontrolled Resource Consumption |
CVE-2014-9842 | 2024-11-21 11:21 | 2017-03-21 | Show | GitHub Exploit DB Packet Storm |
| 278232 | 9.8 |
CRITICAL
Network |
opensuse_project opensuse canonical imagemagick |
suse_linux_enterprise_workstation_extension leap suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit opensuse ubuntu_linux i… |
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions." |
CWE-388
7PK - Errors |
CVE-2014-9841 | 2024-11-21 11:21 | 2017-03-21 | Show | GitHub Exploit DB Packet Storm |
| 278233 | 7.5 |
HIGH
Network |
imagemagick opensuse suse canonical |
imagemagick leap linux_enterprise_server linux_enterprise_software_development_kit opensuse suse_linux_enterprise_server ubuntu_linux |
coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." |
CWE-399
Resource Management Errors |
CVE-2014-9854 | 2024-11-21 11:21 | 2017-03-17 | Show | GitHub Exploit DB Packet Storm |
| 278234 | 5.5 |
MEDIUM
Local |
imagemagick suse novell opensuse_project opensuse canonical |
imagemagick linux_enterprise_server leap linux_enterprise_software_development_kit suse_linux_enterprise_software_development_kit linux_enterprise_debuginfo linux_enterprise_worksta… |
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. |
CWE-399
Resource Management Errors |
CVE-2014-9853 | 2024-11-21 11:21 | 2017-03-17 | Show | GitHub Exploit DB Packet Storm |
| 278235 | 9.8 |
CRITICAL
Network |
imagemagick suse opensuse |
imagemagick linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_workstation_extension linux_enterprise_desktop opensuse leap |
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. |
CWE-913
Improper Control of Dynamically-Managed Code Resources |
CVE-2014-9852 | 2024-11-21 11:21 | 2017-03-17 | Show | GitHub Exploit DB Packet Storm |
| 278236 | 9.8 |
CRITICAL
Network |
mcafee | cloud_analysis_and_deconstructive_services | Information disclosure vulnerability in McAfee (now Intel Security) Cloud Analysis and Deconstructive Services (CADS) 1.0.0.3x, 1.0.0.4d and earlier allows remote unauthenticated users to view, add, … |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2014-9921 | 2024-11-21 11:21 | 2017-03-15 | Show | GitHub Exploit DB Packet Storm |
| 278237 | 5.9 |
MEDIUM
Network |
mcafee | application_control | Unauthorized execution of binary vulnerability in McAfee (now Intel Security) McAfee Application Control (MAC) 6.0.0 before hotfix 9726, 6.0.1 before hotfix 9068, 6.1.0 before hotfix 692, 6.1.1 befor… |
CWE-284
Improper Access Control |
CVE-2014-9920 | 2024-11-21 11:21 | 2017-03-15 | Show | GitHub Exploit DB Packet Storm |
| 278238 | 5.5 |
MEDIUM
Local |
busybox | busybox | The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demo… |
CWE-20
Improper Input Validation |
CVE-2014-9645 | 2024-11-21 11:21 | 2017-03-12 | Show | GitHub Exploit DB Packet Storm |
| 278239 | 6.1 |
MEDIUM
Network |
bilboplanet | bilboplanet | Multiple cross-site scripting (XSS) vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) tribe_name or (2) tags parameter in a tribes page requ… |
CWE-79
Cross-site Scripting |
CVE-2014-9916 | 2024-11-21 11:21 | 2017-02-24 | Show | GitHub Exploit DB Packet Storm |
| 278240 | 6.1 |
MEDIUM
Network |
alinto | sogo | Multiple cross-site scripting (XSS) vulnerabilities in the Web Calendar in SOGo before 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) title of an appointment or (2) c… |
CWE-79
Cross-site Scripting |
CVE-2014-9905 | 2024-11-21 11:21 | 2017-02-18 | Show | GitHub Exploit DB Packet Storm |