Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225041 4.3 警告 マイクロソフト - Microsoft SharePoint Server 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3179 2013-09-12 19:32 2013-09-10 Show GitHub Exploit DB Packet Storm
225042 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1315 2013-09-12 19:27 2013-09-10 Show GitHub Exploit DB Packet Storm
225043 5 警告 マイクロソフト - 複数の Microsoft SharePoint 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0081 2013-09-12 19:00 2013-09-10 Show GitHub Exploit DB Packet Storm
225044 7.5 危険 IndiaNIC - WordPress 用 IndiaNIC Testimonial プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5673 2013-09-12 14:32 2013-09-1 Show GitHub Exploit DB Packet Storm
225045 6.8 警告 IndiaNIC - WordPress 用 IndiaNIC Testimonial プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5672 2013-09-12 14:31 2013-09-1 Show GitHub Exploit DB Packet Storm
225046 4.3 警告 ImageMagick - ImageMagick の coders/gif.c 内の ReadGIFImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4298 2013-09-12 14:29 2013-08-5 Show GitHub Exploit DB Packet Storm
225047 5 警告 Fedora Project - 389 Directory Server の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4283 2013-09-12 14:16 2013-08-28 Show GitHub Exploit DB Packet Storm
225048 6.9 警告 GNOME Project - GNOME Display Manager における任意のディレクトリのパーミッションを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-4169 2013-09-12 13:42 2013-09-5 Show GitHub Exploit DB Packet Storm
225049 3.5 注意 AlienWP - Drupal 用 Hatch テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4138 2013-09-11 16:42 2013-07-10 Show GitHub Exploit DB Packet Storm
225050 7.2 危険 ソフォス - Sophos Web Appliance の /opt/cma/bin/clear_keys.pl の close_connections 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4984 2013-09-11 14:45 2013-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277511 - apple watchos
iphone_os
mac_os_x 		The CoreGraphics component in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) vi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5925 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
277512 - apple iphone_os
mac_os_x 		The OpenGL implementation in Apple iOS before 9.1 and OS X before 10.11.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5924 2024-11-21 11:34 2015-10-24 Show GitHub Exploit DB Packet Storm
277513 - owncloud owncloud The virtual filesystem in ownCloud Server before 6.0.9, 7.0.x before 7.0.7, and 8.0.x before 8.0.5 does not consider that NULL is a valid getPath return value, which allows remote authenticated users… NVD-CWE-Other
CVE-2015-5954 2024-11-21 11:34 2015-10-22 Show GitHub Exploit DB Packet Storm
277514 - owncloud owncloud Cross-site scripting (XSS) vulnerability in the activity application in ownCloud Server before 7.0.5 and 8.0.x before 8.0.4 allows remote authenticated users to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2015-5953 2024-11-21 11:34 2015-10-22 Show GitHub Exploit DB Packet Storm
277515 - linux linux_kernel The vhost_dev_ioctl function in drivers/vhost/vhost.c in the Linux kernel before 4.1.5 allows local users to cause a denial of service (memory consumption) via a VHOST_SET_LOG_FD ioctl call that trig… CWE-399
 Resource Management Errors 		CVE-2015-6252 2024-11-21 11:34 2015-10-19 Show GitHub Exploit DB Packet Storm
277516 - cisco asr_5000_software Cisco ASR 5000 and 5500 devices with software 18.0.0.57828 and 19.0.M0.61045 allow remote attackers to cause a denial of service (vpnmgr process restart) via a crafted header in a TACACS packet, aka … CWE-20
 Improper Input Validation  		CVE-2015-6334 2024-11-21 11:34 2015-10-16 Show GitHub Exploit DB Packet Storm
277517 - cisco application_policy_infrastructure_controller Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6333 2024-11-21 11:34 2015-10-16 Show GitHub Exploit DB Packet Storm
277518 - qnap qts Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by levera… CWE-22
Path Traversal 		CVE-2015-6003 2024-11-21 11:34 2015-10-16 Show GitHub Exploit DB Packet Storm
277519 - microsoft jscript
vbscript
internet_explorer 		The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to obtain sensitive information from p… CWE-200
Information Exposure 		CVE-2015-6059 2024-11-21 11:34 2015-10-14 Show GitHub Exploit DB Packet Storm
277520 - microsoft edge Microsoft Edge mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Microsoft Edge XSS… CWE-79
Cross-site Scripting 		CVE-2015-6058 2024-11-21 11:34 2015-10-14 Show GitHub Exploit DB Packet Storm