Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
226271 4.3 警告 IBM - IBM Platform Symphony における重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2013-6305 2014-01-23 15:33 2013-10-31 Show GitHub Exploit DB Packet Storm
226272 2.1 注意 IBM - IBM Tivoli Federated Identity Manager および Tivoli Federated Identity Manager Business Gateway におけるトランザクションを完了される脆弱性 CWE-287
不適切な認証
CVE-2013-5429 2014-01-23 15:33 2013-12-31 Show GitHub Exploit DB Packet Storm
226273 4 警告 The Tor Project - Tor における暗号保護メカニズムを回避される脆弱性 CWE-310
暗号の問題
CVE-2013-7295 2014-01-23 12:13 2013-12-22 Show GitHub Exploit DB Packet Storm
226274 7.8 危険 デル - Dell PowerConnect スイッチ上で稼働する GoAhead Web Server のログインページにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-3606 2014-01-22 19:13 2014-01-17 Show GitHub Exploit DB Packet Storm
226275 6.8 警告 デル - Dell PowerConnect スイッチ上で稼働する OpenManage Web Application におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-3595 2014-01-22 19:13 2014-01-17 Show GitHub Exploit DB Packet Storm
226276 10 危険 デル - Dell PowerConnect スイッチの SSH サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-3594 2014-01-22 19:12 2014-01-17 Show GitHub Exploit DB Packet Storm
226277 4 警告 WordPress.org - WordPress の wp-admin/press-this.php における publish アクションを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-5270 2014-01-22 18:49 2011-04-26 Show GitHub Exploit DB Packet Storm
226278 2.1 注意 WordPress.org - WordPress におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5297 2014-01-22 18:47 2010-06-27 Show GitHub Exploit DB Packet Storm
226279 4.9 警告 WordPress.org - WordPress の wp-includes/capabilities.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5296 2014-01-22 18:43 2010-09-4 Show GitHub Exploit DB Packet Storm
226280 4.3 警告 WordPress.org - WordPress の wp-admin/plugins.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-5295 2014-01-22 18:41 2010-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274781 5.9 MEDIUM
Network
wireshark wireshark epan/dissectors/packet-spice.c in the SPICE dissector in Wireshark 2.x before 2.0.2 mishandles capability data, which allows remote attackers to cause a denial of service (large loop) via a crafted p… CWE-399
 Resource Management Errors
CVE-2016-4419 2024-11-21 11:52 2016-05-1 Show GitHub Exploit DB Packet Storm
274782 5.9 MEDIUM
Network
wireshark wireshark epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (buffer over-read and application … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4418 2024-11-21 11:52 2016-05-1 Show GitHub Exploit DB Packet Storm
274783 5.9 MEDIUM
Network
wireshark wireshark Off-by-one error in epan/dissectors/packet-gsm_abis_oml.c in the GSM A-bis OML dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4417 2024-11-21 11:52 2016-05-1 Show GitHub Exploit DB Packet Storm
274784 5.9 MEDIUM
Network
wireshark wireshark epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.2 mishandles the Grouping subfield, which allows remote attackers to cause a denial of service (buffer over… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4416 2024-11-21 11:52 2016-05-1 Show GitHub Exploit DB Packet Storm
274785 5.9 MEDIUM
Network
wireshark wireshark wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 2.x before 2.0.2 incorrectly increases a certain octet count, which allows remote attackers to cause a denial of service (heap-based buff… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4415 2024-11-21 11:52 2016-05-1 Show GitHub Exploit DB Packet Storm
274786 5.5 MEDIUM
Local
gmer gmer A stack based buffer overflow vulnerability exists in the method receiving data from SysTreeView32 control of the GMER 2.1.19357 application. A specially created long path can lead to a buffer overfl… CWE-787
 Out-of-bounds Write
CVE-2016-4289 2024-11-21 11:51 2019-10-30 Show GitHub Exploit DB Packet Storm
274787 9.8 CRITICAL
Network
web2py web2py The secure_load function in gluon/utils.py in web2py before 2.14.2 uses pickle.loads to deserialize session information stored in cookies, which might allow remote attackers to execute arbitrary code… CWE-502
 Deserialization of Untrusted Data
CVE-2016-3957 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm
274788 5.5 MEDIUM
Local
web2py web2py web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a direct request to examples/simple_examples/status. NOTE: this issue can be leveraged by remote attackers to … CWE-200
Information Exposure
CVE-2016-3954 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm
274789 9.8 CRITICAL
Network
web2py web2py The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect func… CWE-798
 Use of Hard-coded Credentials
CVE-2016-3953 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm
274790 7.8 HIGH
Local
web2py web2py web2py before 2.14.1, when using the standalone version, allows remote attackers to obtain environment variable values via a direct request to examples/template_examples/beautify. NOTE: this issue c… CWE-255
Credentials Management
CVE-2016-3952 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm