Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226891	2.6	注意	コンクリートファイブ	-	concrete5 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5181	2013-02-20 16:01	2012-12-21	Show	GitHub Exploit DB Packet Storm

226892	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0008	2013-02-20 14:31	2013-01-8	Show	GitHub Exploit DB Packet Storm

226893	7.5	危険	Google	-	Linux 上で稼働する Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0838	2013-02-20 13:41	2013-01-10	Show	GitHub Exploit DB Packet Storm

226894	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0837	2013-02-20 13:40	2013-01-10	Show	GitHub Exploit DB Packet Storm

226895	6.8	警告	Google	-	Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0836	2013-02-20 13:39	2013-01-10	Show	GitHub Exploit DB Packet Storm

226896	5	警告	Google	-	Google Chrome の Geolocation の実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0835	2013-02-20 13:37	2013-01-10	Show	GitHub Exploit DB Packet Storm

226897	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2013-0834	2013-02-20 13:36	2013-01-10	Show	GitHub Exploit DB Packet Storm

226898	5	警告	Google	-	Google Chrome のサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2013-0833	2013-02-20 13:35	2013-01-10	Show	GitHub Exploit DB Packet Storm

226899	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0832	2013-02-20 13:31	2013-01-10	Show	GitHub Exploit DB Packet Storm

226900	7.5	危険	Google	-	Google Chrome におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0831	2013-02-20 13:30	2013-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275521	-	mediawiki	mediawiki	The ApiBase::getWatchlistUser function in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 does not perform token comparison in constant time, which allows remote attackers to…	CWE-352 Origin Validation Error	CVE-2015-6728	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275522	-	mediawiki canonical	mediawiki ubuntu_linux	The Special:DeletedContributions page in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to determine if an IP is autoblocked via the "Change block" t…	CWE-200 Information Exposure	CVE-2015-6727	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275523	-	ippusbxd_project	ippusbxd	IPPUSBXD before 1.22 listens on all interfaces, which allows remote attackers to obtain access to USB connected printers via a direct request.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-6520	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275524	-	linux	linux_kernel	The perf_callchain_user_64 function in arch/powerpc/perf/callchain.c in the Linux kernel before 4.0.2 on ppc64 platforms allows local users to cause a denial of service (infinite loop) via a deep 64-…	CWE-399 Resource Management Errors	CVE-2015-6526	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275525	-	path_breadcrumbs_project	path_breadcrumbs	Cross-site scripting (XSS) vulnerability in the administration interface in the Path Breadcrumbs module 7.x-3.x before 7.x-3.3 for Drupal allows remote authenticated users with the "Administer Path B…	CWE-79 Cross-site Scripting	CVE-2015-6754	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275526	-	quick_edit_project	quick_edit	Multiple cross-site scripting (XSS) vulnerabilities in the Quick Edit module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script…	CWE-79 Cross-site Scripting	CVE-2015-6753	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275527	-	pligg	pligg_cms	Cross-site request forgery (CSRF) vulnerability in Pligg CMS 2.0.2 allows remote attackers to hijack the authentication of administrators for requests that add an administrator via a request to admin…	CWE-352 Origin Validation Error	CVE-2015-6655	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275528	-	search_api_autocomplete_project	search_api_autocomplete	Cross-site scripting (XSS) vulnerability in the Search API Autocomplete module 7.x-1.x before 7.x-1.3 for Drupal, when the search index is configured to use the HTML filter processor, allows remote a…	CWE-79 Cross-site Scripting	CVE-2015-6752	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275529	-	time_tracker_project	time_tracker	Multiple cross-site scripting (XSS) vulnerabilities in the Time Tracker module 7.x-1.x before 7.x-1.4 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2015-6751	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm

275530	-	youtube_embed_project	youtube_embed	Cross-site scripting (XSS) vulnerability in includes/options-profiles.php in the YouTube Embed plugin before 3.3.3 for WordPress allows remote administrators to inject arbitrary web script or HTML vi…	CWE-79 Cross-site Scripting	CVE-2015-6535	2024-11-21 11:35	2015-09-1	Show	GitHub Exploit DB Packet Storm