Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
227141 4.3 警告 Ruby on Rails project - Ruby on Rails の actionpack/lib/action_view/helpers/text_helper.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6416 2013-12-10 12:29 2013-12-3 Show GitHub Exploit DB Packet Storm
227142 7.2 危険 Novell - SUSE horde5 パッケージにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1090 2013-12-9 18:21 2013-12-4 Show GitHub Exploit DB Packet Storm
227143 4.3 警告 The Jamroom Network - Jamroom 用 Search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6804 2013-12-9 18:08 2013-11-13 Show GitHub Exploit DB Packet Storm
227144 4.3 警告 Ganglia - Ganglia Web の header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6395 2013-12-9 17:50 2013-11-22 Show GitHub Exploit DB Packet Storm
227145 4.3 警告 Claroline Consortium - Claroline におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6267 2013-12-9 15:54 2013-11-25 Show GitHub Exploit DB Packet Storm
227146 7.5 危険 Dokeos - Dokeos における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-6341 2013-12-9 14:29 2013-11-27 Show GitHub Exploit DB Packet Storm
227147 4.3 警告 RockMongo - RockMongo の xn 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-5108 2013-12-9 14:20 2013-08-16 Show GitHub Exploit DB Packet Storm
227148 4.3 警告 シスコシステムズ - Cisco ONS 15454 コントローラカードのソフトウェアの管理の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-6702 2013-12-6 16:38 2013-12-3 Show GitHub Exploit DB Packet Storm
227149 6.8 警告 X.Org Foundation - X.org libXi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-1998 2013-12-6 15:35 2013-05-23 Show GitHub Exploit DB Packet Storm
227150 6.8 警告 X.Org Foundation - X.org libX11 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-1997 2013-12-6 15:35 2013-05-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272961 6.5 MEDIUM
Network
cisco unified_communications_manager The Cisco Unified Communications Manager (CUCM) may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. More Information… CWE-20
 Improper Input Validation 
CVE-2016-6440 2024-11-21 11:56 2016-10-28 Show GitHub Exploit DB Packet Storm
272962 7.5 HIGH
Network
cisco firepower_management_center A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Software before 6.0.1 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) … CWE-399
 Resource Management Errors
CVE-2016-6439 2024-11-21 11:56 2016-10-28 Show GitHub Exploit DB Packet Storm
272963 5.9 MEDIUM
Network
cisco ios_xe A vulnerability in Cisco IOS XE Software running on Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, remote attacker to cause a configuration integrity change to the vty line c… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-6438 2024-11-21 11:56 2016-10-28 Show GitHub Exploit DB Packet Storm
272964 5.9 MEDIUM
Network
cisco wide_area_application_services A vulnerability in the SSL session cache management of Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to … CWE-399
 Resource Management Errors
CVE-2016-6437 2024-11-21 11:56 2016-10-28 Show GitHub Exploit DB Packet Storm
272965 8.1 HIGH
Network
cisco adaptive_security_appliance_software A vulnerability in the Identity Firewall feature of Cisco ASA Software before 9.6(2.1) could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-6432 2024-11-21 11:56 2016-10-28 Show GitHub Exploit DB Packet Storm
272966 7.5 HIGH
Network
cisco adaptive_security_appliance_software A vulnerability in the local Certificate Authority (CA) feature of Cisco ASA Software before 9.6(1.5) could allow an unauthenticated, remote attacker to cause a reload of the affected system. The vul… CWE-20
 Improper Input Validation 
CVE-2016-6431 2024-11-21 11:56 2016-10-28 Show GitHub Exploit DB Packet Storm
272967 5.5 MEDIUM
Local
linux linux_kernel The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a deni… CWE-416
 Use After Free
CVE-2016-6828 2024-11-21 11:56 2016-10-17 Show GitHub Exploit DB Packet Storm
272968 9.8 CRITICAL
Network
google android sound/soc/msm/qdsp6v2/msm-ds2-dap-config.c in a Qualcomm QDSP6v2 driver in Android before 2016-10-05 allows attackers to cause a denial of service or possibly have unspecified other impact via a larg… CWE-20
 Improper Input Validation 
CVE-2016-6696 2024-11-21 11:56 2016-10-10 Show GitHub Exploit DB Packet Storm
272969 9.8 CRITICAL
Network
google android sound/soc/msm/qdsp6v2/msm-ds2-dap-config.c in a Qualcomm QDSP6v2 driver in Android before 2016-10-05 allows attackers to cause a denial of service or possibly have unspecified other impact via a craf… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-6695 2024-11-21 11:56 2016-10-10 Show GitHub Exploit DB Packet Storm
272970 9.8 CRITICAL
Network
google android sound/soc/msm/qdsp6v2/msm-ds2-dap-config.c in a Qualcomm QDSP6v2 driver in Android before 2016-10-05 allows attackers to cause a denial of service or possibly have unspecified other impact via crafte… CWE-20
 Improper Input Validation 
CVE-2016-6694 2024-11-21 11:56 2016-10-10 Show GitHub Exploit DB Packet Storm