Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
227141 4.3 警告 Ruby on Rails project - Ruby on Rails の actionpack/lib/action_view/helpers/text_helper.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6416 2013-12-10 12:29 2013-12-3 Show GitHub Exploit DB Packet Storm
227142 7.2 危険 Novell - SUSE horde5 パッケージにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1090 2013-12-9 18:21 2013-12-4 Show GitHub Exploit DB Packet Storm
227143 4.3 警告 The Jamroom Network - Jamroom 用 Search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6804 2013-12-9 18:08 2013-11-13 Show GitHub Exploit DB Packet Storm
227144 4.3 警告 Ganglia - Ganglia Web の header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6395 2013-12-9 17:50 2013-11-22 Show GitHub Exploit DB Packet Storm
227145 4.3 警告 Claroline Consortium - Claroline におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6267 2013-12-9 15:54 2013-11-25 Show GitHub Exploit DB Packet Storm
227146 7.5 危険 Dokeos - Dokeos における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-6341 2013-12-9 14:29 2013-11-27 Show GitHub Exploit DB Packet Storm
227147 4.3 警告 RockMongo - RockMongo の xn 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-5108 2013-12-9 14:20 2013-08-16 Show GitHub Exploit DB Packet Storm
227148 4.3 警告 シスコシステムズ - Cisco ONS 15454 コントローラカードのソフトウェアの管理の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-6702 2013-12-6 16:38 2013-12-3 Show GitHub Exploit DB Packet Storm
227149 6.8 警告 X.Org Foundation - X.org libXi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-1998 2013-12-6 15:35 2013-05-23 Show GitHub Exploit DB Packet Storm
227150 6.8 警告 X.Org Foundation - X.org libX11 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-1997 2013-12-6 15:35 2013-05-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273371 7.5 HIGH
Network
cisco email_security_appliance
web_security_appliance
A vulnerability in Advanced Malware Protection (AMP) for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to cause a partial den… CWE-20
 Improper Input Validation 
CVE-2016-6360 2024-11-21 11:55 2016-10-28 Show GitHub Exploit DB Packet Storm
273372 7.5 HIGH
Network
cisco email_security_appliance A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to sto… CWE-20
 Improper Input Validation 
CVE-2016-6356 2024-11-21 11:55 2016-10-28 Show GitHub Exploit DB Packet Storm
273373 5.5 MEDIUM
Local
linux linux_kernel drivers/infiniband/ulp/srpt/ib_srpt.c in the Linux kernel before 4.5.1 allows local users to cause a denial of service (NULL pointer dereference and system crash) by using an ABORT_TASK command to ab… CWE-476
 NULL Pointer Dereference
CVE-2016-6327 2024-11-21 11:55 2016-10-17 Show GitHub Exploit DB Packet Storm
273374 7.8 HIGH
Local
apache tomcat The Tomcat package on Red Hat Enterprise Linux (RHEL) 5 through 7, JBoss Web Server 3.0, and JBoss EWS 2 uses weak permissions for (1) /etc/sysconfig/tomcat and (2) /etc/tomcat/tomcat.conf, which all… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-6325 2024-11-21 11:55 2016-10-13 Show GitHub Exploit DB Packet Storm
273375 7.5 HIGH
Network
gnu
opensuse
fedoraproject
glibc
opensuse
fedora
The makecontext function in the GNU C Library (aka glibc or libc6) before 2.25 creates execution contexts incompatible with the unwinder on ARM EABI (32-bit) platforms, which might allow context-depe… CWE-284
Improper Access Control
CVE-2016-6323 2024-11-21 11:55 2016-10-7 Show GitHub Exploit DB Packet Storm
273376 7.5 HIGH
Network
citrix license_server
license_server_vpx
The lmadmin component in Flexera FlexNet Publisher (aka Flex License Manager) before 2015 SP5 and 2016 before R1 SP1, as used by Citrix License Server for Windows before 11.14.0.1 and Citrix License … NVD-CWE-noinfo
CVE-2016-6273 2024-11-21 11:55 2016-10-7 Show GitHub Exploit DB Packet Storm
273377 6.1 MEDIUM
Network
ibm sterling_secure_proxy The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 does not enable the HSTS protection mechanism, which makes it easier for remot… CWE-79
Cross-site Scripting
CVE-2016-6027 2024-11-21 11:55 2016-10-6 Show GitHub Exploit DB Packet Storm
273378 5.3 MEDIUM
Adjacent
ibm sterling_secure_proxy The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows man-in-the-middle attackers to obtain sensitive information via an HTTP… CWE-200
Information Exposure
CVE-2016-6026 2024-11-21 11:55 2016-10-6 Show GitHub Exploit DB Packet Storm
273379 5.9 MEDIUM
Local
ibm sterling_secure_proxy The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows remote attackers to obtain access by leveraging an unattended workstati… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-6025 2024-11-21 11:55 2016-10-6 Show GitHub Exploit DB Packet Storm
273380 7.5 HIGH
Network
ibm sterling_secure_proxy Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows remote attackers to read arbitrary… CWE-22
Path Traversal
CVE-2016-6023 2024-11-21 11:55 2016-10-6 Show GitHub Exploit DB Packet Storm