Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227461 6.8 警告 IndiaNIC - WordPress 用 IndiaNIC Testimonial プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5672 2013-09-12 14:31 2013-09-1 Show GitHub Exploit DB Packet Storm
227462 4.3 警告 ImageMagick - ImageMagick の coders/gif.c 内の ReadGIFImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4298 2013-09-12 14:29 2013-08-5 Show GitHub Exploit DB Packet Storm
227463 5 警告 Fedora Project - 389 Directory Server の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4283 2013-09-12 14:16 2013-08-28 Show GitHub Exploit DB Packet Storm
227464 6.9 警告 GNOME Project - GNOME Display Manager における任意のディレクトリのパーミッションを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-4169 2013-09-12 13:42 2013-09-5 Show GitHub Exploit DB Packet Storm
227465 3.5 注意 AlienWP - Drupal 用 Hatch テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4138 2013-09-11 16:42 2013-07-10 Show GitHub Exploit DB Packet Storm
227466 7.2 危険 ソフォス - Sophos Web Appliance の /opt/cma/bin/clear_keys.pl の close_connections 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4984 2013-09-11 14:45 2013-09-9 Show GitHub Exploit DB Packet Storm
227467 7.5 危険 VMware - VMware ESX および ESXi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3657 2013-09-11 14:02 2013-09-6 Show GitHub Exploit DB Packet Storm
227468 6.4 警告 VMware - VMware ESX および ESXi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3658 2013-09-11 13:54 2013-09-6 Show GitHub Exploit DB Packet Storm
227469 4.3 警告 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5714 2013-09-11 13:51 2013-08-23 Show GitHub Exploit DB Packet Storm
227470 5 警告 Digium - 複数の Asterisk 製品の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5642 2013-09-11 13:50 2013-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273001 7.5 HIGH
Network 		paloaltonetworks pan-os The GlobalProtect Portal in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote attackers to cause a denial of service (service c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3656 2024-11-21 11:50 2016-04-13 Show GitHub Exploit DB Packet Storm
273002 9.8 CRITICAL
Network 		paloaltonetworks pan-os The management web interface in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5 allows remote attackers to execute arbitrary OS commands via … CWE-20
CWE-78
 Improper Input Validation 
OS Command  		CVE-2016-3655 2024-11-21 11:50 2016-04-13 Show GitHub Exploit DB Packet Storm
273003 7.2 HIGH
Network 		paloaltonetworks pan-os The device management command line interface (CLI) in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote au… CWE-20
 Improper Input Validation  		CVE-2016-3654 2024-11-21 11:50 2016-04-13 Show GitHub Exploit DB Packet Storm
273004 7.5 HIGH
Network 		huawei s5300_firmware
s5700_firmware
s7700_firmware
s9300_firmware
s9700_firmware 		Huawei Quidway S9700, S5700, S5300, S9300, and S7700 switches with software before V200R003SPH012 allow remote attackers to cause a denial of service (switch restart) via crafted traffic. CWE-20
 Improper Input Validation  		CVE-2016-3678 2024-11-21 11:50 2016-04-12 Show GitHub Exploit DB Packet Storm
273005 6.4 MEDIUM
Adjacent 		huawei e3276s_firmware Huawei E3276s USB modems with software before E3276s-150TCPU-V200R002B436D09SP00C00 allow man-in-the-middle attackers to intercept, spoof, or modify network traffic via unspecified vectors related to… CWE-254
 7PK - Security Features 		CVE-2016-3676 2024-11-21 11:50 2016-04-12 Show GitHub Exploit DB Packet Storm
273006 8.1 HIGH
Network 		huawei policy_center_firmware SQL injection vulnerability in Huawei Policy Center with software before V100R003C10SPC020 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to syste… CWE-89
SQL Injection 		CVE-2016-3675 2024-11-21 11:50 2016-04-12 Show GitHub Exploit DB Packet Storm
273007 8.8 HIGH
Network 		cacti cacti SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g allows remote authenticated users to execute arbitrary SQL commands via the host_group_data parameter. CWE-89
SQL Injection 		CVE-2016-3659 2024-11-21 11:50 2016-04-12 Show GitHub Exploit DB Packet Storm
273008 8.8 HIGH
Network 		google
canonical
opensuse 		v8
ubuntu_linux
opensuse
chrome 		Multiple unspecified vulnerabilities in Google V8 before 4.9.385.33, as used in Google Chrome before 49.0.2623.108, allow attackers to cause a denial of service or possibly have other impact via unkn… NVD-CWE-noinfo
CVE-2016-3679 2024-11-21 11:50 2016-03-29 Show GitHub Exploit DB Packet Storm
273009 5.4 MEDIUM
Network 		thoughtbot administrate Cross-site request forgery (CSRF) vulnerability in administrate 0.1.4 and earlier allows remote attackers to hijack the user's OAuth autorization code. CWE-352
 Origin Validation Error 		CVE-2016-3098 2024-11-21 11:49 2022-08-6 Show GitHub Exploit DB Packet Storm
273010 5.5 MEDIUM
Local 		uclouvain openjpeg The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service (memory corruption) via a crafted jpeg 2000 file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3182 2024-11-21 11:49 2020-02-20 Show GitHub Exploit DB Packet Storm