Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
227801 4 警告 オラクル - Oracle Supply Chain Products Suite の Agile EDM における Java Client の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2441 2013-11-7 18:04 2013-04-16 Show GitHub Exploit DB Packet Storm
227802 7.4 危険 シトリックス・システムズ
Xen プロジェクト
- Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2013-1432 2013-11-7 18:03 2013-07-4 Show GitHub Exploit DB Packet Storm
227803 9.3 危険 マイクロソフト - Microsoft Internet Explorer 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-3882 2013-11-7 18:01 2013-10-8 Show GitHub Exploit DB Packet Storm
227804 7.5 危険 Tiki Software Community Association - Tiki Wiki CMS Groupware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-4715 2013-11-7 17:57 2013-11-5 Show GitHub Exploit DB Packet Storm
227805 2.6 注意 Tiki Software Community Association - Tiki Wiki CMS Groupware におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-4714 2013-11-7 17:55 2013-11-5 Show GitHub Exploit DB Packet Storm
227806 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 および 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-3875 2013-11-7 17:53 2013-10-8 Show GitHub Exploit DB Packet Storm
227807 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-3874 2013-11-7 17:41 2013-10-8 Show GitHub Exploit DB Packet Storm
227808 5.5 警告 Pydio - AjaXplorer の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-5688 2013-11-7 17:38 2013-09-5 Show GitHub Exploit DB Packet Storm
227809 9.3 危険 マイクロソフト - Microsoft Internet Explorer 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-3873 2013-11-7 17:29 2013-10-8 Show GitHub Exploit DB Packet Storm
227810 4.3 警告 OpenAFS - OpenAFS の vos コマンドにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2013-4135 2013-11-7 17:25 2013-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273111 6.1 MEDIUM
Network
sophos puremessage Cross-site scripting (XSS) vulnerability in Sophos PureMessage for UNIX before 6.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2016-6217 2024-11-21 11:55 2018-01-27 Show GitHub Exploit DB Packet Storm
273112 4.3 MEDIUM
Network
ibm rational_quality_manager
rational_team_concert
rational_doors_next_generation
rational_engineering_lifecycle_manager
rational_rhapsody_design_manager
rational_software_architect_design…
IBM Jazz technology based products might divulge information that might be useful in helping attackers through error messages. IBM X-Force ID: 116868. CWE-200
Information Exposure
CVE-2016-6024 2024-11-21 11:55 2017-11-28 Show GitHub Exploit DB Packet Storm
273113 9.8 CRITICAL
Network
jantek jtc-200_firmware An Improper Authentication issue was discovered in JanTek JTC-200, all versions. The improper authentication could provide an undocumented BusyBox Linux shell accessible over the TELNET service witho… CWE-287
Improper Authentication
CVE-2016-5791 2024-11-21 11:55 2017-10-13 Show GitHub Exploit DB Packet Storm
273114 8.0 HIGH
Network
jantek jtc-200_firmware A Cross-site Request Forgery issue was discovered in JanTek JTC-200, all versions. An attacker could perform actions with the same permissions as a victim user, provided the victim has an active sess… CWE-352
 Origin Validation Error
CVE-2016-5789 2024-11-21 11:55 2017-10-13 Show GitHub Exploit DB Packet Storm
273115 7.0 HIGH
Local
google android drivers/net/ethernet/msm/rndis_ipa.c in the Qualcomm networking driver in Android allows remote attackers to execute arbitrary code via a crafted application compromising a privileged process. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5868 2024-11-21 11:55 2017-09-26 Show GitHub Exploit DB Packet Storm
273116 7.3 HIGH
Network
automatedlogic
carrier
i-vu
sitescan_web
automatedlogic_webctrl
An XXE issue was discovered in Automated Logic Corporation (ALC) Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior. An attacker cou… CWE-611
XXE
CVE-2016-5795 2024-11-21 11:55 2017-09-1 Show GitHub Exploit DB Packet Storm
273117 7.5 HIGH
Network
westermo mrd-305-din_firmware
mrd-315-din_firmware
mrd-355-din_firmware
mrd-455-din_firmware
A Use of Hard-Coded Cryptographic Key issue was discovered in MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The device utilizes hard-coded privat… CWE-798
 Use of Hard-coded Credentials
CVE-2016-5816 2024-11-21 11:55 2017-08-26 Show GitHub Exploit DB Packet Storm
273118 5.3 MEDIUM
Network
redhat jboss_enterprise_application_platform Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers. CWE-200
Information Exposure
CVE-2016-6311 2024-11-21 11:55 2017-08-23 Show GitHub Exploit DB Packet Storm
273119 5.5 MEDIUM
Local
redhat enterprise_virtualization oVirt Engine discloses the ENGINE_HTTPS_PKI_TRUST_STORE_PASSWORD in /var/log/ovirt-engine/engine.log file in RHEV before 4.0. CWE-200
Information Exposure
CVE-2016-6310 2024-11-21 11:55 2017-08-23 Show GitHub Exploit DB Packet Storm
273120 9.8 CRITICAL
Network
google android In all Qualcomm products with Android releases from CAF using the Linux kernel, arguments to several QTEE syscalls are not properly validated. CWE-20
 Improper Input Validation 
CVE-2016-5872 2024-11-21 11:55 2017-08-19 Show GitHub Exploit DB Packet Storm