Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
227841 6 警告 NAS4Free - NAS4Free にコードインジェクションの脆弱性 CWE-94
コード・インジェクション
CVE-2013-3631 2013-11-6 11:33 2013-10-30 Show GitHub Exploit DB Packet Storm
227842 7.8 危険 Shenzhen TVT Digital Technology Co., Ltd. - TVT TD-2308SS-B にディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-6023 2013-11-6 11:27 2013-10-25 Show GitHub Exploit DB Packet Storm
227843 6.8 警告 Novell - Novell ZENworks Configuration Management の ZCC ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-6346 2013-11-6 11:23 2013-10-28 Show GitHub Exploit DB Packet Storm
227844 10 危険 Novell - Novell ZENworks Configuration Management の ZCC ページにおける脆弱性 CWE-noinfo
情報不足
CVE-2013-6345 2013-11-6 11:20 2013-10-28 Show GitHub Exploit DB Packet Storm
227845 4.3 警告 Novell - Novell ZENworks Configuration Management の ZCC ページにおけるクロスフレームスクリプティング攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6344 2013-11-6 10:54 2013-10-28 Show GitHub Exploit DB Packet Storm
227846 6.4 警告 Ruby-lang.org
Novell
- Ruby の DL および Fiddle における $SAFE レベルの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2065 2013-11-5 19:13 2013-05-14 Show GitHub Exploit DB Packet Storm
227847 5 警告 strongSwan - strongSWAN におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2013-6076 2013-11-5 19:02 2013-11-1 Show GitHub Exploit DB Packet Storm
227848 5 警告 strongSwan - strongSwan の utils/identification.c の compare_dn 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-6075 2013-11-5 18:54 2013-11-1 Show GitHub Exploit DB Packet Storm
227849 6.8 警告 thoughtbot - Ruby 用 cocaine gem における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2013-4457 2013-11-5 18:45 2013-10-22 Show GitHub Exploit DB Packet Storm
227850 4.3 警告 Xen プロジェクト - Xen の oxenstored におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0215 2013-11-5 18:06 2013-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275601 4.3 MEDIUM
Network
jenkins
redhat
jenkins
openshift
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with read access to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified… CWE-200
Information Exposure
CVE-2016-3723 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
275602 4.3 MEDIUM
Network
jenkins
redhat
jenkins
openshift
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name." CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-3722 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
275603 6.5 MEDIUM
Network
redhat
jenkins
openshift
jenkins
Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables. CWE-17
Code
CVE-2016-3721 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
275604 7.5 HIGH
Network
canonical
xmlsoft
debian
hp
opensuse
ubuntu_linux
libxml2
debian_linux
icewall_file_manager
icewall_federation_agent
leap
The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to caus… CWE-20
 Improper Input Validation 
CVE-2016-3705 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
275605 7.5 HIGH
Network
fedoraproject
debian
xstream_project
fedora
debian_linux
xstream
Multiple XML external entity (XXE) vulnerabilities in the (1) Dom4JDriver, (2) DomDriver, (3) JDomDriver, (4) JDom2Driver, (5) SjsxpDriver, (6) StandardStaxDriver, and (7) WstxDriver drivers in XStre… CWE-200
Information Exposure
CVE-2016-3674 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
275606 7.5 HIGH
Network
opensuse
debian
hp
xmlsoft
canonical
redhat
oracle
leap
debian_linux
icewall_file_manager
icewall_federation_agent
libxml2
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enter…
The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consum… CWE-674
 Uncontrolled Recursion
CVE-2016-3627 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
275607 5.5 MEDIUM
Local
oracle
qemu
canonical
debian
redhat
citrix
vm_server
qemu
ubuntu_linux
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus<…
Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) by editing VGA registers in VBE mode. CWE-190
 Integer Overflow or Wraparound
CVE-2016-3712 2024-11-21 11:50 2016-05-12 Show GitHub Exploit DB Packet Storm
275608 8.8 HIGH
Local
debian
hp
canonical
qemu
oracle
citrix
redhat
debian_linux
helion_openstack
ubuntu_linux
qemu
linux
vm_server
xenserver
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_li…
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-3710 2024-11-21 11:50 2016-05-12 Show GitHub Exploit DB Packet Storm
275609 5.5 MEDIUM
Local
canonical
redhat
imagemagick
ubuntu_linux
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc…
The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to read arbitrary files via a crafted image. CWE-200
Information Exposure
CVE-2016-3717 2024-11-21 11:50 2016-05-6 Show GitHub Exploit DB Packet Storm
275610 3.3 LOW
Local
canonical
imagemagick
redhat
ubuntu_linux
imagemagick
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server
enter…
The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-3716 2024-11-21 11:50 2016-05-6 Show GitHub Exploit DB Packet Storm