Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228221	9.3	危険	IBM	-	IBM SPSS SamplePower の C1sizer.ocx におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5946	2013-05-1 11:42	2013-04-26	Show	GitHub Exploit DB Packet Storm

228222	9.3	危険	IBM	-	IBM SPSS SamplePower の Vsflex8l ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5945	2013-05-1 11:41	2013-04-26	Show	GitHub Exploit DB Packet Storm

228223	4.3	警告	ヒューレット・パッカード	-	HP Managed Printing Administration におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5219	2013-05-1 11:22	2013-04-25	Show	GitHub Exploit DB Packet Storm

228224	3.5	注意	IBM	-	複数の IBM 製品で使用される IBM Sametime のクライアントの実装におけるコマンドを送信される脆弱性	CWE-noinfo 情報不足	CVE-2013-0553	2013-05-1 11:21	2013-04-22	Show	GitHub Exploit DB Packet Storm

228225	3.5	注意	IBM	-	IBM Sametime の Sametime Links サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0533	2013-05-1 11:15	2013-04-22	Show	GitHub Exploit DB Packet Storm

228226	9.3	危険	IBM	-	IBM SPSS SamplePower の olch2x32 ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-0593	2013-05-1 11:14	2013-04-26	Show	GitHub Exploit DB Packet Storm

228227	2.3	注意	IBM	-	IBM Application Support Facility for z/OS の IBM Document Connect for Application Support Facility におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0572	2013-05-1 11:13	2013-04-25	Show	GitHub Exploit DB Packet Storm

228228	2.9	注意	IBM	-	IBM Application Support Facility for z/OS の IBM Document Connect for Application Support Facility におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0571	2013-05-1 11:11	2013-04-25	Show	GitHub Exploit DB Packet Storm

228229	4.3	警告	IBM	-	IBM Connections におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0569	2013-05-1 11:04	2013-04-25	Show	GitHub Exploit DB Packet Storm

228230	4.3	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager の Web フレームワークにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1227	2013-04-30 19:48	2013-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275591	7.8	HIGH Local	systemd_project	systemd	A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers to escalate their privileges to root. Th…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10156	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

275592	5.9	MEDIUM Network	hiteksoftware	automize	Information Disclosure can occur in sshProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for SSH/SFTP…	CWE-326 Inadequate Encryption Strength	CVE-2016-10104	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

275593	8.1	HIGH Network	hiteksoftware	automize	Information Disclosure can occur in encryptionProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for G…	CWE-255 CWE-326 Credentials Management Inadequate Encryption Strength	CVE-2016-10103	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

275594	8.1	HIGH Network	hiteksoftware	automize	hitek.jar in Hitek Software's Automize uses weak encryption when encrypting SSH/SFTP and Encryption profile passwords. This allows an attacker to retrieve the encrypted passwords from sshProfiles.jsd…	CWE-326 Inadequate Encryption Strength	CVE-2016-10102	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

275595	8.1	HIGH Network	hiteksoftware	automize	Information Disclosure can occur in Hitek Software's Automize 10.x and 11.x passManager.jsd. Users have the Read attribute, which allows an attacker to recover the encrypted password to access the Pa…	CWE-255 CWE-326 Credentials Management Inadequate Encryption Strength	CVE-2016-10101	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

275596	7.5	HIGH Network	tiki	tikiwiki_cms\/groupware	A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a targeted system via a crafted pathname in a banner URL field.	CWE-200 Information Exposure	CVE-2016-10143	2024-11-21 11:43	2017-01-20	Show	GitHub Exploit DB Packet Storm

275597	7.8	HIGH Local	tqdm_project	tqdm	The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.	CWE-17 Code	CVE-2016-10075	2024-11-21 11:43	2017-01-20	Show	GitHub Exploit DB Packet Storm

275598	8.1	HIGH Network	ca	service_desk_management service_desk_manager	RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10086	2024-11-21 11:43	2017-01-19	Show	GitHub Exploit DB Packet Storm

275599	4.3	MEDIUM Network	wordpress	wordpress	The wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 makes a get_plugin_data call before checking the update_plugins capability, which allows remote authen…	CWE-254 CWE-284 7PK - Security Features Improper Access Control	CVE-2016-10148	2024-11-21 11:43	2017-01-19	Show	GitHub Exploit DB Packet Storm

275600	5.5	MEDIUM Local	linux	linux_kernel	crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service (NULL pointer dereference and system crash) by using an AF_ALG socket with an incompatible algorithm…	CWE-476 NULL Pointer Dereference	CVE-2016-10147	2024-11-21 11:43	2017-01-19	Show	GitHub Exploit DB Packet Storm