Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228351 4.3 警告 WordPress.org - WordPress の HTTP API におけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2199 2013-08-19 17:56 2013-06-21 Show GitHub Exploit DB Packet Storm
228352 4.3 警告 WordPress.org - WordPress の wp-includes/class-phpass.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2013-2173 2013-08-19 17:54 2013-06-7 Show GitHub Exploit DB Packet Storm
228353 5 警告 Nagios Enterprises, LLC - Nagstamont の自動アップデートリクエストにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4114 2013-08-19 17:05 2013-07-11 Show GitHub Exploit DB Packet Storm
228354 5 警告 SAP - SAP Netweaver の HostControl サービスの GetComputerSystem メソッドにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3319 2013-08-19 15:04 2013-07-9 Show GitHub Exploit DB Packet Storm
228355 4 警告 ジュニパーネットワークス - Junos Space JA1500 アプライアンスなどで使用される Juniper Junos Space における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5097 2013-08-19 14:56 2013-08-14 Show GitHub Exploit DB Packet Storm
228356 4 警告 ジュニパーネットワークス - Junos Space JA1500 アプライアンスなどで使用される Juniper Junos Space における設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5096 2013-08-19 14:52 2013-08-14 Show GitHub Exploit DB Packet Storm
228357 4.3 警告 ジュニパーネットワークス - Junos Space JA1500 アプライアンスなどで使用される Juniper Junos Space におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5095 2013-08-19 14:51 2013-08-14 Show GitHub Exploit DB Packet Storm
228358 3.5 注意 IBM - IBM BladeCenter システム用 IBM Advanced Management Module のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4007 2013-08-19 14:48 2013-08-12 Show GitHub Exploit DB Packet Storm
228359 5 警告 IBM - IBM InfoSphere Information Server におけるユーザアカウントを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2013-3040 2013-08-19 14:47 2013-08-9 Show GitHub Exploit DB Packet Storm
228360 3.5 注意 IBM - IBM InfoSphere Information Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3034 2013-08-19 14:45 2013-08-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276381 3.7 LOW
Network 		fedoraproject
cgit_project 		fedora
cgit 		CRLF injection vulnerability in the ui-blob handler in CGit before 0.12 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting (X… NVD-CWE-Other
CVE-2016-1899 2024-11-21 11:47 2016-01-21 Show GitHub Exploit DB Packet Storm
276382 6.5 MEDIUM
Network 		jasper_project jasper The jpc_pi_nextcprl function in JasPer 1.900.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1867 2024-11-21 11:47 2016-01-21 Show GitHub Exploit DB Packet Storm
276383 5.3 MEDIUM
Network 		openbsd openssh The ssh_packet_read_poll2 function in packet.c in OpenSSH before 7.1p2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted network traffic. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1907 2024-11-21 11:47 2016-01-19 Show GitHub Exploit DB Packet Storm
276384 7.3 HIGH
Network 		php php Multiple integer overflows in ext/standard/exec.c in PHP 7.x before 7.0.2 allow remote attackers to cause a denial of service or possibly have unspecified other impact via a long string to the (1) ph… CWE-189
Numeric Errors 		CVE-2016-1904 2024-11-21 11:47 2016-01-19 Show GitHub Exploit DB Packet Storm
276385 9.1 CRITICAL
Network 		php php The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows remote attackers to obtain sensitive information or ca… CWE-119
CWE-200
Incorrect Access of Indexable Resource ('Range Error') 
Information Exposure 		CVE-2016-1903 2024-11-21 11:47 2016-01-19 Show GitHub Exploit DB Packet Storm
276386 5.4 MEDIUM
Network 		redhen_project redhen Multiple cross-site scripting (XSS) vulnerabilities in the Redhen module 7.x-1.x before 7.x-1.11 for Drupal allow remote authenticated users with certain access to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2016-1913 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
276387 5.4 MEDIUM
Network 		dolibarr dolibarr Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 allow remote authenticated users to inject arbitrary web script or HTML via the (1) lastname, (2) firstname, (3) email, (… CWE-79
Cross-site Scripting 		CVE-2016-1912 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
276388 6.1 MEDIUM
Network 		sap netweaver Multiple cross-site scripting (XSS) vulnerabilities in SAP NetWeaver 7.4 allow remote attackers to inject arbitrary web script or HTML via vectors related to the (1) Runtime Workbench (RWB) or (2) Pm… CWE-79
Cross-site Scripting 		CVE-2016-1911 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
276389 5.3 MEDIUM
Network 		sap netweaver The User Management Engine (UME) in SAP NetWeaver 7.4 allows attackers to decrypt unspecified data via unknown vectors, aka SAP Security Note 2191290. CWE-200
Information Exposure 		CVE-2016-1910 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
276390 9.8 CRITICAL
Network 		fortinet fortios Fortinet FortiAnalyzer before 5.0.12 and 5.2.x before 5.2.5; FortiSwitch 3.3.x before 3.3.3; FortiCache 3.0.x before 3.0.8; and FortiOS 4.1.x before 4.1.11, 4.2.x before 4.2.16, 4.3.x before 4.3.17 a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1909 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm