Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228441 10 危険 オラクル - Oracle Java SE の Java Runtime Environment における Install の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-2425 2013-08-12 16:54 2013-04-16 Show GitHub Exploit DB Packet Storm
228442 6.8 警告 Shareaholic - WordPress 用 Shareaholic SexyBookmarks プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3256 2013-08-12 12:25 2013-08-1 Show GitHub Exploit DB Packet Storm
228443 10 危険 シスコシステムズ - 複数の Cisco TelePresence System デバイス上で稼働する Cisco TelePresence System Software における設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3454 2013-08-12 12:24 2013-08-7 Show GitHub Exploit DB Packet Storm
228444 6.8 警告 サイバートラスト株式会社
ProFTPD Project
ターボリナックス
レッドハット		 - 複数の STARTTLS 実装に脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0411 2013-08-9 18:20 2011-03-8 Show GitHub Exploit DB Packet Storm
228445 10 危険 オラクル - Oracle Java SE および JavaFX の Java Runtime Environment における 2D の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-2434 2013-08-9 17:53 2013-04-16 Show GitHub Exploit DB Packet Storm
228446 6.5 警告 Huawei - 複数の Huawei 製品における平文パスワードを取得される脆弱性 CWE-310
暗号の問題 		CVE-2012-4960 2013-08-9 16:41 2012-12-17 Show GitHub Exploit DB Packet Storm
228447 5.4 警告 Mozilla Foundation - 複数の Mozilla 製品における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1717 2013-08-8 15:50 2013-08-6 Show GitHub Exploit DB Packet Storm
228448 6.9 警告 Mozilla Foundation - Windows 上で稼働する Mozilla Firefox のフルインストーラおよびスタブインストーラにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2013-1715 2013-08-8 15:49 2013-08-6 Show GitHub Exploit DB Packet Storm
228449 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の Web ワーカーの実装における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1714 2013-08-8 15:48 2013-08-6 Show GitHub Exploit DB Packet Storm
228450 6.9 警告 Mozilla Foundation - Windows 上で稼働する Mozilla Firefox および Thunderbird における権限を取得される脆弱性 CWE-Other
その他 		CVE-2013-1712 2013-08-8 15:45 2013-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276381 7.5 HIGH
Network 		openssl
nodejs
canonical
debian 		openssl
node.js
ubuntu_linux
debian_linux 		Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly … NVD-CWE-Other
CVE-2016-0797 2024-11-21 11:42 2016-03-4 Show GitHub Exploit DB Packet Storm
276382 9.8 CRITICAL
Network 		oracle
openssl
google
canonical
debian 		mysql
openssl
android
ubuntu_linux
debian_linux 		Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory… NVD-CWE-Other
CVE-2016-0705 2024-11-21 11:42 2016-03-4 Show GitHub Exploit DB Packet Storm
276383 5.1 MEDIUM
Local 		openssl
nodejs
debian
canonical 		openssl
node.js
debian_linux
ubuntu_linux 		The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiati… CWE-200
Information Exposure 		CVE-2016-0702 2024-11-21 11:42 2016-03-4 Show GitHub Exploit DB Packet Storm
276384 5.9 MEDIUM
Network 		openssl openssl An oracle protection mechanism in the get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0… CWE-200
Information Exposure 		CVE-2016-0704 2024-11-21 11:42 2016-03-2 Show GitHub Exploit DB Packet Storm
276385 5.9 MEDIUM
Network 		openssl openssl The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a accepts a nonzero CLIENT-MASTE… CWE-200
Information Exposure 		CVE-2016-0703 2024-11-21 11:42 2016-03-2 Show GitHub Exploit DB Packet Storm
276386 5.9 MEDIUM
Network 		openssl
pulsesecure 		openssl
steel_belted_radius
client 		The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain p… CWE-310
CWE-200
Cryptographic Issues
Information Exposure 		CVE-2016-0800 2024-11-21 11:42 2016-03-2 Show GitHub Exploit DB Packet Storm
276387 6.3 MEDIUM
Network 		debian
apache
canonical 		debian_linux
tomcat
ubuntu_linux 		The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLink… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0763 2024-11-21 11:42 2016-02-25 Show GitHub Exploit DB Packet Storm
276388 8.8 HIGH
Network 		apache
debian
canonical 		tomcat
debian_linux
ubuntu_linux 		The session-persistence implementation in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 mishandles session attributes, which allows remote authenticat… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0714 2024-11-21 11:42 2016-02-25 Show GitHub Exploit DB Packet Storm
276389 4.3 MEDIUM
Network 		canonical
debian
apache 		ubuntu_linux
debian_linux
tomcat 		Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does not place org.apache.catalina.manager.StatusManagerServlet on the org/apache/catalina/core/Restrict… CWE-200
Information Exposure 		CVE-2016-0706 2024-11-21 11:42 2016-02-25 Show GitHub Exploit DB Packet Storm
276390 6.1 MEDIUM
Network 		fedoraproject
moodle 		fedora
moodle 		Cross-site scripting (XSS) vulnerability in the search_pagination function in course/classes/management_renderer.php in Moodle 2.8.x before 2.8.10, 2.9.x before 2.9.4, and 3.0.x before 3.0.2 allows r… CWE-79
Cross-site Scripting 		CVE-2016-0725 2024-11-21 11:42 2016-02-22 Show GitHub Exploit DB Packet Storm