Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228441 10 危険 オラクル - Oracle Java SE の Java Runtime Environment における Install の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-2425 2013-08-12 16:54 2013-04-16 Show GitHub Exploit DB Packet Storm
228442 6.8 警告 Shareaholic - WordPress 用 Shareaholic SexyBookmarks プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3256 2013-08-12 12:25 2013-08-1 Show GitHub Exploit DB Packet Storm
228443 10 危険 シスコシステムズ - 複数の Cisco TelePresence System デバイス上で稼働する Cisco TelePresence System Software における設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3454 2013-08-12 12:24 2013-08-7 Show GitHub Exploit DB Packet Storm
228444 6.8 警告 サイバートラスト株式会社
ProFTPD Project
ターボリナックス
レッドハット		 - 複数の STARTTLS 実装に脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0411 2013-08-9 18:20 2011-03-8 Show GitHub Exploit DB Packet Storm
228445 10 危険 オラクル - Oracle Java SE および JavaFX の Java Runtime Environment における 2D の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-2434 2013-08-9 17:53 2013-04-16 Show GitHub Exploit DB Packet Storm
228446 6.5 警告 Huawei - 複数の Huawei 製品における平文パスワードを取得される脆弱性 CWE-310
暗号の問題 		CVE-2012-4960 2013-08-9 16:41 2012-12-17 Show GitHub Exploit DB Packet Storm
228447 5.4 警告 Mozilla Foundation - 複数の Mozilla 製品における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1717 2013-08-8 15:50 2013-08-6 Show GitHub Exploit DB Packet Storm
228448 6.9 警告 Mozilla Foundation - Windows 上で稼働する Mozilla Firefox のフルインストーラおよびスタブインストーラにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2013-1715 2013-08-8 15:49 2013-08-6 Show GitHub Exploit DB Packet Storm
228449 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の Web ワーカーの実装における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1714 2013-08-8 15:48 2013-08-6 Show GitHub Exploit DB Packet Storm
228450 6.9 警告 Mozilla Foundation - Windows 上で稼働する Mozilla Firefox および Thunderbird における権限を取得される脆弱性 CWE-Other
その他 		CVE-2013-1712 2013-08-8 15:45 2013-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
343771 - tiki tikiwiki_cms\/groupware tiki-view_forum_thread.php in TikiWiki 1.9.0 through 1.9.2 allows remote attackers to obtain the installation path via an invalid topics_sort_mode parameter, possibly related to an SQL injection vuln… CWE-200
Information Exposure 		CVE-2005-3529 2018-10-20 00:36 2005-11-21 Show GitHub Exploit DB Packet Storm
343772 - ifax_solutions hylafax hfaxd in HylaFAX 4.2.3, when PAM support is disabled, accepts arbitrary passwords, which allows remote attackers to gain privileges. NVD-CWE-Other
CVE-2005-3538 2018-10-20 00:36 2005-12-31 Show GitHub Exploit DB Packet Storm
343773 - hylafax hylafax Multiple eval injection vulnerabilities in HylaFAX 4.2.3 and earlier allow remote attackers to execute arbitrary commands via (1) the notify script in HylaFAX 4.2.0 to 4.2.3 and (2) crafted CallID pa… NVD-CWE-Other
CVE-2005-3539 2018-10-20 00:36 2005-12-31 Show GitHub Exploit DB Packet Storm
343774 - xpdf xpdf Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, and (4) pdftohtml, (5) KOffice KWord, (6) CUPS, and (7) libe… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3192 2018-10-20 00:35 2005-12-8 Show GitHub Exploit DB Packet Storm
343775 - xpdf xpdf Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and earlier, as used in products such as (1) Poppler, (2) teTeX, (3) KD… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3193 2018-10-20 00:35 2005-12-7 Show GitHub Exploit DB Packet Storm
343776 - paros paros Paros 3.2.5 uses a default password for the "sa" account in the underlying HSQLDB database and does not restrict access to the local machine, which allows remote attackers to gain privileges. NVD-CWE-Other
CVE-2005-3280 2018-10-20 00:35 2005-10-23 Show GitHub Exploit DB Packet Storm
343777 - libungif libungif libungif library before 4.1.0 allows attackers to corrupt memory and possibly execute arbitrary code via a crafted GIF file that leads to an out-of-bounds write. NVD-CWE-Other
CVE-2005-3350 2018-10-20 00:35 2005-11-4 Show GitHub Exploit DB Packet Storm
343778 - andries_brouwer util-linux umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages such as loop-aes-utils, allows local users with unmount permissions to gain privileges via the -r (remount) option, whi… NVD-CWE-Other
CVE-2005-2876 2018-10-20 00:34 2005-09-14 Show GitHub Exploit DB Packet Storm
343779 - sgi irix runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin. NVD-CWE-Other
CVE-2005-2925 2018-10-20 00:34 2005-10-12 Show GitHub Exploit DB Packet Storm
343780 - university_of_kansas lynx Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-2929 2018-10-20 00:34 2005-11-18 Show GitHub Exploit DB Packet Storm