Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228481 2.1 注意 Katello Project - Katello の katello-configure における Candlepin CA 証明書を改ざんされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6116 2013-04-5 18:51 2013-03-1 Show GitHub Exploit DB Packet Storm
228482 4 警告 Opera Software ASA - Opera における識別攻撃およびプレーンテキストリカバリ攻撃を誘発される脆弱性 CWE-310
暗号の問題 		CVE-2013-1618 2013-04-5 17:23 2013-01-30 Show GitHub Exploit DB Packet Storm
228483 9.3 危険 Invensys - Invensys Wonderware Win-XML Exporter における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4710 2013-04-5 15:57 2013-03-21 Show GitHub Exploit DB Packet Storm
228484 4 警告 Schneider Electric - Schneider Electric Modicon M340 の PLC モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2761 2013-04-5 15:56 2013-01-23 Show GitHub Exploit DB Packet Storm
228485 8.5 危険 Schneider Electric - 複数の Schneider Electric Modicon 製品上の FactoryCast サービスにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0664 2013-04-5 15:55 2013-01-23 Show GitHub Exploit DB Packet Storm
228486 6.8 警告 Schneider Electric - 複数の Schneider Electric Modicon 製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-0663 2013-04-5 15:55 2013-01-23 Show GitHub Exploit DB Packet Storm
228487 5.8 警告 マイクロソフト - Microsoft Windows モダン メールにおける他の Web サイトのリンクになりすまされる脆弱性 CWE-noinfo
情報不足 		CVE-2013-1299 2013-04-5 14:58 2013-03-27 Show GitHub Exploit DB Packet Storm
228488 7.8 危険 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (メモリ消費またはデバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1145 2013-04-5 14:55 2013-01-18 Show GitHub Exploit DB Packet Storm
228489 7.8 危険 シスコシステムズ - Cisco IOS の IKEv1 の実装におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1144 2013-04-5 14:51 2013-03-27 Show GitHub Exploit DB Packet Storm
228490 10 危険 PostgreSQL.org - PostgreSQL における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1903 2013-04-5 14:26 2013-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275591 7.8 HIGH
Local 		systemd_project systemd A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers to escalate their privileges to root. Th… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10156 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
275592 5.9 MEDIUM
Network 		hiteksoftware automize Information Disclosure can occur in sshProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for SSH/SFTP… CWE-326
Inadequate Encryption Strength 		CVE-2016-10104 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
275593 8.1 HIGH
Network 		hiteksoftware automize Information Disclosure can occur in encryptionProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for G… CWE-255
CWE-326
Credentials Management
Inadequate Encryption Strength 		CVE-2016-10103 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
275594 8.1 HIGH
Network 		hiteksoftware automize hitek.jar in Hitek Software's Automize uses weak encryption when encrypting SSH/SFTP and Encryption profile passwords. This allows an attacker to retrieve the encrypted passwords from sshProfiles.jsd… CWE-326
Inadequate Encryption Strength 		CVE-2016-10102 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
275595 8.1 HIGH
Network 		hiteksoftware automize Information Disclosure can occur in Hitek Software's Automize 10.x and 11.x passManager.jsd. Users have the Read attribute, which allows an attacker to recover the encrypted password to access the Pa… CWE-255
CWE-326
Credentials Management
Inadequate Encryption Strength 		CVE-2016-10101 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
275596 7.5 HIGH
Network 		tiki tikiwiki_cms\/groupware A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a targeted system via a crafted pathname in a banner URL field. CWE-200
Information Exposure 		CVE-2016-10143 2024-11-21 11:43 2017-01-20 Show GitHub Exploit DB Packet Storm
275597 7.8 HIGH
Local 		tqdm_project tqdm The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory. CWE-17
Code 		CVE-2016-10075 2024-11-21 11:43 2017-01-20 Show GitHub Exploit DB Packet Storm
275598 8.1 HIGH
Network 		ca service_desk_management
service_desk_manager 		RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10086 2024-11-21 11:43 2017-01-19 Show GitHub Exploit DB Packet Storm
275599 4.3 MEDIUM
Network 		wordpress wordpress The wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 makes a get_plugin_data call before checking the update_plugins capability, which allows remote authen… CWE-254
CWE-284
 7PK - Security Features
Improper Access Control 		CVE-2016-10148 2024-11-21 11:43 2017-01-19 Show GitHub Exploit DB Packet Storm
275600 5.5 MEDIUM
Local 		linux linux_kernel crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service (NULL pointer dereference and system crash) by using an AF_ALG socket with an incompatible algorithm… CWE-476
 NULL Pointer Dereference 		CVE-2016-10147 2024-11-21 11:43 2017-01-19 Show GitHub Exploit DB Packet Storm