Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228481	6.8	警告	Novell plataformatec	-	Ruby 用 Devise gem における不正な結果が返される脆弱性	CWE-399 リソース管理の問題	CVE-2013-0233	2013-04-30 17:48	2013-01-28	Show	GitHub Exploit DB Packet Storm

228482	7.5	危険	Grape Erik Michaels-Ober	-	Grape などの製品で使用される Ruby 用 multi_xml gem におけるオブジェクトインジェクション攻撃を誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0175	2013-04-30 17:43	2013-01-10	Show	GitHub Exploit DB Packet Storm

228483	5	警告	Ruby-lang.org	-	Ruby における safe-level の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4466	2013-04-30 17:29	2012-10-3	Show	GitHub Exploit DB Packet Storm

228484	5	警告	Ruby-lang.org	-	Ruby における safe-level の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4464	2013-04-30 17:25	2012-10-3	Show	GitHub Exploit DB Packet Storm

228485	5.4	警告	シトリックス・システムズ	-	NetScaler Access Gateway Enterprise Edition に脆弱性	CWE-noinfo 情報不足	CVE-2013-2767	2013-04-30 12:45	2013-04-26	Show	GitHub Exploit DB Packet Storm

228486	9.3	危険	シスコシステムズ	-	Cisco MDS 9000 および Nexus 5000 デバイス用 Cisco Device Manager における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1192	2013-04-26 16:56	2013-04-24	Show	GitHub Exploit DB Packet Storm

228487	7.5	危険	シスコシステムズ	-	Cisco UCS における KVM 認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-1186	2013-04-26 16:54	2013-04-24	Show	GitHub Exploit DB Packet Storm

228488	9.3	危険	シスコシステムズ	-	Cisco UCS の Manager コンポーネントの Web インタフェースにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-1185	2013-04-26 16:53	2013-04-24	Show	GitHub Exploit DB Packet Storm

228489	7.8	危険	シスコシステムズ	-	Cisco UCS の Manager コンポーネントの XML API 管理サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1184	2013-04-26 16:52	2013-04-24	Show	GitHub Exploit DB Packet Storm

228490	10	危険	シスコシステムズ	-	Cisco UCS の Manager コンポーネントの IPMI 機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1183	2013-04-26 16:51	2013-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275941	7.8	HIGH Local	freetype debian	freetype debian_linux	The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buf…	CWE-125 Out-of-bounds Read	CVE-2016-10244	2024-11-21 11:43	2017-03-6	Show	GitHub Exploit DB Packet Storm

275942	5.5	MEDIUM Local	imagemagick opensuse	imagemagick leap	Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via…	CWE-125 Out-of-bounds Read	CVE-2016-10070	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275943	5.5	MEDIUM Local	imagemagick	imagemagick	Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a crafted file.	CWE-120 Classic Buffer Overflow	CVE-2016-10066	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275944	7.8	HIGH Local	imagemagick opensuse	imagemagick leap	The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.	CWE-284 Improper Access Control	CVE-2016-10065	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275945	6.5	MEDIUM Network	imagemagick	imagemagick	The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) …	CWE-252 Unchecked Return Value	CVE-2016-10061	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275946	8.8	HIGH Network	zoneminder	zoneminder	Cross-site request forgery (CSRF) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to hijack the authentication of users for requests that change passwords and possibly have unspe…	CWE-352 Origin Validation Error	CVE-2016-10206	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275947	7.3	HIGH Network	zoneminder	zoneminder	Session fixation vulnerability in Zoneminder 1.30 and earlier allows remote attackers to hijack web sessions via the ZMSESSID cookie.	CWE-384 Session Fixation	CVE-2016-10205	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275948	9.8	CRITICAL Network	zoneminder	zoneminder	SQL injection vulnerability in Zoneminder 1.30 and earlier allows remote attackers to execute arbitrary SQL commands via the limit parameter in a log query request to index.php.	CWE-89 SQL Injection	CVE-2016-10204	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275949	6.1	MEDIUM Network	zoneminder	zoneminder	Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the name when creating a new monitor.	CWE-79 Cross-site Scripting	CVE-2016-10203	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

275950	6.1	MEDIUM Network	zoneminder	zoneminder	Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the path info to index.php.	CWE-79 Cross-site Scripting	CVE-2016-10202	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm