Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228711 4 警告 シーメンス - Siemens WinCC におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-0671 2013-03-25 18:54 2013-03-15 Show GitHub Exploit DB Packet Storm
228712 4.3 警告 シーメンス - Siemens WinCC の HMI Web アプリケーションにおける CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0670 2013-03-25 18:52 2013-03-15 Show GitHub Exploit DB Packet Storm
228713 4 警告 シーメンス - Siemens WinCC の HMI Web アプリケーションにおけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0669 2013-03-25 18:52 2013-03-15 Show GitHub Exploit DB Packet Storm
228714 4.3 警告 シーメンス - Siemens WinCC の HMI Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0668 2013-03-25 18:49 2013-03-15 Show GitHub Exploit DB Packet Storm
228715 5 警告 MailUp - WordPress 用 MailUp プラグインにおけるプラグインの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2640 2013-03-25 16:43 2013-03-15 Show GitHub Exploit DB Packet Storm
228716 5 警告 MailUp - WordPress 用 MailUp プラグインにおけるプラグインの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0731 2013-03-25 16:41 2013-03-15 Show GitHub Exploit DB Packet Storm
228717 5 警告 Piwik - Piwik における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2633 2013-03-25 16:35 2013-03-8 Show GitHub Exploit DB Packet Storm
228718 4.3 警告 Piwik - Piwik におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1844 2013-03-25 16:34 2013-03-8 Show GitHub Exploit DB Packet Storm
228719 7.2 危険 Canonical - Ubuntu で使用される pam-xdg-support における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1052 2013-03-25 16:21 2013-03-18 Show GitHub Exploit DB Packet Storm
228720 4.3 警告 Debian
Canonical		 - apt におけるパッケージを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1051 2013-03-25 16:20 2013-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274781 6.5 MEDIUM
Network 		cybozu office customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489. CWE-20
 Improper Input Validation  		CVE-2016-1153 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
274782 5.4 MEDIUM
Network 		cybozu office Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to bypass intended access restrictions, and read or write to plan data, via unspecified vectors, a different vulnerability than CV… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1152 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
274783 8.8 HIGH
Network 		cybozu office Multiple cross-site request forgery (CSRF) vulnerabilities in Cybozu Office 9.9.0 through 10.3.0 allow remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error 		CVE-2016-1151 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
274784 6.1 MEDIUM
Network 		cybozu office Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C… CWE-79
Cross-site Scripting 		CVE-2016-1150 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
274785 6.1 MEDIUM
Network 		cybozu office Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C… CWE-79
Cross-site Scripting 		CVE-2016-1149 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
274786 7.5 HIGH
Network 		nec expresscluster_x Directory traversal vulnerability in WebManager in NEC EXPRESSCLUSTER X through 3.3 11.31 on Windows and through 3.3 3.3.1-1 on Linux and Solaris allows remote attackers to read arbitrary files via u… CWE-22
Path Traversal 		CVE-2016-1145 2024-11-21 11:45 2016-01-31 Show GitHub Exploit DB Packet Storm
274787 5.4 MEDIUM
Network 		websquare job-cube Cross-site scripting (XSS) vulnerability in JOB-CUBE -JOB WEB SYSTEM before 1.2.2 and -JOB WEB SYSTEM High Income 1.0.6 and earlier allows remote authenticated users to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2016-1144 2024-11-21 11:45 2016-01-31 Show GitHub Exploit DB Packet Storm
274788 6.1 MEDIUM
Network 		vine_mv_project vine_mv Cross-site scripting (XSS) vulnerability in main.rb in Vine MV before 2015-11-08 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2016-1143 2024-11-21 11:45 2016-01-31 Show GitHub Exploit DB Packet Storm
274789 4.7 MEDIUM
Network 		kddi home_spot_cube_firmware KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified vectors. CWE-78
OS Command  		CVE-2016-1141 2024-11-21 11:45 2016-01-31 Show GitHub Exploit DB Packet Storm
274790 6.1 MEDIUM
Network 		kddi home_spot_cube_firmware KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors. CWE-254
 7PK - Security Features 		CVE-2016-1140 2024-11-21 11:45 2016-01-31 Show GitHub Exploit DB Packet Storm