Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
229141 9.3 危険 19th Parallel - Sagelight における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2013-3480 2013-08-13 15:58 2013-07-23 Show GitHub Exploit DB Packet Storm
229142 4 警告 IBM - 複数の IBM サーバ製品上で稼働する Integrated Management Module における重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2013-4038 2013-08-13 15:25 2013-08-1 Show GitHub Exploit DB Packet Storm
229143 4.3 警告 IBM - 複数の IBM サーバ製品上で稼働する Integrated Management Module におけるアクセス権を取得される脆弱性 CWE-noinfo
情報不足
CVE-2013-4037 2013-08-13 15:24 2013-08-1 Show GitHub Exploit DB Packet Storm
229144 10 危険 IBM - 複数の IBM サーバ製品上で稼働する Integrated Management Module における電源アクションを実行される脆弱性 CWE-255
証明書・パスワード管理
CVE-2013-4031 2013-08-13 15:23 2013-08-1 Show GitHub Exploit DB Packet Storm
229145 4.3 警告 Mike Jolley - WordPress 用 Download Monitor プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-5098 2013-08-13 14:04 2013-06-5 Show GitHub Exploit DB Packet Storm
229146 4.3 警告 Mike Jolley - WordPress 用 Download Monitor プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-3262 2013-08-13 14:04 2013-06-5 Show GitHub Exploit DB Packet Storm
229147 4.3 警告 Life in the Grid - WordPress 用 Duplicator プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-4625 2013-08-13 13:43 2013-07-21 Show GitHub Exploit DB Packet Storm
229148 6.8 警告 Xhanch Studio - WordPress 用 Xhanch - My Twitter プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-3253 2013-08-13 13:35 2013-08-2 Show GitHub Exploit DB Packet Storm
229149 5 警告 Jason A. Donenfeld
Lars Hjemli
- cgit の ui-summary.c の cgit_parse_readme 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-2117 2013-08-13 12:29 2013-05-27 Show GitHub Exploit DB Packet Storm
229150 5 警告 シスコシステムズ - Cisco Finesse の Web インタフェースにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-3457 2013-08-13 11:08 2013-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293551 - birebin birebin.com_app The Birebin.com application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted c… CWE-310
Cryptographic Issues
CVE-2014-2993 2024-11-21 11:07 2014-04-26 Show GitHub Exploit DB Packet Storm
293552 - misli misli.com_app The Misli.com application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted cer… CWE-310
Cryptographic Issues
CVE-2014-2992 2024-11-21 11:07 2014-04-26 Show GitHub Exploit DB Packet Storm
293553 - xcloner xcloner XCloner Standalone 3.5 and earlier, when enable_db_backup and sql_mem are enabled, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the dbbackup_co… CWE-94
Code Injection
CVE-2014-2996 2024-11-21 11:07 2014-04-26 Show GitHub Exploit DB Packet Storm
293554 - siemens simatic_s7_cpu_1200_firmware
simatic_s7_cpu-1211c
simatic_s7_cpu_1212c
simatic_s7_cpu_1214c
simatic_s7_cpu_1215c
simatic_s7_cpu_1217c
CRLF injection vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary HTTP headers via unspecified vectors. CWE-94
Code Injection
CVE-2014-2909 2024-11-21 11:07 2014-04-25 Show GitHub Exploit DB Packet Storm
293555 - siemens simatic_s7_cpu_1200_firmware
simatic_s7_cpu-1211c
simatic_s7_cpu_1212c
simatic_s7_cpu_1214c
simatic_s7_cpu_1215c
simatic_s7_cpu_1217c
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified… CWE-79
Cross-site Scripting
CVE-2014-2908 2024-11-21 11:07 2014-04-25 Show GitHub Exploit DB Packet Storm
293556 - xen xen Xen 4.4.x, when running on ARM systems, does not properly restrict access to hardware features, which allows local guest users to cause a denial of service (host or guest crash) via unspecified vecto… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-2915 2024-11-21 11:07 2014-04-24 Show GitHub Exploit DB Packet Storm
293557 - wireshark wireshark The srtp_add_address function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation data, which allows remote attackers to … NVD-CWE-noinfo
CVE-2014-2907 2024-11-21 11:07 2014-04-24 Show GitHub Exploit DB Packet Storm
293558 - drupal
debian
drupal
debian_linux
Drupal 6.x before 6.31 and 7.x before 7.27 does not properly isolate the cached data of different anonymous users, which allows remote anonymous users to obtain sensitive interim form input informati… CWE-200
Information Exposure
CVE-2014-2983 2024-11-21 11:07 2014-04-24 Show GitHub Exploit DB Packet Storm
293559 - sixnet sixview_manager Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 18081. CWE-22
Path Traversal
CVE-2014-2976 2024-11-21 11:07 2014-04-24 Show GitHub Exploit DB Packet Storm
293560 - qemu qemu Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a… CWE-189
Numeric Errors
CVE-2014-2894 2024-11-21 11:07 2014-04-24 Show GitHub Exploit DB Packet Storm