Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
229181 9.3 危険 ABB
日本ナショナルインスツルメンツ
- 複数の National Instruments 製品および ABB DataManager などの製品で使用される National Instruments cwui.ocx における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-5021 2013-08-8 15:00 2013-03-22 Show GitHub Exploit DB Packet Storm
229182 2.6 注意 (複数のベンダ) - HTTPS レスポンスから暗号化されたデータの一部を推測可能な脆弱性 (BREACH) - CVE-2013-3587 2013-08-8 14:54 2013-08-2 Show GitHub Exploit DB Packet Storm
229183 4.9 警告 IBM - IBM InfoSphere BigInsights におけるフィッシング攻撃を実行される脆弱性 CWE-20
不適切な入力確認
CVE-2013-3996 2013-08-7 14:26 2013-08-2 Show GitHub Exploit DB Packet Storm
229184 3.5 注意 IBM - IBM InfoSphere BigInsights におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-3995 2013-08-7 14:26 2013-08-2 Show GitHub Exploit DB Packet Storm
229185 6 警告 IBM - IBM InfoSphere BigInsights におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-3992 2013-08-7 14:25 2013-08-2 Show GitHub Exploit DB Packet Storm
229186 6.8 警告 Python Software Foundation - setuptools の easy_install における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2013-1633 2013-08-7 14:20 2013-08-6 Show GitHub Exploit DB Packet Storm
229187 6.8 警告 Guillaume Gauvrit - pyshop における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2013-1630 2013-08-7 14:19 2013-02-6 Show GitHub Exploit DB Packet Storm
229188 6.8 警告 Python Software Foundation - pip における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2013-1629 2013-08-7 14:17 2013-03-7 Show GitHub Exploit DB Packet Storm
229189 7.8 危険 ヒューレット・パッカード - 複数の HP LaserJet Pro のファームウェアにおけるデータを変更される脆弱性 CWE-noinfo
情報不足
CVE-2013-4807 2013-08-6 17:43 2013-07-31 Show GitHub Exploit DB Packet Storm
229190 6.6 警告 シマンテック - Symantec Workspace Virtualization における権限を取得される脆弱性 CWE-119
バッファエラー
CVE-2013-4679 2013-08-6 16:42 2013-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293531 - fishshell fish fish (aka fish-shell) 1.16.0 before 2.1.1 does not properly check the credentials, which allows local users to gain privileges via the universal variable socket, related to /tmp/fishd.socket.user per… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-2905 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293532 - unitrends enterprise_backup recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to bypass authentication by setting the auth parameter to a certain string. CWE-287
Improper Authentication
CVE-2014-3139 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293533 - xerox docushare SQL injection vulnerability in Xerox DocuShare before 6.53 Patch 6 Hotfix 2, 6.6.1 Update 1 before Hotfix 24, and 6.6.1 Update 2 before Hotfix 3 allows remote authenticated users to execute arbitrary… CWE-89
SQL Injection
CVE-2014-3138 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293534 - citrix netscaler_access_gateway_firmware
netscaler_application_delivery_controller_firmware
netscaler_access_gateway
netscaler_application_delivery_controller
Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and … NVD-CWE-noinfo
CVE-2014-2882 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293535 - citrix netscaler_access_gateway_firmware
netscaler_application_delivery_controller_firmware
netscaler_application_delivery_controller
netscaler_access_gateway
Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9… NVD-CWE-noinfo
CVE-2014-2881 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293536 - vbulletin vbulletin Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 5.1.1 Alpha 9 allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO to privatemessage/new/, (2) the fold… CWE-79
Cross-site Scripting
CVE-2014-3135 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293537 - sap businessobjects Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2014-3134 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293538 - sap netweaver_java_application_server SAP Netweaver Java Application Server does not properly restrict access, which allows remote attackers to obtain the list of SAP systems registered on an SLD via an unspecified webdynpro, related to … CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3133 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293539 - sap background_processing SAP Background Processing does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3132 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293540 - sap profile_maintenance SAP Profile Maintenance does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7.1. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3131 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm