Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
230031 3.5 注意 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-2957 2013-05-29 16:37 2013-05-13 Show GitHub Exploit DB Packet Storm
230032 7.5 危険 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-2956 2013-05-29 16:36 2013-05-13 Show GitHub Exploit DB Packet Storm
230033 3.5 注意 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-2955 2013-05-29 16:35 2013-05-13 Show GitHub Exploit DB Packet Storm
230034 5 警告 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるアクセス権を取得される脆弱性 CWE-287
不適切な認証
CVE-2013-2954 2013-05-29 16:35 2013-05-13 Show GitHub Exploit DB Packet Storm
230035 4.3 警告 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2013-2953 2013-05-29 16:30 2013-05-13 Show GitHub Exploit DB Packet Storm
230036 5.8 警告 シスコシステムズ - iOS 上で稼働する Cisco WebEx における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認
CVE-2012-6399 2013-05-29 16:30 2013-05-27 Show GitHub Exploit DB Packet Storm
230037 5 警告 Moodle - Moodle の lib/formslib.php におけるフォームデータのフィルタリングを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2013-2083 2013-05-29 14:34 2013-05-21 Show GitHub Exploit DB Packet Storm
230038 5 警告 Moodle - Moodle における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2082 2013-05-29 14:33 2013-05-21 Show GitHub Exploit DB Packet Storm
230039 4.3 警告 Moodle - Moodle における重要なサイト情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2081 2013-05-29 14:33 2013-05-21 Show GitHub Exploit DB Packet Storm
230040 4 警告 Moodle - Moodle の core_grade コンポーネントにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2080 2013-05-29 14:30 2013-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294391 - wireshark wireshark The nfs_name_snoop_add_name function in epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 does not validate a certain length value, which all… CWE-20
 Improper Input Validation 
CVE-2014-2281 2024-11-21 11:05 2014-03-11 Show GitHub Exploit DB Packet Storm
294392 - opendocman opendocman SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers to execute arbitrary SQL commands via the add_value parameter. CWE-89
SQL Injection
CVE-2014-1945 2024-11-21 11:05 2014-03-9 Show GitHub Exploit DB Packet Storm
294393 - ilch ilch_cms Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry. CWE-79
Cross-site Scripting
CVE-2014-1944 2024-11-21 11:05 2014-03-9 Show GitHub Exploit DB Packet Storm
294394 - gnu gnutls lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging … CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1959 2024-11-21 11:05 2014-03-7 Show GitHub Exploit DB Packet Storm
294395 - videowhisper live_streaming_integration_plugin Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to (1) read arbitrary files via a .. (dot dot) in… CWE-22
Path Traversal
CVE-2014-1907 2024-11-21 11:05 2014-03-7 Show GitHub Exploit DB Packet Storm
294396 - videowhisper live_streaming_integration_plugin Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via… CWE-79
Cross-site Scripting
CVE-2014-1906 2024-11-21 11:05 2014-03-7 Show GitHub Exploit DB Packet Storm
294397 - foscam fi8919w_firmware
fi8919w
The Foscam FI8910W camera with firmware before 11.37.2.55 allows remote attackers to obtain sensitive video and image data via a blank username and password. CWE-287
Improper Authentication
CVE-2014-1911 2024-11-21 11:05 2014-03-6 Show GitHub Exploit DB Packet Storm
294398 - cmsmadesimple cms_made_simple SQL injection vulnerability in the News module in CMS Made Simple (CMSMS) before 1.11.10 allows remote authenticated users with the "Modify News" permission to execute arbitrary SQL commands via the … CWE-89
SQL Injection
CVE-2014-2245 2024-11-21 11:05 2014-03-6 Show GitHub Exploit DB Packet Storm
294399 - mantisbt mantisbt SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via… CWE-89
SQL Injection
CVE-2014-2238 2024-11-21 11:05 2014-03-6 Show GitHub Exploit DB Packet Storm
294400 - askbot askbot Cross-site scripting (XSS) vulnerability in Askbot before 0.7.49 allows remote attackers to inject arbitrary web script or HTML via vectors related to the question search form. CWE-79
Cross-site Scripting
CVE-2014-2235 2024-11-21 11:05 2014-03-6 Show GitHub Exploit DB Packet Storm