Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230891 4.3 警告 rainworx - rwAuction Pro の search.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3540 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230892 7.5 危険 qt-cute - QuickTicket およびの QuickTalk フォーラムにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3539 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230893 7.5 危険 qt-cute - QuickTalk guestbook の qtg_msg_view.php における SQL インジェクションの脆弱性 - CVE-2007-3538 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230894 7.2 危険 php director - PHPDirector における権限を取得される脆弱性 - CVE-2007-3530 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230895 7.8 危険 php director - PHPDirector の videos.php における重要な情報を取得される脆弱性 - CVE-2007-3529 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230896 7.5 危険 Vastal I-Tech & Co. - Buddy Zone における SQL インジェクションの脆弱性 - CVE-2007-3526 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230897 7.8 危険 ripe website manager - Ripe Website Manager における設定情報を取得される脆弱性 - CVE-2007-3525 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230898 6.8 警告 ripe website manager - Ripe Website Manager における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3524 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230899 6.8 警告 sphpell - sPHPell における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3522 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
230900 7.5 危険 wesmo - phpEventCalendar の eventdisplay.php における SQL インジェクションの脆弱性 - CVE-2007-3519 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291951 - cisco prime_infrastructure Cross-site request forgery (CSRF) vulnerability in the web interface in Cisco Prime Infrastructure allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCue84676. CWE-352
 Origin Validation Error 		CVE-2013-1153 2024-11-21 10:49 2013-03-8 Show GitHub Exploit DB Packet Storm
291952 - oracle
sun 		jre
jdk 		The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbit… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1493 2024-11-21 10:49 2013-03-6 Show GitHub Exploit DB Packet Storm
291953 - mit
opensuse 		kerberos_5
opensuse 		The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1… CWE-476
 NULL Pointer Dereference 		CVE-2013-1415 2024-11-21 10:49 2013-03-5 Show GitHub Exploit DB Packet Storm
291954 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity,… NVD-CWE-noinfo
CVE-2013-1487 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291955 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to … NVD-CWE-noinfo
CVE-2013-1486 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291956 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Librarie… NVD-CWE-noinfo
CVE-2013-1485 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291957 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via … NVD-CWE-noinfo
CVE-2013-1484 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291958 - vmware vcenter_server
virtualcenter
vsphere_client
vi-client
esxi
esx 		VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3… CWE-287
Improper Authentication 		CVE-2013-1405 2024-11-21 10:49 2013-02-15 Show GitHub Exploit DB Packet Storm
291959 - digitiliti digilibe DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_… CWE-200
Information Exposure 		CVE-2013-1402 2024-11-21 10:49 2013-02-15 Show GitHub Exploit DB Packet Storm
291960 - microsoft windows_xp Object Linking and Embedding (OLE) Automation in Microsoft Windows XP SP3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted RTF document, aka "O… CWE-399
 Resource Management Errors 		CVE-2013-1313 2024-11-21 10:49 2013-02-13 Show GitHub Exploit DB Packet Storm