Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231151 4.3 警告 sonicbb - SonicBB における重要な情報を取得される脆弱性 - CVE-2007-1901 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
231152 6.5 警告 WordPress.org - WordPress の xmlrpc における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1897 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
231153 5.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1896 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
231154 6.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1895 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
231155 4.3 警告 WordPress.org - WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1894 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231156 4.9 警告 WordPress.org - WordPress の xmlrpc におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1893 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
231157 7.8 危険 VMware - VMware Workstation におけるゲスト OS がサービス運用妨害 (DoS) 状態となる脆弱性 - CVE-2007-1877 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
231158 7.2 危険 VMware - VMware Workstation における "仮想マシンに登録されたコンテキストが破損" する脆弱性 - CVE-2007-1876 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
231159 4.3 警告 toenda software development - toendaCMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1872 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
231160 7.5 危険 webasyst llc - Shop-Script FREE の smarty/smarty_class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1855 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291951 - cisco prime_infrastructure Cross-site request forgery (CSRF) vulnerability in the web interface in Cisco Prime Infrastructure allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCue84676. CWE-352
 Origin Validation Error 		CVE-2013-1153 2024-11-21 10:49 2013-03-8 Show GitHub Exploit DB Packet Storm
291952 - oracle
sun 		jre
jdk 		The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbit… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1493 2024-11-21 10:49 2013-03-6 Show GitHub Exploit DB Packet Storm
291953 - mit
opensuse 		kerberos_5
opensuse 		The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1… CWE-476
 NULL Pointer Dereference 		CVE-2013-1415 2024-11-21 10:49 2013-03-5 Show GitHub Exploit DB Packet Storm
291954 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity,… NVD-CWE-noinfo
CVE-2013-1487 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291955 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to … NVD-CWE-noinfo
CVE-2013-1486 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291956 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Librarie… NVD-CWE-noinfo
CVE-2013-1485 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291957 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via … NVD-CWE-noinfo
CVE-2013-1484 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
291958 - vmware vcenter_server
virtualcenter
vsphere_client
vi-client
esxi
esx 		VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3… CWE-287
Improper Authentication 		CVE-2013-1405 2024-11-21 10:49 2013-02-15 Show GitHub Exploit DB Packet Storm
291959 - digitiliti digilibe DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_… CWE-200
Information Exposure 		CVE-2013-1402 2024-11-21 10:49 2013-02-15 Show GitHub Exploit DB Packet Storm
291960 - microsoft windows_xp Object Linking and Embedding (OLE) Automation in Microsoft Windows XP SP3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted RTF document, aka "O… CWE-399
 Resource Management Errors 		CVE-2013-1313 2024-11-21 10:49 2013-02-13 Show GitHub Exploit DB Packet Storm