Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231221	5	警告	shttp	-	Windows 上で稼動している shttpd におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6404	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

231222	6.8	警告	Winamp	-	Nullsoft Winamp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6403	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

231223	5	警告	poldoc	-	PolDoc CMS の download_file.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6400	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

231224	7.5	危険	sh-news	-	SH-News の patch/comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6391	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

231225	4.3	警告	s9y	-	Serendipity 用の mycalendar プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-6390	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

231226	7.2	危険	トレンドマイクロ	-	Trend Micro AntiVirus などの PccScan.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6386	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

231227	6.8	警告	robocode	-	Robocode の Event Dispatch Thread における任意の Java コードを実行される脆弱性	CWE-DesignError	CVE-2007-6382	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

231228	6.5	警告	TYPO3 Association	-	TYPO3 用の indexed_search システムエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6381	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

231229	5	警告	WordPress.org	-	WordPress 用の PictPress プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6369	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

231230	4.3	警告	sinecms	-	SineCMS の guestbook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6367	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291271	-	opensuse google debian	opensuse chrome debian_linux	Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the x-webkit-sp…	CWE-399 Resource Management Errors	CVE-2013-6621	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

291272	-	apache	tomcat	Cross-site request forgery (CSRF) vulnerability in the Manager application in Apache Tomcat 5.5.25 and earlier allows remote attackers to hijack the authentication of administrators for requests that…	CWE-352 Origin Validation Error	CVE-2013-6357	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

291273	-	silverstripe	silverstripe	security/MemberLoginForm.php in SilverStripe 3.0.3 supports credentials in a GET request, which allows remote or local attackers to obtain sensitive information by reading web-server access logs, web…	CWE-200 Information Exposure	CVE-2013-6789	2024-11-21 10:59	2013-11-13	Show	GitHub Exploit DB Packet Storm

291274	-	linux	linux_kernel	The uio_mmap_physical function in drivers/uio/uio.c in the Linux kernel before 3.12 does not validate the size of a memory block, which allows local users to cause a denial of service (memory corrupt…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6763	2024-11-21 10:59	2013-11-12	Show	GitHub Exploit DB Packet Storm

291275	-	juniper	junos	jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary …	CWE-20 Improper Input Validation	CVE-2013-6618	2024-11-21 10:59	2013-11-6	Show	GitHub Exploit DB Packet Storm

291276	-	saltstack	salt	The salt master in Salt (aka SaltStack) 0.11.0 through 0.17.0 does not properly drop group privileges, which makes it easier for remote attackers to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6617	2024-11-21 10:59	2013-11-6	Show	GitHub Exploit DB Packet Storm

291277	-	vmware	hyperic_hq	The Groovy script console in VMware Hyperic HQ 4.6.6 allows remote authenticated administrators to execute arbitrary code via a Runtime.getRuntime().exec call.	CWE-94 Code Injection	CVE-2013-6366	2024-11-21 10:59	2013-11-5	Show	GitHub Exploit DB Packet Storm

291278	-	wireshark	wireshark	epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to …	CWE-20 Improper Input Validation	CVE-2013-6340	2024-11-21 10:59	2013-11-5	Show	GitHub Exploit DB Packet Storm

291279	-	wireshark	wireshark	The dissect_openwire_type function in epan/dissectors/packet-openwire.c in the OpenWire dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial o…	CWE-20 Improper Input Validation	CVE-2013-6339	2024-11-21 10:59	2013-11-5	Show	GitHub Exploit DB Packet Storm

291280	-	wireshark	wireshark	The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly initialize a data structure, which all…	CWE-20 Improper Input Validation	CVE-2013-6338	2024-11-21 10:59	2013-11-5	Show	GitHub Exploit DB Packet Storm