Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
231471 2.6 注意 Olive Toast Software Ltd. - Documents Pro (旧 Files HD) におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-5184 2013-01-18 12:02 2013-01-18 Show GitHub Exploit DB Packet Storm
231472 4.3 警告 アドビシステムズ - Adobe ColdFusion における制限されたディレクトリにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0629 2013-01-17 18:11 2013-01-4 Show GitHub Exploit DB Packet Storm
231473 5 警告 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2013-0631 2013-01-17 18:09 2013-01-4 Show GitHub Exploit DB Packet Storm
231474 10 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-1530 2013-01-17 17:14 2013-01-8 Show GitHub Exploit DB Packet Storm
231475 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2012-5078 2013-01-17 16:53 2012-10-16 Show GitHub Exploit DB Packet Storm
231476 10 危険 サン・マイクロシステムズ - Oracle Java SE の Java Runtime Environment におけるライブラリの処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-5088 2013-01-17 16:50 2012-10-16 Show GitHub Exploit DB Packet Storm
231477 6.4 警告 サン・マイクロシステムズ - Oracle Java SE の Java Runtime Environment における JAX-WS の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-5074 2013-01-17 16:46 2012-10-16 Show GitHub Exploit DB Packet Storm
231478 5 警告 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2012-5082 2013-01-17 16:45 2012-10-16 Show GitHub Exploit DB Packet Storm
231479 7.6 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2012-5080 2013-01-17 16:44 2012-10-16 Show GitHub Exploit DB Packet Storm
231480 6.4 警告 Google - Google Chrome におけるファイルアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0829 2013-01-17 14:32 2013-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297421 - ibm algo_one IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, does not encrypt… CWE-310
Cryptographic Issues
CVE-2013-5468 2024-11-21 10:57 2014-03-5 Show GitHub Exploit DB Packet Storm
297422 - irfanview irfanview Heap-based buffer overflow in IrfanView before 4.37 allows remote attackers to execute arbitrary code via the LZW code stream in a GIF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-5351 2024-11-21 10:57 2014-02-15 Show GitHub Exploit DB Packet Storm
297423 - ibm platform_symphony An unspecified servlet in IBM Platform Symphony Developer Edition (DE) 5.2 and 6.1.x through 6.1.1 has hardcoded credentials, which allows remote attackers to bypass authentication and obtain "local … CWE-255
Credentials Management
CVE-2013-5400 2024-11-21 10:57 2014-02-14 Show GitHub Exploit DB Packet Storm
297424 - ibm infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management_collaboration_server
Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1 FP8 through 11.0 and InfoSphere Master Data Management Server for Pro… CWE-352
 Origin Validation Error
CVE-2013-5427 2024-11-21 10:57 2014-02-4 Show GitHub Exploit DB Packet Storm
297425 - mcafee vulnerability_manager Cross-site scripting (XSS) vulnerability in index.exp in McAfee Vulnerability Manager 7.5 allows remote attackers to inject arbitrary web script or HTML via the cert_cn cookie parameter. CWE-79
Cross-site Scripting
CVE-2013-5094 2024-11-21 10:57 2014-01-29 Show GitHub Exploit DB Packet Storm
297426 - secunia csi_agent Secunia CSI Agent 6.0.0.15017 and earlier, 6.0.1.1007 and earlier, and 7.0.0.21 and earlier, when running on Red Hat Linux, uses world-readable and world-writable permissions for /etc/csia_config.xml… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5364 2024-11-21 10:57 2014-01-26 Show GitHub Exploit DB Packet Storm
297427 - tejimaya openpne The "Remember me" feature in the opSecurityUser::getRememberLoginCookie function in lib/user/opSecurityUser.class.php in OpenPNE 3.6.13 before 3.6.13.1 and 3.8.9 before 3.8.9.1 does not properly vali… CWE-20
 Improper Input Validation 
CVE-2013-5350 2024-11-21 10:57 2014-01-25 Show GitHub Exploit DB Packet Storm
297428 - thecus n8800_nas_server_firmware
n8800_nas_server
The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network. CWE-255
Credentials Management
CVE-2013-5669 2024-11-21 10:57 2014-01-24 Show GitHub Exploit DB Packet Storm
297429 - thecus n8800_nas_server_firmware
n8800_nas_server
The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page's cleartext content. CWE-255
Credentials Management
CVE-2013-5668 2024-11-21 10:57 2014-01-24 Show GitHub Exploit DB Packet Storm
297430 - thecus n8800_nas_server_firmware
n8800_nas_server
The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter. CWE-78
OS Command 
CVE-2013-5667 2024-11-21 10:57 2014-01-24 Show GitHub Exploit DB Packet Storm