Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
232111 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1059 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232112 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1058 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232113 6.8 警告 PHP工房 - Phpkobo AdFreely におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1057 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232114 6.8 警告 rockettheme - Joomla! 用の Rokdownloads コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1056 2012-12-20 19:29 2010-03-16 Show GitHub Exploit DB Packet Storm
232115 5.1 警告 tufat - osDate における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2010-1055 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232116 6.8 警告 zentracking - Zen Time Tracking における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1053 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232117 7.5 危険 Uiga - Uiga Business Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1049 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232118 4.3 警告 Uiga - Uiga Business Portal の blog/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1048 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232119 7.5 危険 ryan marshall - Rostermain の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1046 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232120 4.3 警告 sk-typo3 - TYPO3 用の Simple Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1020 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298111 - verizon wireless_network_extender The Uboot bootloader on the Verizon Wireless Network Extender SCS-2U01 allows physically proximate attackers to bypass the intended boot process and obtain a login prompt by connecting a crafted HDMI… CWE-287
Improper Authentication
CVE-2013-4875 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298112 - verizon wireless_network_extender The Uboot bootloader on the Verizon Wireless Network Extender SCS-26UC4 allows physically proximate attackers to obtain root access by connecting a crafted HDMI cable and using a sys session to modif… CWE-287
Improper Authentication
CVE-2013-4874 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298113 - yahoo tumblr The Yahoo! Tumblr app before 3.4.1 for iOS sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network. CWE-255
Credentials Management
CVE-2013-4873 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298114 - google glass Google Glass before XE6 does not properly restrict the processing of QR codes, which allows physically proximate attackers to modify the configuration or redirect users to arbitrary web sites via a c… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-4872 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298115 - siemens openscape_session_border_controller
enterprise_openscape_branch
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to execute arbitrar… CWE-78
OS Command 
CVE-2013-4781 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298116 - siemens openscape_session_border_controller
enterprise_openscape_branch
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to read arbitrary f… CWE-200
Information Exposure
CVE-2013-4780 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298117 - siemens openscape_session_border_controller
enterprise_openscape_branch
Cross-site scripting (XSS) vulnerability in core/handleTw.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.… CWE-79
Cross-site Scripting
CVE-2013-4779 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298118 - siemens openscape_session_border_controller
enterprise_openscape_branch
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to obtain sensitive… CWE-200
Information Exposure
CVE-2013-4778 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298119 - file_roller_project
canonical
file_roller
ubuntu_linux
Directory traversal vulnerability in File Roller 3.6.x before 3.6.4, 3.8.x before 3.8.3, and 3.9.x before 3.9.3, when libarchive is used, allows remote attackers to create arbitrary files via a craft… CWE-22
Path Traversal
CVE-2013-4668 2024-11-21 10:56 2013-07-19 Show GitHub Exploit DB Packet Storm
298120 - cisco unified_communications_manager Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) and the IM & Presence Service in Cisco Unified Presence Server through 9.1(2) use the same CTI and database-encryption key across dif… CWE-522
 Insufficiently Protected Credentials
CVE-2013-4869 2024-11-21 10:56 2013-07-18 Show GitHub Exploit DB Packet Storm