Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240951 6.9 警告 Sony Creative Software - Sound Forge Pro における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5242 2012-09-11 15:18 2012-09-7 Show GitHub Exploit DB Packet Storm
240952 6.9 警告 オートデスク株式会社 - Autodesk AutoCAD における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5241 2012-09-11 15:17 2012-09-7 Show GitHub Exploit DB Packet Storm
240953 6.9 警告 コーレル株式会社 - Corel PHOTO-PAINT X3 および CorelDRAW X5 における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5240 2012-09-11 15:17 2012-09-7 Show GitHub Exploit DB Packet Storm
240954 6.9 警告 DAEMON Tools - DAEMON Tools における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5239 2012-09-11 15:16 2012-09-7 Show GitHub Exploit DB Packet Storm
240955 6.9 警告 サイバーリンク株式会社 - CyberLink PowerDirector における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5238 2012-09-11 15:15 2012-09-7 Show GitHub Exploit DB Packet Storm
240956 6.9 警告 サイバーリンク株式会社 - CyberLink PowerDirector における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5237 2012-09-11 15:14 2012-09-7 Show GitHub Exploit DB Packet Storm
240957 6.9 警告 ROXIO - Roxio Easy Media Creator における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5236 2012-09-11 15:14 2012-09-7 Show GitHub Exploit DB Packet Storm
240958 6.9 警告 Ivan Zahariev - IZArc のアーカイバにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5235 2012-09-11 15:13 2012-09-7 Show GitHub Exploit DB Packet Storm
240959 6.9 警告 テックスミス株式会社 - Camtasia Studio における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5234 2012-09-11 15:13 2012-09-7 Show GitHub Exploit DB Packet Storm
240960 6.9 警告 Atomix Productions - Virtual DJ における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5233 2012-09-11 15:10 2012-09-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286851 5.5 MEDIUM
Local 		mcafee change_control
application_control 		A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part … CWE-284
Improper Access Control 		CVE-2013-7460 2024-11-21 11:01 2017-03-15 Show GitHub Exploit DB Packet Storm
286852 9.8 CRITICAL
Network 		dlitz
fedoraproject 		pycrypto
fedora 		Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers to execute arbitrary code as demonstrated by a crafted iv p… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-7459 2024-11-21 11:01 2017-02-16 Show GitHub Exploit DB Packet Storm
286853 6.1 MEDIUM
Network 		nodejs node.js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via nested forbidden strings. CWE-79
Cross-site Scripting 		CVE-2013-7454 2024-11-21 11:01 2017-01-24 Show GitHub Exploit DB Packet Storm
286854 6.1 MEDIUM
Network 		nodejs node.js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via vectors related to UI redressing. CWE-79
Cross-site Scripting 		CVE-2013-7453 2024-11-21 11:01 2017-01-24 Show GitHub Exploit DB Packet Storm
286855 6.1 MEDIUM
Network 		nodejs node.js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via a crafted javascript URI. CWE-79
Cross-site Scripting 		CVE-2013-7452 2024-11-21 11:01 2017-01-24 Show GitHub Exploit DB Packet Storm
286856 6.1 MEDIUM
Network 		nodejs node.js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the XSS filter via a nested tag. CWE-79
Cross-site Scripting 		CVE-2013-7451 2024-11-21 11:01 2017-01-24 Show GitHub Exploit DB Packet Storm
286857 3.3 LOW
Local 		redislabs
debian 		redis
debian_linux 		linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file. CWE-200
Information Exposure 		CVE-2013-7458 2024-11-21 11:01 2016-08-10 Show GitHub Exploit DB Packet Storm
286858 7.6 HIGH
Network 		libgd libgd gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (… CWE-125
Out-of-bounds Read 		CVE-2013-7456 2024-11-21 11:01 2016-08-7 Show GitHub Exploit DB Packet Storm
286859 7.8 HIGH
Local 		google android Unspecified vulnerability in the Qualcomm components in Android before 2016-07-05 allows attackers to gain privileges via a crafted application. NVD-CWE-noinfo
CVE-2013-7457 2024-11-21 11:01 2016-07-11 Show GitHub Exploit DB Packet Storm
286860 5.9 MEDIUM
Network 		python python The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof serve… CWE-19
 Data Processing Errors 		CVE-2013-7440 2024-11-21 11:01 2016-06-8 Show GitHub Exploit DB Packet Storm