Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249991 7.5 危険 BEAシステムズ - BEA AquaLogic Service Bus における認可ポリシーを回避される脆弱性 - CVE-2007-0432 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249992 7.8 危険 AVM - AVM Fritz!Box におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0431 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249993 4.9 警告 アップル - Apple Mac OS X の shared_region_map_file_np 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0430 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249994 5 警告 DivX - DivX Player と配布されている npdivx32.dll の DivXBrowserPlugin におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0429 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249995 6.8 警告 BEAシステムズ - BEA WebLogic Portal における制限を回避される脆弱性 - CVE-2007-0426 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249996 4.4 警告 BEAシステムズ - BEA WebLogic Portal における詳細不明な脆弱性 - CVE-2007-0423 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249997 6.5 警告 Django Software Foundation - Django の AuthenticationMiddleware の LazyUser クラスにおける他のユーザ権限を取得される脆弱性 - CVE-2007-0405 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249998 7.5 危険 Django Software Foundation - Django の bin/compile-messages.py における任意のコマンドを実行される脆弱性 - CVE-2007-0404 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249999 7.5 危険 easebay resources - Easebay Resources Paypal Subscription Manager の admin/memberlist.php における SQL インジェクションの脆弱性 - CVE-2007-0403 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
250000 6.8 警告 easebay resources - Easebay Resources Paypal Subscription Manager の admin/edit_member.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0402 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295641 - dkorunic pam_s\/key A certain Gentoo patch for the PAM S/Key module does not properly clear credentials from memory, which allows local users to obtain sensitive information by reading system memory. CWE-255
Credentials Management 		CVE-2013-4285 2024-11-21 10:55 2014-04-28 Show GitHub Exploit DB Packet Storm
295642 - debian ppthtml Heap-based buffer overflow in the __OLEdecode function in ppthtml 0.5.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .ppt… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4565 2024-11-21 10:55 2014-04-26 Show GitHub Exploit DB Packet Storm
295643 - freedesktop poppler The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on tem… CWE-59
Link Following 		CVE-2013-4472 2024-11-21 10:55 2014-04-22 Show GitHub Exploit DB Packet Storm
295644 - imapsync_project imapsync imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site. CWE-200
Information Exposure 		CVE-2013-4279 2024-11-21 10:55 2014-04-19 Show GitHub Exploit DB Packet Storm
295645 - uclouvain openjpeg Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4290 2024-11-21 10:55 2014-04-18 Show GitHub Exploit DB Packet Storm
295646 - uclouvain openjpeg Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow. CWE-189
Numeric Errors 		CVE-2013-4289 2024-11-21 10:55 2014-04-18 Show GitHub Exploit DB Packet Storm
295647 - hitmyserver hms_testimonials Multiple cross-site request forgery (CSRF) vulnerabilities in the HMS Testimonials plugin before 2.0.11 for WordPress allow remote attackers to hijack the authentication of administrators for request… CWE-352
 Origin Validation Error 		CVE-2013-4240 2024-11-21 10:55 2014-04-3 Show GitHub Exploit DB Packet Storm
295648 - samba
canonical 		samba
ubuntu_linux 		Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obta… CWE-255
Credentials Management 		CVE-2013-4496 2024-11-21 10:55 2014-03-14 Show GitHub Exploit DB Packet Storm
295649 - vicidial vicidial Multiple SQL injection vulnerabilities in the agent interface (agc/) in VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier allow (1) remote attackers to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2013-4467 2024-11-21 10:55 2014-03-12 Show GitHub Exploit DB Packet Storm
295650 - php xhprof Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter. CWE-79
Cross-site Scripting 		CVE-2013-4433 2024-11-21 10:55 2014-03-12 Show GitHub Exploit DB Packet Storm