Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250721 10 危険 CA Technologies - CA Gateway Security および CA Total Defense で使用されている CA Gateway Security for HTTP の Icihttp.exe における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-2667 2012-03-27 18:43 2011-07-20 Show GitHub Exploit DB Packet Storm
250722 5 警告 Digium - Asterisk Open Source の SIP チャンネルドライバのディフォルト設定におけるアカウント名を列挙される脆弱性 CWE-16
環境設定 		CVE-2011-2666 2012-03-27 18:43 2011-06-28 Show GitHub Exploit DB Packet Storm
250723 5 警告 Digium - Asterisk Open Source の reqresp_parser.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-2665 2012-03-27 18:43 2011-06-23 Show GitHub Exploit DB Packet Storm
250724 3.6 注意 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point Multi-Domain Management / Provider-1 NGX における任意のファイルを上書きされる脆弱性 CWE-noinfo
情報不足 		CVE-2011-2664 2012-03-27 18:43 2011-06-15 Show GitHub Exploit DB Packet Storm
250725 7.5 危険 SUSE - SUSE Linux Enterprise Desktop の modify_resolvconf_suse スクリプトにおける任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2660 2012-03-27 18:43 2011-09-6 Show GitHub Exploit DB Packet Storm
250726 9.3 危険 Novell - Novell Cloud Manager の RPC 実装における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2654 2012-03-27 18:43 2011-08-30 Show GitHub Exploit DB Packet Storm
250727 4.3 警告 Novell
marcus schafer		 - SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2652 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
250728 7.5 危険 Novell
marcus schafer		 - SUSE Studio で使用される Kiwi のファイルブラウザにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-2651 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
250729 4.3 警告 Novell
marcus schafer		 - SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2650 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
250730 7.5 危険 Novell
marcus schafer		 - SUSE Studio で使用される Kiwi における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2649 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291551 - citrix netscaler_application_delivery_controller_firmware Citrix NetScaler Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 logs user credentials, which allows attackers to obtain sensitive infor… CWE-255
Credentials Management 		CVE-2013-6940 2024-11-21 11:00 2014-03-11 Show GitHub Exploit DB Packet Storm
291552 - citrix netscaler_application_delivery_controller_firmware Unspecified vulnerability in the Service VM in Citrix NetScaler SDX 9.3 before 9.3-64.4 and 10.0 before 10.0-77.5 and Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.… NVD-CWE-noinfo
CVE-2013-6938 2024-11-21 11:00 2014-03-11 Show GitHub Exploit DB Packet Storm
291553 - nongnu oath_toolkit usersfile.c in liboath in OATH Toolkit before 2.4.1 does not properly handle lines containing an invalid one-time-password (OTP) type and a user name in /etc/users.oath, which causes the wrong line t… CWE-287
Improper Authentication 		CVE-2013-7322 2024-11-21 11:00 2014-03-9 Show GitHub Exploit DB Packet Storm
291554 - microsoft windows_8.1
windows_8 		The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memor… CWE-399
 Resource Management Errors 		CVE-2013-7332 2024-11-21 11:00 2014-02-26 Show GitHub Exploit DB Packet Storm
291555 - belkin wemo_home_automation_firmware The Belkin WeMo Home Automation firmware before 3949 has a hardcoded GPG key, which makes it easier for remote attackers to spoof firmware updates and execute arbitrary code via crafted signed data. CWE-310
Cryptographic Issues 		CVE-2013-6952 2024-11-21 11:00 2014-02-23 Show GitHub Exploit DB Packet Storm
291556 - belkin wemo_home_automation_firmware The Belkin WeMo Home Automation firmware before 3949 does not maintain a set of Certification Authority public keys, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary X.5… CWE-310
Cryptographic Issues 		CVE-2013-6951 2024-11-21 11:00 2014-02-23 Show GitHub Exploit DB Packet Storm
291557 - belkin wemo_home_automation_firmware The Belkin WeMo Home Automation firmware before 3949 does not use SSL for the distribution feed, which allows man-in-the-middle attackers to install arbitrary firmware by spoofing a distribution serv… CWE-310
Cryptographic Issues 		CVE-2013-6950 2024-11-21 11:00 2014-02-23 Show GitHub Exploit DB Packet Storm
291558 - belkin wemo_home_automation_firmware The Belkin WeMo Home Automation firmware before 3949 does not properly use the STUN and TURN protocols, which allows remote attackers to hijack connections and possibly have unspecified other impact … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6949 2024-11-21 11:00 2014-02-23 Show GitHub Exploit DB Packet Storm
291559 - belkin wemo_home_automation_firmware The peerAddresses API in the Belkin WeMo Home Automation firmware before 3949 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunct… CWE-94
Code Injection 		CVE-2013-6948 2024-11-21 11:00 2014-02-23 Show GitHub Exploit DB Packet Storm
291560 - php php Multiple integer signedness errors in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allow remote attackers to cause a denial of service (application crash) or obtain sensitive inf… CWE-189
Numeric Errors 		CVE-2013-7328 2024-11-21 11:00 2014-02-18 Show GitHub Exploit DB Packet Storm