Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250741	4.3	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4567	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

250742	4.3	警告	SquirrelMail Project	-	SquirrelMail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4555	2012-03-27 18:42	2011-07-11	Show	GitHub Exploit DB Packet Storm

250743	4.3	警告	SquirrelMail Project	-	SquirrelMail の functions/page_header.php におけるクリックジャック攻撃を誘発する脆弱性	CWE-20 不適切な入力確認	CVE-2010-4554	2012-03-27 18:42	2011-07-12	Show	GitHub Exploit DB Packet Storm

250744	9.3	危険	Opera Software ASA	-	Opera における詳細不明の脆弱性	CWE-DesignError	CVE-2010-4587	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250745	10	危険	Opera Software ASA	-	Opera のデフォルト設定における脆弱性	CWE-16 環境設定	CVE-2010-4586	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250746	5	警告	Opera Software ASA	-	Opera の自動更新機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-4585	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250747	2.6	注意	Opera Software ASA	-	Opera における信頼されるコンテンツを偽造される脆弱性	CWE-310 暗号の問題	CVE-2010-4584	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250748	2.6	注意	Opera Software ASA	-	Opera における信頼されるコンテンツを偽造される脆弱性	CWE-DesignError	CVE-2010-4583	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250749	5	警告	Opera Software ASA	-	Opera におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4582	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250750	10	危険	Opera Software ASA	-	Opera における詳細不明の脆弱性	CWE-noinfo 情報不足	CVE-2010-4581	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294851	-	cob\'s_products	cobime	The COBIME application before 0.9.4 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesyst…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0720	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

294852	-	codedesign	artime_japanese_input	The ArtIME Japanese Input application 1.1.2 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesse…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0719	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

294853	-	simeji	simeji	The Simeji application 4.8.1 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local fil…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0718	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

294854	-	mailup	wp-mailup	ajax.functions.php in the MailUp plugin before 1.3.3 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0731	2024-11-21 10:48	2013-03-23	Show	GitHub Exploit DB Packet Storm

294855	-	linux	linux_kernel	The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0914	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

294856	-	canonical	ubuntu_linux	pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1052	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

294857	-	debian canonical	apt advanced_package_tool ubuntu_linux	apt 0.8.16, 0.9.7, and possibly other versions does not properly handle InRelease files, which allows man-in-the-middle attackers to modify packages before installation via unknown vectors, possibly …	CWE-20 Improper Input Validation	CVE-2013-1051	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

294858	-	windriver	vxworks	The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.	CWE-20 Improper Input Validation	CVE-2013-0716	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

294859	-	windriver	vxworks	The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service (CLI session crash) via a crafted command string.	CWE-20 Improper Input Validation	CVE-2013-0715	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

294860	-	windriver	vxworks	IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication r…	CWE-20 Improper Input Validation	CVE-2013-0714	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm