Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251151 4 警告 g.rodola - pyftpdlib の ftpserver.py におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5012 2012-03-27 18:42 2009-04-20 Show GitHub Exploit DB Packet Storm
251152 4.3 警告 g.rodola - pyftpdlib の FTPHandler クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-5011 2012-03-27 18:42 2009-02-27 Show GitHub Exploit DB Packet Storm
251153 6.8 警告 シマンテック - Symantec Altiris Deployment Solution などの製品で使用される Altiris eXpress NS SC Download ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性 CWE-DesignError
CVE-2009-3028 2012-03-27 18:42 2009-09-14 Show GitHub Exploit DB Packet Storm
251154 4.3 警告 g.rodola - pyftpdlib の FTPHandler クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-5010 2012-03-27 18:42 2008-11-16 Show GitHub Exploit DB Packet Storm
251155 5 警告 IBM - IBM TFIM におけるアサーションを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7299 2012-03-27 18:42 2011-08-12 Show GitHub Exploit DB Packet Storm
251156 5.8 警告 Android - Android の Android ブラウザにおける任意クッキーが上書きまたは削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7298 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
251157 5.8 警告 Opera Software ASA - Opera における任意の Cookie を上書きおよび削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7297 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
251158 5.8 警告 アップル - Apple の Safari における任意のクッキーを上書きまたは削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7296 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
251159 5.8 警告 マイクロソフト - Microsoft Internet Explorer における任意のクッキーを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7295 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
251160 5.8 警告 Google - Google Chrome における任意のクッキーを上書きまたは削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7294 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290291 - dahuasecurity dvr2104h
dvr0404hd-a
dvr1604hd-l
dvr2104hc
dvr5216a
dvr5104he
dvr3204lf-al
dvr5204a
dvr3204hf-s
dvr0404hd-s
dvr0804
dvr5104h
dvr5804
dvr2116h
dvr2404lf-al 		Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack. CWE-255
Credentials Management 		CVE-2013-3615 2024-11-21 10:53 2013-09-17 Show GitHub Exploit DB Packet Storm
290292 - dahuasecurity dvr2104h
dvr0404hd-a
dvr1604hd-l
dvr2104hc
dvr5216a
dvr5104he
dvr3204lf-al
dvr5204a
dvr3204hf-s
dvr0404hd-s
dvr0804
dvr5104h
dvr5804
dvr2116h
dvr2404lf-al 		Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port. CWE-287
Improper Authentication 		CVE-2013-3613 2024-11-21 10:53 2013-09-17 Show GitHub Exploit DB Packet Storm
290293 - dahuasecurity dvr2104h
dvr0404hd-a
dvr1604hd-l
dvr2104hc
dvr5216a
dvr5104he
dvr3204lf-al
dvr5204a
dvr3204hf-s
dvr0404hd-s
dvr0804
dvr5104h
dvr5804
dvr2116h
dvr2404lf-al 		Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3614 2024-11-21 10:53 2013-09-17 Show GitHub Exploit DB Packet Storm
290294 - dahuasecurity dvr2104h
dvr0404hd-a
dvr1604hd-l
dvr2104hc
dvr5216a
dvr5104he
dvr3204lf-al
dvr5204a
dvr3204hf-s
dvr0404hd-s
dvr0804
dvr5104h
dvr5804
dvr2116h
dvr2404lf-al 		Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via autho… CWE-255
Credentials Management 		CVE-2013-3612 2024-11-21 10:53 2013-09-17 Show GitHub Exploit DB Packet Storm
290295 - cisco digital_media_manager Open redirect vulnerability in the login page in Cisco Digital Media Manager (DMM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vector… CWE-20
 Improper Input Validation  		CVE-2013-3446 2024-11-21 10:53 2013-09-12 Show GitHub Exploit DB Packet Storm
290296 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows and Mac OS X, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x and 3.x, and before 11.1.115.81 on Andro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3363 2024-11-21 10:53 2013-09-12 Show GitHub Exploit DB Packet Storm
290297 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows and Mac OS X, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x and 3.x, and before 11.1.115.81 on Andro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3362 2024-11-21 10:53 2013-09-12 Show GitHub Exploit DB Packet Storm
290298 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows and Mac OS X, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x and 3.x, and before 11.1.115.81 on Andro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3361 2024-11-21 10:53 2013-09-12 Show GitHub Exploit DB Packet Storm
290299 - adobe shockwave_player Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3360 2024-11-21 10:53 2013-09-12 Show GitHub Exploit DB Packet Storm
290300 - adobe shockwave_player Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3359 2024-11-21 10:53 2013-09-12 Show GitHub Exploit DB Packet Storm