Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251291 5 警告 アップル - Apple iOS の CFNetwork における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0641 2012-03-13 14:23 2012-03-8 Show GitHub Exploit DB Packet Storm
251292 4 警告 Redmine - Redmine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0327 2012-03-13 12:02 2012-03-13 Show GitHub Exploit DB Packet Storm
251293 2.6 注意 Tetsuya Aoyama - twicca におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0326 2012-03-13 12:02 2012-03-13 Show GitHub Exploit DB Packet Storm
251294 7.6 危険 アップル - Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0634 2012-03-13 10:14 2012-03-8 Show GitHub Exploit DB Packet Storm
251295 7.5 危険 アップル - 複数の Apple 製品で使用される libresolv における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3453 2012-03-12 14:14 2012-02-2 Show GitHub Exploit DB Packet Storm
251296 7.6 危険 アップル - Apple Safari における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3845 2012-03-9 15:48 2012-03-8 Show GitHub Exploit DB Packet Storm
251297 4.3 警告 アップル - Apple Safari におけるアドレスバーを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3844 2012-03-9 15:43 2012-03-8 Show GitHub Exploit DB Packet Storm
251298 5 警告 シマンテック - Symantec pcAnywhere 製品の awhost32 サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0292 2012-03-9 15:06 2012-03-1 Show GitHub Exploit DB Packet Storm
251299 4 警告 CloudBees - Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0325 2012-03-9 12:03 2012-03-9 Show GitHub Exploit DB Packet Storm
251300 4.3 警告 CloudBees - Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0324 2012-03-9 12:02 2012-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287351 - perl cgi_application_module The CGI::Application module before 4.50_50 and 4.50_51 for Perl, when run modes are not specified, allows remote attackers to obtain sensitive information (web queries and environment details) via ve… CWE-200
Information Exposure 		CVE-2013-7329 2024-11-21 11:00 2014-10-7 Show GitHub Exploit DB Packet Storm
287352 - linecorp line LINE 3.2.1.83 and earlier on Windows and 3.2.1 and earlier on OS X does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive … CWE-310
Cryptographic Issues 		CVE-2013-7144 2024-11-21 11:00 2014-08-16 Show GitHub Exploit DB Packet Storm
287353 - cobham aviator_300
sailor_fleetbroadband_150
sailor_900_vsat
aviator_350
sailor_fleetbroadband_250
explorer_bgan
aviator_200
sailor_fleetbroadband_500
aviator_700d 		Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtai… NVD-CWE-Other
CVE-2013-7180 2024-11-21 11:00 2014-08-15 Show GitHub Exploit DB Packet Storm
287354 - zoll monitor\/defibrillator ZOLL Defibrillator / Monitor X Series has a default (1) supervisor password and (2) service password, which allows physically proximate attackers to modify device configuration and cause a denial of … CWE-255
Credentials Management 		CVE-2013-7395 2024-11-21 11:00 2014-08-13 Show GitHub Exploit DB Packet Storm
287355 - splunk splunk The "runshellscript echo.sh" script in Splunk before 5.0.5 allows remote authenticated users to execute arbitrary commands via a crafted string. NOTE: this issue was SPLIT from CVE-2013-6771 per ADT… CWE-94
Code Injection 		CVE-2013-7394 2024-11-21 11:00 2014-08-7 Show GitHub Exploit DB Packet Storm
287356 - apache subversion The daemonize.py module in Subversion 1.8.0 before 1.8.2 allows local users to gain privileges via a symlink attack on the pid file created for (1) svnwcsub.py or (2) irkerbridge.py when the --pidfil… CWE-59
Link Following 		CVE-2013-7393 2024-11-21 11:00 2014-07-29 Show GitHub Exploit DB Packet Storm
287357 - gitlist gitlist Gitlist allows remote attackers to execute arbitrary commands via shell metacharacters in a file name to Source/. NVD-CWE-Other
CVE-2013-7392 2024-11-21 11:00 2014-07-22 Show GitHub Exploit DB Packet Storm
287358 - entity_api_project entity_api The Entity API module 7.x-1.x before 7.x-1.2 for Drupal, when using the (a) Views field or (b) area plugins, allows remote attackers to read restricted entities via the (1) field, (2) header, or (3) … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-7391 2024-11-21 11:00 2014-07-20 Show GitHub Exploit DB Packet Storm
287359 - dlink dir-645_firmware
dir-645 		Multiple cross-site scripting (XSS) vulnerabilities in D-Link DIR-645 Router (Rev. A1) with firmware before 1.04B11 allow remote attackers to inject arbitrary web script or HTML via the (1) deviceid … CWE-79
Cross-site Scripting 		CVE-2013-7389 2024-11-21 11:00 2014-07-7 Show GitHub Exploit DB Packet Storm
287360 - google
trimble 		sketchup Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-7388 2024-11-21 11:00 2014-07-2 Show GitHub Exploit DB Packet Storm