Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252561 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
レッドハット		 - Apache の mod_proxy_ftp モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2939 2010-11-4 15:35 2008-08-6 Show GitHub Exploit DB Packet Storm
252562 1.9 注意 オラクル - Oracle Solaris および OpenSolaris における USB の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3542 2010-11-4 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
252563 2.4 注意 オラクル - Oracle Solaris および OpenSolaris における Device Drivers の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3513 2010-11-4 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
252564 3.2 注意 オラクル - Oracle Solaris における Solaris Zones の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3508 2010-11-4 15:30 2010-10-12 Show GitHub Exploit DB Packet Storm
252565 3.5 注意 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3512 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
252566 3.6 注意 オラクル - Oracle Solaris および OpenSolaris における SCSI enclosure services デバイスドライバの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3576 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
252567 4 警告 オラクル - Oracle Solaris および OpenSolaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3540 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
252568 4 警告 オラクル - Oracle Solaris および OpenSolaris における InfiniBand の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3516 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
252569 4 警告 オラクル - Oracle Solaris および OpenSolaris の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3515 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
252570 4.3 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3514 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284811 - juniper junos
srx100
srx110
srx1400
srx210
srx220
srx240
srx3400
srx3600
srx550
srx5600
srx5800
srx650 		Buffer overflow in flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7, 12.1 before 12.1R6, and 12.1X44 before 12.1X44-D15 on SRX devices, when Captive Portal is enabled with the UAC enfor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4685 2024-11-21 10:56 2013-07-11 Show GitHub Exploit DB Packet Storm
284812 - juniper junos
srx100
srx110
srx1400
srx210
srx220
srx240
srx3400
srx3600
srx550
srx5600
srx5800
srx650 		flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM and NAT are enabled, allows remote attackers to cause a den… NVD-CWE-noinfo
CVE-2013-4684 2024-11-21 10:56 2013-07-11 Show GitHub Exploit DB Packet Storm
284813 - google android Android 1.6 Donut through 4.2 Jelly Bean does not properly check cryptographic signatures for applications, which allows attackers to execute arbitrary code via an application package file (APK) that… CWE-310
Cryptographic Issues 		CVE-2013-4787 2024-11-21 10:56 2013-07-10 Show GitHub Exploit DB Packet Storm
284814 7.5 HIGH
Network 		oracle
intel 		fujitsu_m10_firmware
intelligent_platform_management_interface 		The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing atta… CWE-255
Credentials Management 		CVE-2013-4786 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
284815 - dell idrac6_firmware The web interface on the Dell iDRAC6 with firmware before 1.95 allows remote attackers to modify the CLP interface for arbitrary users and possibly have other impact via a request to an unspecified f… NVD-CWE-noinfo
CVE-2013-4785 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
284816 - hp integrated_lights-out_bmc The HP Integrated Lights-Out (iLO) BMC implementation allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary p… CWE-287
Improper Authentication 		CVE-2013-4784 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
284817 - dell idrac6_bmc The Dell iDRAC6 with firmware 1.x before 1.92 and 2.x and 3.x before 3.42, and iDRAC7 with firmware before 1.23.23, allows remote attackers to bypass authentication and execute arbitrary IPMI command… CWE-287
Improper Authentication 		CVE-2013-4783 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
284818 - supermicro bmc The Supermicro BMC implementation allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password. CWE-287
Improper Authentication 		CVE-2013-4782 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
284819 - phpmyadmin phpmyadmin import.php in phpMyAdmin 4.x before 4.0.4.1 does not properly restrict the ability of input data to specify a file format, which allows remote authenticated users to modify the GLOBALS superglobal ar… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4729 2024-11-21 10:56 2013-07-4 Show GitHub Exploit DB Packet Storm
284820 - usertask_center_messaging_project usertask_center_messaging Cross-site scripting (XSS) vulnerability in the UserTask Center, Messaging (sys_messages) extension 1.1.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unsp… CWE-79
Cross-site Scripting 		CVE-2013-4749 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm