Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254871 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4537 2010-04-28 15:21 2010-01-12 Show GitHub Exploit DB Packet Storm
254872 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
ヒューレット・パッカード
ターボリナックス
レッドハット		 - Apache の mod_proxy_ftp における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0005 2010-04-28 15:18 2008-01-11 Show GitHub Exploit DB Packet Storm
254873 10 危険 IntelliCom Innovation AB - IntelliCom NetBiter デバイスにおけるデフォルトパスワードの問題 CWE-255
証明書・パスワード管理 		CVE-2009-4463 2010-04-27 16:10 2010-04-7 Show GitHub Exploit DB Packet Storm
254874 9.3 危険 Foxit Software Inc - Foxit Reader に任意のコード実行が可能な脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1239 2010-04-27 16:10 2010-04-6 Show GitHub Exploit DB Packet Storm
254875 10 危険 ヒューレット・パッカード - Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2010-0104 2010-04-27 16:09 2010-03-31 Show GitHub Exploit DB Packet Storm
254876 6.8 警告 アップル - AirPort Utility におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2822 2010-04-27 16:09 2010-03-31 Show GitHub Exploit DB Packet Storm
254877 9.3 危険 アップル - Apple Safari の ColorSync における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0040 2010-04-27 15:20 2010-03-15 Show GitHub Exploit DB Packet Storm
254878 4 警告 Squid-cache.org
サイバートラスト株式会社
ターボリナックス
レッドハット		 - Squid の lib/rfc1035.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0308 2010-04-27 15:20 2010-01-28 Show GitHub Exploit DB Packet Storm
254879 6.8 警告 アップル - Apple Mac OS X の QuickDraw Manager におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2837 2010-04-27 15:20 2009-11-9 Show GitHub Exploit DB Packet Storm
254880 5 警告 Squid-cache.org
サイバートラスト株式会社
ターボリナックス
レッドハット		 - Squid の strListGetItem 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2855 2010-04-27 15:19 2009-08-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287611 - moodle moodle lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain … CWE-200
Information Exposure 		CVE-2013-4522 2024-11-21 10:55 2013-11-26 Show GitHub Exploit DB Packet Storm
287612 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess extension for MediaWiki 1.19.x before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to inject ar… CWE-79
Cross-site Scripting 		CVE-2013-4573 2024-11-21 10:55 2013-11-26 Show GitHub Exploit DB Packet Storm
287613 - ibus_project
opensuse 		ibus
opensuse 		The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allo… CWE-255
Credentials Management 		CVE-2013-4509 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287614 - ruby-lang ruby Heap-based buffer overflow in Ruby 1.8, 1.9 before 1.9.3-p484, 2.0 before 2.0.0-p353, 2.1 before 2.1.0 preview2, and trunk before revision 43780 allows context-dependent attackers to cause a denial o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4164 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287615 - f5
opensuse
suse 		nginx
opensuse
studio_onsite
webyast
lifecycle_management_server 		nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2013-4547 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287616 - robert_ancell
canonical 		lightdm
ubuntu_linux 		LightDM 1.7.5 through 1.8.3 and 1.9.x before 1.9.2 does not apply the AppArmor profile to the Guest account, which allows local users to bypass intended restrictions by leveraging the Guest account. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4459 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287617 - http-body_project http-body HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 through 1.22, before 1.23) uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, whic… NVD-CWE-noinfo
CVE-2013-4407 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287618 - openstack image_registry_and_delivery_service_\(glance\) The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image. CWE-20
 Improper Input Validation  		CVE-2013-4354 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287619 - ffmpeg ffmpeg The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference. NVD-CWE-Other
CVE-2013-4265 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
287620 - ffmpeg ffmpeg The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4264 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm