Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257181 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5016 2011-12-9 14:00 2011-11-2 Show GitHub Exploit DB Packet Storm
257182 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5017 2011-12-9 13:59 2011-11-2 Show GitHub Exploit DB Packet Storm
257183 4.3 警告 2daybiz - 2daybiz Online Classified Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-5018 2011-12-9 13:59 2011-11-2 Show GitHub Exploit DB Packet Storm
257184 7.5 危険 2daybiz - 2daybiz Online Classified Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5019 2011-12-9 13:58 2011-11-2 Show GitHub Exploit DB Packet Storm
257185 7.5 危険 NetArt Media - NetArt Media iBoutique における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5020 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
257186 7.5 危険 Cramer Development - Digital Interchange Document Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5021 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
257187 7.5 危険 Jextensions - Joomla! 用 JExtensions JE Story Submit コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5022 2011-12-9 13:55 2011-11-2 Show GitHub Exploit DB Packet Storm
257188 7.5 危険 Cramer Development - Digital Interchange Calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5023 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
257189 6 警告 CuteSITE - CuteSITE CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-5024 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
257190 4.3 警告 CuteSITE - CuteSITE CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-5025 2011-12-9 13:50 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
300381 6.1 MEDIUM
Network
quixplorer_project quixplorer Multiple cross-site scripting (XSS) vulnerabilities in QuiXplorer before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via the (1) dir, (2) item, (3) order, (4) searchitem, (5) … CWE-79
Cross-site Scripting
CVE-2013-1642 2024-11-21 10:50 2020-01-3 Show GitHub Exploit DB Packet Storm
300382 7.8 HIGH
Local
qemu
debian
novell
qemu
debian_linux
open_desktop_server
open_enterprise_server
A flaw was found in the way qemu v1.3.0 and later (virtio-rng) validates addresses when guest accesses the config space of a virtio device. If the virtio device has zero/small sized config space, suc… CWE-269
 Improper Privilege Management
CVE-2013-2016 2024-11-21 10:50 2019-12-31 Show GitHub Exploit DB Packet Storm
300383 8.8 HIGH
Network
automattic w3_super_cache WordPress W3 Super Cache Plugin before 1.3.2 contains a PHP code-execution vulnerability which could allow remote attackers to inject arbitrary code. This issue exists because of an incomplete fix fo… CWE-116
 Improper Encoding or Escaping of Output
CVE-2013-2011 2024-11-21 10:50 2019-12-27 Show GitHub Exploit DB Packet Storm
300384 6.5 MEDIUM
Network
mozilla firefox Mozilla Firefox 20.0a1 and earlier allows remote attackers to cause a denial of service (crash), related to event handling with frames. CWE-20
 Improper Input Validation 
CVE-2013-1689 2024-11-21 10:50 2019-12-11 Show GitHub Exploit DB Packet Storm
300385 7.5 HIGH
Network
redhat openstack
openstack_essex
openstack-utils openstack-db has insecure password creation CWE-306
Missing Authentication for Critical Function
CVE-2013-1793 2024-11-21 10:50 2019-12-10 Show GitHub Exploit DB Packet Storm
300386 7.5 HIGH
Network
mediawiki
debian
redhat
fedoraproject
mediawiki
debian_linux
enterprise_linux
fedora
MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information. CWE-200
Information Exposure
CVE-2013-1817 2024-11-21 10:50 2019-11-21 Show GitHub Exploit DB Packet Storm
300387 7.5 HIGH
Network
mediawiki
debian
redhat
fedoraproject
mediawiki
debian_linux
enterprise_linux
fedora
MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request. CWE-20
 Improper Input Validation 
CVE-2013-1816 2024-11-21 10:50 2019-11-21 Show GitHub Exploit DB Packet Storm
300388 7.5 HIGH
Network
mod_ruid2_project mod_ruid2 mod_ruid2 before 0.9.8 improperly handles file descriptors which allows remote attackers to bypass security using a CGI script to break out of the chroot. CWE-20
 Improper Input Validation 
CVE-2013-1889 2024-11-21 10:50 2019-11-9 Show GitHub Exploit DB Packet Storm
300389 5.5 MEDIUM
Local
redhat
fedoraproject
tuned
fedora
tuned before 2.x allows local users to kill running processes due to insecure permissions with tuned's ktune service. CWE-20
 Improper Input Validation 
CVE-2013-1820 2024-11-21 10:50 2019-11-9 Show GitHub Exploit DB Packet Storm
300390 4.3 MEDIUM
Network
mantisbt
debian
mantisbt
debian_linux
An access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New". CWE-20
 Improper Input Validation 
CVE-2013-1811 2024-11-21 10:50 2019-11-8 Show GitHub Exploit DB Packet Storm