Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257301	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3941	2011-01-17 14:29	2010-12-14	Show	GitHub Exploit DB Packet Storm

257302	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3940	2011-01-14 15:55	2010-12-14	Show	GitHub Exploit DB Packet Storm

257303	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3939	2011-01-14 15:53	2010-12-14	Show	GitHub Exploit DB Packet Storm

257304	9.3	危険	マイクロソフト	-	Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3144	2011-01-14 15:49	2010-12-14	Show	GitHub Exploit DB Packet Storm

257305	9.3	危険	マイクロソフト	-	Windows Address Book の wab.exe における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3147	2011-01-14 15:47	2010-12-14	Show	GitHub Exploit DB Packet Storm

257306	6.9	警告	マイクロソフト	-	Microsoft Windows における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3966	2011-01-14 15:42	2010-12-14	Show	GitHub Exploit DB Packet Storm

257307	6.9	警告	マイクロソフト	-	Windows Media Encoder における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3965	2011-01-14 15:39	2010-12-14	Show	GitHub Exploit DB Packet Storm

257308	6.9	警告	マイクロソフト	-	Microsoft Windows Movie Maker における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3967	2011-01-14 15:36	2010-12-14	Show	GitHub Exploit DB Packet Storm

257309	7.2	危険	マイクロソフト	-	Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3338	2011-01-14 15:31	2010-12-14	Show	GitHub Exploit DB Packet Storm

257310	6.9	警告	マイクロソフト	-	Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性	CWE-94 コード・インジェクション	CVE-2010-3959	2011-01-14 15:27	2010-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293011	-	cs-cart	cs-cart	Multiple cross-site scripting (XSS) vulnerabilities in CS-Cart before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) settings_file or (2) data_file parameter to (a) a…	CWE-79 Cross-site Scripting	CVE-2013-7317	2024-11-21 11:00	2014-01-25	Show	GitHub Exploit DB Packet Storm

293012	-	gitlab	gitlab	Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versions before 6.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML file, as demonstrated by READM…	CWE-79 Cross-site Scripting	CVE-2013-7316	2024-11-21 11:00	2014-01-25	Show	GitHub Exploit DB Packet Storm

293013	-	gomlab	gom_player	Gretech GOM Media Player 2.2.56.5158 and earlier allows remote attackers to cause a denial of service (memory corruption) via a crafted AVI file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-7184	2024-11-21 11:00	2014-01-25	Show	GitHub Exploit DB Packet Storm

293014	-	avanset	visual_certexam_manager	Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) Title, (2) File name, or (3) C…	CWE-89 SQL Injection	CVE-2013-7175	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm

293015	-	springsource vmware	spring_framework	The Spring MVC in Spring Framework before 3.2.4 and 4.0.0.M1 through 4.0.0.M2 does not disable external entity resolution for the StAX XMLInputFactory, which allows context-dependent attackers to rea…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7315	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm

293016	-	openstack	nova	OpenStack Compute (Nova) Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7048	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm

293017	-	nec	ip38x_3000 ip38x_1100 ip38x_140 ip38x_1200 ip38x_2000 ip38x_107e ip38x_810 ip38x_1500 ip38x_300 ip38x_105 ip38x_250i ip38x_1000	The OSPF implementation on NEC IP38X, IX1000, IX2000, and IX3000 routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performin…	NVD-CWE-Other	CVE-2013-7314	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm

293018	-	juniper	junos junose screenos	The OSPF implementation in Juniper Junos through 13.x, JunosE, and ScreenOS through 6.3.x does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets…	NVD-CWE-Other	CVE-2013-7313	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm

293019	-	enterasys	k10 s180 g3 c5 k6 s155 s140 s130 s150	The OSPF implementation on Enterasys switches and routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on…	NVD-CWE-Other	CVE-2013-7312	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm

293020	-	checkpoint	gaia_os ipso_os	The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packet…	NVD-CWE-Other	CVE-2013-7311	2024-11-21 11:00	2014-01-24	Show	GitHub Exploit DB Packet Storm