Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258111 5 警告 アップル - Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0523 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
258112 9 危険 アップル - Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0522 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
258113 5 警告 アップル - Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2010-0521 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
258114 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4214 2010-04-16 16:58 2009-12-7 Show GitHub Exploit DB Packet Storm
258115 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3009 2010-04-16 16:58 2009-09-8 Show GitHub Exploit DB Packet Storm
258116 7.5 危険 アップル
Ruby on Rails project		 - Ruby on Rails のダイジェスト認証における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2422 2010-04-16 16:57 2009-07-10 Show GitHub Exploit DB Packet Storm
258117 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0526 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
258118 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0520 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
258119 6.8 警告 アップル - Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0519 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
258120 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0518 2010-04-16 16:56 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292631 - cru-inc ditto_forensic_fieldstation_firmware
ditto_forensic_fieldstation 		Cross-site request forgery (CSRF) vulnerability in CRU Ditto Forensic FieldStation with firmware before 2013Oct15a allows remote attackers to hijack the authentication of administrators for requests … CWE-352
 Origin Validation Error 		CVE-2013-6883 2024-11-21 10:59 2013-12-18 Show GitHub Exploit DB Packet Storm
292632 - cru-inc ditto_forensic_fieldstation_firmware
ditto_forensic_fieldstation 		Multiple cross-site scripting (XSS) vulnerabilities in CRU Ditto Forensic FieldStation with firmware 2013Oct15a and earlier allow (1) remote attackers to inject arbitrary web script or HTML via the u… CWE-79
Cross-site Scripting 		CVE-2013-6882 2024-11-21 10:59 2013-12-18 Show GitHub Exploit DB Packet Storm
292633 - ibm sametime Cross-site scripting (XSS) vulnerability in the Web Application in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2013-6733 2024-11-21 10:59 2013-12-18 Show GitHub Exploit DB Packet Storm
292634 - ibm websphere_service_registry_and_repository Cross-site scripting (XSS) vulnerability in IBM WebSphere Service Registry and Repository (WSRR) 7.5.x before 7.5.0.4 and 8.x through 8.0.0.2 allows remote authenticated users to inject arbitrary web… CWE-79
Cross-site Scripting 		CVE-2013-6721 2024-11-21 10:59 2013-12-18 Show GitHub Exploit DB Packet Storm
292635 - ibm security_access_manager_for_web
content_manager_ondemand_for_multiplatforms
global_security_kit 		IBM Global Security Kit (aka GSKit), as used in Content Manager OnDemand 8.5 and 9.0 and other products, allows remote attackers to cause a denial of service via a crafted handshake during resumption… CWE-310
Cryptographic Issues 		CVE-2013-6329 2024-11-21 10:59 2013-12-18 Show GitHub Exploit DB Packet Storm
292636 - ibm sterling_connect_enterprise_http_option Cross-site scripting (XSS) vulnerability in the HTTP Option in IBM Sterling Connect:Enterprise 1.3 before 1.3.0.2 iFix 1 and 1.4 before 1.4.0.0 iFix 1 allows remote attackers to inject arbitrary web … CWE-79
Cross-site Scripting 		CVE-2013-6327 2024-11-21 10:59 2013-12-18 Show GitHub Exploit DB Packet Storm
292637 - siemens ruggedcom_rugged_operating_system The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or (… CWE-863
 Incorrect Authorization 		CVE-2013-6926 2024-11-21 10:59 2013-12-17 Show GitHub Exploit DB Packet Storm
292638 - siemens ruggedcom_rugged_operating_system The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value. CWE-330
 Use of Insufficiently Random Values 		CVE-2013-6925 2024-11-21 10:59 2013-12-17 Show GitHub Exploit DB Packet Storm
292639 - php
opensuse
apple 		php
opensuse
mac_os_x 		The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6420 2024-11-21 10:59 2013-12-17 Show GitHub Exploit DB Packet Storm
292640 - cisco webex_sales_center Cross-site scripting (XSS) vulnerability in the product-creation administrative page in Cisco WebEx Sales Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka … CWE-79
Cross-site Scripting 		CVE-2013-6711 2024-11-21 10:59 2013-12-15 Show GitHub Exploit DB Packet Storm