Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226581 5.8 警告 Apache Software Foundation - Apache CXF の URIMappingInterceptor における SOAP サービスへのアクセス権を取得される脆弱性 - CVE-2012-5633 2013-03-25 16:00 2012-11-14 Show GitHub Exploit DB Packet Storm
226582 7.5 危険 tg0 - Ruby 用 Curl Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2617 2013-03-25 14:21 2013-03-12 Show GitHub Exploit DB Packet Storm
226583 7.5 危険 Hampton Catlin - Ruby 用 MiniMagick Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2616 2013-03-25 14:20 2013-03-12 Show GitHub Exploit DB Packet Storm
226584 7.5 危険 Daniel Choi - Ruby 用 fastreader Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2615 2013-03-25 14:20 2013-03-12 Show GitHub Exploit DB Packet Storm
226585 7.5 危険 Stefaan Colman - Ruby 用 command_wrap Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1875 2013-03-25 14:19 2013-03-18 Show GitHub Exploit DB Packet Storm
226586 6.2 警告 Schweitzer Engineering Laboratories - Schweitzer Engineering Laboratories の AcSELerator QuickSet における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0665 2013-03-25 14:12 2013-03-20 Show GitHub Exploit DB Packet Storm
226587 4.3 警告 シーメンス - Siemens WinCC の HMI Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0667 2013-03-25 11:35 2013-03-15 Show GitHub Exploit DB Packet Storm
226588 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer SP におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1750 2013-03-22 16:20 2013-03-15 Show GitHub Exploit DB Packet Storm
226589 2.1 注意 Mathijs Koenraadt - Drupal 用 Search API Sorts モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0227 2013-03-22 16:16 2013-01-23 Show GitHub Exploit DB Packet Storm
226590 6 警告 Ivan Zugec - Drupal 用 Keyboard Shortcut Utility モジュールにおけるノードを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0226 2013-03-22 16:16 2013-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354791 - wowbb wowbb_web_forum Multiple cross-site scripting (XSS) vulnerabilities in WowBB Forum 1.61 allow remote attackers to inject arbitrary web script or HTML via the (1) country parameter to view_user.php, (2) show paramete… NVD-CWE-Other
CVE-2004-2180 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354792 - wehelpbus wehelpbus Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string. NVD-CWE-Other
CVE-2004-2183 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354793 - mediawiki mediawiki Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via (1) the UnicodeConverter extension, (2) raw page view… NVD-CWE-Other
CVE-2004-2185 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354794 - mediawiki mediawiki SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance. NVD-CWE-Other
CVE-2004-2186 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354795 - mediawiki mediawiki Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2187 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354796 - dmxready dmxready_site_chassis_manager SQL injection vulnerability in DMXReady Site Chassis Manager allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2004-2189 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354797 - unzoo unzoo Directory traversal vulnerability in Unzoo 4.4-2 has unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2190 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354798 - mailenable mailenable_enterprise
mailenable_professional 		MailEnable Professional Edition before 1.53 and Enterprise Edition before 1.02 allows remote attackers to cause a denial of service (crash) via malformed (1) SMTP or (2) IMAP commands. NVD-CWE-Other
CVE-2004-2194 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354799 - ideal_science idealbb Cross-site scripting (XSS) vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2004-2207 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
354800 - ideal_science idealbb CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors. NVD-CWE-Other
CVE-2004-2208 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm