Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226991	3.5	注意	IBM	-	複数の IBM InfoSphere Master Data Management 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4036	2013-11-28 16:20	2013-11-22	Show	GitHub Exploit DB Packet Storm

226992	3.5	注意	Openbravo	-	Openbravo ERP に情報漏えいの脆弱性	CWE-200 CWE-264	CVE-2013-3617	2013-11-28 16:10	2013-10-30	Show	GitHub Exploit DB Packet Storm

226993	7.1	危険	Linux	-	Linux Kernel の net/core/flow_dissector.c の skb_flow_dissect 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-4348	2013-11-28 16:09	2013-11-2	Show	GitHub Exploit DB Packet Storm

226994	5.2	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-4494	2013-11-28 15:34	2013-11-1	Show	GitHub Exploit DB Packet Storm

226995	1.9	注意	Antoine Rosset	-	OsiriX の DICOM リスナーにおける秘密鍵を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4425	2013-11-28 15:23	2013-11-6	Show	GitHub Exploit DB Packet Storm

226996	5.2	警告	Xen プロジェクト	-	Xen の Ocaml xenstored の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-4416	2013-11-28 15:20	2013-10-29	Show	GitHub Exploit DB Packet Storm

226997	4.3	警告	シスコシステムズ	-	Cisco Prime Network Registrar の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3394	2013-11-28 15:07	2013-11-26	Show	GitHub Exploit DB Packet Storm

226998	7.5	危険	Aftabgardan Cultural Center	-	Testa Online Test Management System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-6873	2013-11-28 14:47	2013-11-15	Show	GitHub Exploit DB Packet Storm

226999	5	警告	Gentoo Linux MediaWiki	-	MediaWiki における拡張機能の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2032	2013-11-28 14:15	2013-04-30	Show	GitHub Exploit DB Packet Storm

227000	4.7	警告	Linux	-	Linux Kernel の drivers/usb/chipidea/host.c の host_start 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-2058	2013-11-28 14:15	2013-01-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319161	-		-	-	Wuhan Tianyu Information Industry Co., Ltd Tianyu CPE Router CommonCPExCPETS_v3.2.468.11.04_P4 was discovered to contain a command injection vulnerability via the component at_command.asp.	-	CVE-2024-48441	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319162	-		-	-	Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 was discovered to contain a command injection vulnerability via the component at_command.asp.	-	CVE-2024-48440	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319163	-		-	-	HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.	-	CVE-2024-46478	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319164	5.9	MEDIUM Network	-	-	IBM Maximo Application Suite - Monitor Component 8.10, 8.11, and 9.0 could disclose information in the form of the hard-coded cryptographic key to an attacker that has compromised environment.	CWE-321 Use of Hard-coded Cryptographic Key	CVE-2024-38314	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319165	-		-	-	iniNet Solutions SpiderControl SCADA PC HMI Editor has a path traversal vulnerability. When the software loads a malicious ‘ems' project template file constructed by an attacker, it can write files…	CWE-22 Path Traversal	CVE-2024-10313	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319166	-		-	-	VIMESA VHF/FM Transmitter Blue Plus is suffering from a Denial-of-Service (DoS) vulnerability. An unauthenticated attacker can issue an unauthorized HTTP GET request to the unprotected endpoint 'dore…	CWE-284 Improper Access Control	CVE-2024-9692	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319167	-		-	-	The APK file in Cloud Smart Lock v2.0.1 has a leaked a URL that can call an API for binding physical devices. This vulnerability allows attackers to arbitrarily construct a request to use the app to …	-	CVE-2024-48548	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319168	-		-	-	Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.	-	CVE-2024-48547	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319169	-		-	-	Incorrect access control in the firmware update and download processes of Wear Sync v1.2.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.	-	CVE-2024-48546	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

319170	-		-	-	Incorrect access control in the firmware update and download processes of IVY Smart v4.5.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.	-	CVE-2024-48545	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm