Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200061	5.5	警告 Local	Artifex Software	-	Artifex Software, Inc. の Ghostscript の base/gdevp14.c の pdf14_open 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-10217	2017-05-8 17:41	2016-12-29	Show	GitHub Exploit DB Packet Storm

200062	6.1	警告 Network	Jensen of Scandinavia AS	-	複数の Jensen of Scandinavia AS Air:Link デバイスにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2016-10316	2017-05-8 17:03	2016-12-29	Show	GitHub Exploit DB Packet Storm

200063	6.1	警告 Network	Jensen of Scandinavia AS	-	複数の Jensen of Scandinavia AS Air:Link デバイスにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2016-10315	2017-05-8 17:03	2016-12-29	Show	GitHub Exploit DB Packet Storm

200064	8.8	重要 Network	Jensen of Scandinavia AS	-	複数の Jensen of Scandinavia AS Air:Link デバイスにおけるパスワードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-10314	2017-05-8 17:03	2016-12-29	Show	GitHub Exploit DB Packet Storm

200065	8.8	重要 Network	Jensen of Scandinavia AS	-	複数の Jensen of Scandinavia AS Air:Link デバイスにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-10313	2017-05-8 17:03	2016-12-29	Show	GitHub Exploit DB Packet Storm

200066	9.8	緊急 Network	Jensen of Scandinavia AS	-	複数の Jensen of Scandinavia AS Air:Link デバイスにおける任意のコマンドを実行される脆弱性	CWE-77 コマンドインジェクション	CVE-2016-10312	2017-05-8 17:03	2016-12-29	Show	GitHub Exploit DB Packet Storm

200067	9.8	緊急 Network	Project Atomic	-	Bubblewrap における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-5226	2017-05-8 16:49	2017-01-10	Show	GitHub Exploit DB Packet Storm

200068	8.8	重要 Adjacent	Pidgin	-	Pidgin Mxit プロトコルにおけるハッシュ化されたパスワードを解読される脆弱性	CWE-326 不適切な暗号強度	CVE-2016-2379	2017-05-8 16:49	2016-06-21	Show	GitHub Exploit DB Packet Storm

200069	7.5	重要 Network	MikroTik	-	MikroTik におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2017-7285	2017-05-8 16:48	2017-03-28	Show	GitHub Exploit DB Packet Storm

200070	8.8	重要 Local	Honeywell International Inc.	-	複数の Honeywell Intermec 工業用プリンタにおける BusyBox を脱獄される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-5671	2017-05-8 16:47	2017-03-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290371	9.8	CRITICAL Network	ibm	rational_appscan_source security_appscan_source	IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attacker…	CWE-77 Command Injection	CVE-2014-6120	2024-11-21 11:13	2018-04-13	Show	GitHub Exploit DB Packet Storm

290372	6.1	MEDIUM Network	jquery	jquery	jQuery 1.4.2 allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to use of the text method inside after.	CWE-79 Cross-site Scripting	CVE-2014-6071	2024-11-21 11:13	2018-01-17	Show	GitHub Exploit DB Packet Storm

290373	6.1	MEDIUM Network	torrentflux_project	torrentflux	Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.4 allow (1) remote attackers to inject arbitrary web script or HTML by leveraging failure to encode file contents when downloading…	CWE-79 Cross-site Scripting	CVE-2014-6027	2024-11-21 11:13	2018-01-17	Show	GitHub Exploit DB Packet Storm

290374	5.4	MEDIUM Network	ibm	curam_social_program_management	Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0 SP2, 6.0.4, and 6.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X…	CWE-79 Cross-site Scripting	CVE-2014-6191	2024-11-21 11:13	2017-09-20	Show	GitHub Exploit DB Packet Storm

290375	8.8	HIGH Network	ibm	security_identity_manager	Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of users for requests that can cause cross-site…	CWE-352 Origin Validation Error	CVE-2014-6106	2024-11-21 11:13	2017-09-19	Show	GitHub Exploit DB Packet Storm

290376	6.1	MEDIUM Network	ibm	security_network_protection_4100_firmware security_network_protection_3100_firmware security_network_protection_5100_firmware security_network_protection_7100_firmware	Cross-site scripting (XSS) vulnerability in IBM Security Network Protection 3100, 4100, 5100, and 7100 devices with firmware 5.2 before 5.2.0.0-ISS-XGS-All-Models-Hotfix-FP0008 and 5.3 before 5.3.0.5…	CWE-79 Cross-site Scripting	CVE-2014-6189	2024-11-21 11:13	2017-08-23	Show	GitHub Exploit DB Packet Storm

290377	4.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x before 10.2.4 HF12, 11.x before 11.2.1 HF15, 11.3.x, 11.4.x before 11.4.1 HF9, 11.5.x before 11.5.2 HF1, and 11.6.0 before HF4, and Enterp…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-6031	2024-11-21 11:13	2017-06-9	Show	GitHub Exploit DB Packet Storm

290378	-		ibm	security_network_protection_firmware	Cross-site request forgery (CSRF) vulnerability in IBM Security Network Protection 5.3 before 5.3.1 allows remote attackers to hijack the authentication of arbitrary users.	CWE-352 Origin Validation Error	CVE-2014-6198	2024-11-21 11:13	2015-06-28	Show	GitHub Exploit DB Packet Storm

290379	-		ibm	marketing_operations	Directory traversal vulnerability in IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows rem…	CWE-22 Path Traversal	CVE-2014-6222	2024-11-21 11:13	2015-06-8	Show	GitHub Exploit DB Packet Storm

290380	-		ibm	marketing_operations	Cross-site scripting (XSS) vulnerability in IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 all…	CWE-79 Cross-site Scripting	CVE-2014-6175	2024-11-21 11:13	2015-06-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed