Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200481	5.5	警告 Local	KDE project	-	KDE kio および kdelibs の kpac/script.cpp における重要な情報を取得される脆弱性	CWE-254 セキュリティ機能	CVE-2017-6410	2017-03-23 17:48	2017-02-28	Show	GitHub Exploit DB Packet Storm

200482	6.1	警告 Network	Ysurac	-	FlightAirMap における脆弱な Web サイトのコンテキスト内のブラウザで任意の HTML およびスクリプトコードを実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6397	2017-03-23 17:42	2017-03-1	Show	GitHub Exploit DB Packet Storm

200483	6.1	警告 Network	WebPagetest project	-	WPO-Foundation WebPageTest における脆弱な Web サイトのコンテキスト内のブラウザで任意の HTML およびスクリプトコードを実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6396	2017-03-23 17:41	2017-03-1	Show	GitHub Exploit DB Packet Storm

200484	8.6	重要 Network	Ping Identity	-	Apache HTTP サーバ用 OpenID Connect Relying Party and OAuth 2.0 Resource Server モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2017-6413	2017-03-23 17:28	2017-02-21	Show	GitHub Exploit DB Packet Storm

200485	8.6	重要 Network	Ping Identity	-	Apache HTTP サーバ用 OpenID Connect Relying Party and OAuth 2.0 Resource Server モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2017-6062	2017-03-23 17:28	2017-01-31	Show	GitHub Exploit DB Packet Storm

200486	6.1	警告 Network	Revive Adserver	-	Revive Adserver のインタースティシャル領域の起動コードの生成におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-5833	2017-03-23 17:12	2017-01-26	Show	GitHub Exploit DB Packet Storm

200487	5.4	警告 Network	Revive Adserver	-	Revive Adserver におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-5832	2017-03-23 17:12	2017-01-26	Show	GitHub Exploit DB Packet Storm

200488	5.9	警告 Network	Revive Adserver	-	Revive Adserver の forgot password メカニズムにおける Web セッションをハイジャックされる脆弱性	CWE-384 セッションの固定化	CVE-2017-5831	2017-03-23 17:12	2017-01-26	Show	GitHub Exploit DB Packet Storm

200489	9.8	緊急 Network	Revive Adserver	-	Revive Adserver における任意のコードを実行される脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-5830	2017-03-23 17:12	2017-01-26	Show	GitHub Exploit DB Packet Storm

200490	5.5	警告 Local	Matt Johnston	-	Dropbear SSH の dbclient およびサーバにおけるプロセスメモリを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-7409	2017-03-23 17:10	2016-07-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290891	-	unitrends	enterprise_backup	recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to bypass authentication by setting the auth parameter to a certain string.	CWE-287 Improper Authentication	CVE-2014-3139	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290892	-	xerox	docushare	SQL injection vulnerability in Xerox DocuShare before 6.53 Patch 6 Hotfix 2, 6.6.1 Update 1 before Hotfix 24, and 6.6.1 Update 2 before Hotfix 3 allows remote authenticated users to execute arbitrary…	CWE-89 SQL Injection	CVE-2014-3138	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290893	-	citrix	netscaler_access_gateway_firmware netscaler_application_delivery_controller_firmware netscaler_access_gateway netscaler_application_delivery_controller	Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and …	NVD-CWE-noinfo	CVE-2014-2882	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290894	-	citrix	netscaler_access_gateway_firmware netscaler_application_delivery_controller_firmware netscaler_application_delivery_controller netscaler_access_gateway	Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9…	NVD-CWE-noinfo	CVE-2014-2881	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290895	-	vbulletin	vbulletin	Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 5.1.1 Alpha 9 allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO to privatemessage/new/, (2) the fold…	CWE-79 Cross-site Scripting	CVE-2014-3135	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290896	-	sap	businessobjects	Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-3134	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290897	-	sap	netweaver_java_application_server	SAP Netweaver Java Application Server does not properly restrict access, which allows remote attackers to obtain the list of SAP systems registered on an SLD via an unspecified webdynpro, related to …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3133	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290898	-	sap	background_processing	SAP Background Processing does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3132	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290899	-	sap	profile_maintenance	SAP Profile Maintenance does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7.1.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3131	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290900	-	sap	netweaver_abap_application_server	The ABAP Help documentation and translation tools (BC-DOC-HLP) in Basis in SAP Netweaver ABAP Application Server does not properly restrict access, which allows local users to gain privileges and exe…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3130	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm