Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201001 9.8 緊急
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge におけるアプリケーションのデータベースにおいて認証情報の保護に十分なセーフガードが欠落している脆弱性 CWE-255
証明書・パスワード管理 		CVE-2016-8378 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
201002 8.8 重要
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-8369 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
201003 8.6 重要
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge における認証なしでシステム内に侵入される脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2016-8361 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
201004 7.1 重要
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge における読み取り専用アクセスでアプリケーション内にて任意の変更を許可される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8357 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
201005 6.1 警告
Network 		Moxa Inc. - 複数の Moxa NPort 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9371 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
201006 9.8 緊急
Network 		Moxa Inc. - 複数の Moxa NPort 製品のファームウェアにおけるリモートでコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2016-9369 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
201007 7.5 重要
Network 		Moxa Inc. - 複数の Moxa NPort 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-400
リソースの枯渇 		CVE-2016-9367 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
201008 9.8 緊急
Network 		Moxa Inc. - 複数の Moxa NPort 製品における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9366 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
201009 8.8 重要
Network 		Moxa Inc. - 複数の Moxa NPort 製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-9365 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
201010 7.3 重要
Network 		Moxa Inc. - 複数の Moxa NPort 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9363 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291791 - python
apple 		python
mac_os_x 		Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1912 2024-11-21 11:05 2014-03-1 Show GitHub Exploit DB Packet Storm
291792 - modx modx_revolution Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Revolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML via the "a" parameter. CWE-79
Cross-site Scripting 		CVE-2014-2080 2024-11-21 11:05 2014-03-1 Show GitHub Exploit DB Packet Storm
291793 - jenkins jenkins Cross-site scripting (XSS) vulnerability in java/hudson/model/Cause.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to inject arbitrary web script or HTML via a … CWE-79
Cross-site Scripting 		CVE-2014-2067 2024-11-21 11:05 2014-03-1 Show GitHub Exploit DB Packet Storm
291794 - jenkins jenkins Directory traversal vulnerability in the CLI job creation (hudson/cli/CreateJobCommand.java) in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to overwrite arbitrary fi… CWE-22
Path Traversal 		CVE-2014-2059 2024-11-21 11:05 2014-03-1 Show GitHub Exploit DB Packet Storm
291795 - buddypress buddypress Cross-site scripting (XSS) vulnerability in the BuddyPress plugin before 1.9.2 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the name field to groups/crea… CWE-79
Cross-site Scripting 		CVE-2014-1888 2024-11-21 11:05 2014-03-1 Show GitHub Exploit DB Packet Storm
291796 - icinga
nagios 		icinga
nagios 		Stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1878 2024-11-21 11:05 2014-03-1 Show GitHub Exploit DB Packet Storm
291797 - linux linux_kernel arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local users to cause a denial of service (sy… CWE-20
 Improper Input Validation  		CVE-2014-2039 2024-11-21 11:05 2014-02-28 Show GitHub Exploit DB Packet Storm
291798 - linux
canonical 		linux_kernel
ubuntu_linux 		The nfs_can_extend_write function in fs/nfs/write.c in the Linux kernel before 3.13.3 relies on a write delegation to extend a write operation without a certain up-to-date verification, which allows … CWE-200
Information Exposure 		CVE-2014-2038 2024-11-21 11:05 2014-02-28 Show GitHub Exploit DB Packet Storm
291799 - linux
suse
canonical 		linux_kernel
linux_enterprise_server
ubuntu_linux 		The security_context_to_sid_core function in security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by leveraging the CAP_MAC_… CWE-20
 Improper Input Validation  		CVE-2014-1874 2024-11-21 11:05 2014-02-28 Show GitHub Exploit DB Packet Storm
291800 - cisco intrusion_prevention_system Cisco Intrusion Prevention System (IPS) Software allows remote attackers to cause a denial of service (MainApp process outage) via malformed SNMP packets, aka Bug IDs CSCum52355 and CSCul49309. CWE-20
 Improper Input Validation  		CVE-2014-2103 2024-11-21 11:05 2014-02-28 Show GitHub Exploit DB Packet Storm