Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201031	5.9	警告 Network	Psi+ Dev Team	-	Psi+ の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5593	2017-03-8 15:04	2017-01-25	Show	GitHub Exploit DB Packet Storm

201032	5.9	警告 Network	profanity	-	profanity の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5592	2017-03-8 15:04	2017-01-24	Show	GitHub Exploit DB Packet Storm

201033	5.9	警告 Network	SleekXMPP project Slixmpp project	-	SleekXMPP および Slixmpp の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5591	2017-03-8 15:04	2017-01-28	Show	GitHub Exploit DB Packet Storm

201034	5.9	警告 Network	Georg Lukas	-	yaxim および Bruno の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5589	2017-03-8 15:04	2017-01-30	Show	GitHub Exploit DB Packet Storm

201035	6.1	警告 Network	Schneider Electric	-	Schneider Electric homeLYnk Controller におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-5157	2017-03-8 15:03	2017-01-18	Show	GitHub Exploit DB Packet Storm

201036	9.8	緊急 Network	Schneider Electric	-	Schneider Electric PowerLogic PM8ECC におけるデバイスへのアクセスを許容される脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2016-5818	2017-03-8 15:03	2016-10-18	Show	GitHub Exploit DB Packet Storm

201037	7.5	重要 Network	Mobile App Native project	-	WordPress 用 Mobile App Native プラグインにおけるリモートでファイルをアップロードされる脆弱性	CWE-254 セキュリティ機能	CVE-2017-6104	2017-03-8 14:30	2017-02-27	Show	GitHub Exploit DB Packet Storm

201038	6.1	警告 Network	AnyVar project	-	WordPress 用 AnyVar プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6103	2017-03-8 14:30	2017-02-21	Show	GitHub Exploit DB Packet Storm

201039	6.1	警告 Network	Blair Jordan	-	WordPress 用 Rockhoist Badges プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6102	2017-03-8 14:30	2017-02-20	Show	GitHub Exploit DB Packet Storm

201040	7.8	重要 Local	IBM	-	IBM AIX における root 権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2016-8972	2017-03-8 14:20	2016-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292301	9.8	CRITICAL Network	wing-tight_project	wing-tight	A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This affects an unknown part of the file index.php. The manipulation of the argument p leads to file inclusion. …	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2014-125044	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm

292302	9.8	CRITICAL Network	progetto-complementi_project	progetto-complementi	A vulnerability classified as critical was found in Miccighel PR-CWT. This vulnerability affects unknown code. The manipulation leads to sql injection. The patch is identified as e412127d07004668e5a2…	-	CVE-2014-125041	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm

292303	9.8	CRITICAL Network	devnewsaggregator_project	devnewsaggregator	A vulnerability was found in stevejagodzinski DevNewsAggregator. It has been rated as critical. Affected by this issue is the function getByName of the file php/data_access/RemoteHtmlContentDataAcces…	-	CVE-2014-125040	2024-11-21 11:03	2023-01-5	Show	GitHub Exploit DB Packet Storm

292304	9.8	CRITICAL Network	is_projecto2_project	is_projecto2	A vulnerability has been found in IS_Projecto2 and classified as critical. This vulnerability affects unknown code of the file Cnn-EJB/ejbModule/ejbs/NewsBean.java. The manipulation of the argument d…	-	CVE-2014-125038	2024-11-21 11:03	2023-01-3	Show	GitHub Exploit DB Packet Storm

292305	9.8	CRITICAL Network	license_to_kill_project	license_to_kill	A vulnerability, which was classified as critical, was found in License to Kill. This affects an unknown part of the file models/injury.rb. The manipulation of the argument name leads to sql injectio…	-	CVE-2014-125037	2024-11-21 11:03	2023-01-3	Show	GitHub Exploit DB Packet Storm

292306	4.3	MEDIUM Adjacent	ansible-ntp_project	ansible-ntp	A vulnerability, which was classified as problematic, has been found in drybjed ansible-ntp. Affected by this issue is some unknown functionality of the file meta/main.yml. The manipulation leads to …	NVD-CWE-Other	CVE-2014-125036	2024-11-21 11:03	2023-01-3	Show	GitHub Exploit DB Packet Storm

292307	6.1	MEDIUM Network	jobs-plugin_project	jobs-plugin	A vulnerability classified as problematic was found in Jobs-Plugin. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launc…	-	CVE-2014-125035	2024-11-21 11:03	2023-01-3	Show	GitHub Exploit DB Packet Storm

292308	6.1	MEDIUM Network	contact_app_project	contact_app	A vulnerability has been found in stiiv contact_app and classified as problematic. Affected by this vulnerability is the function render of the file libs/View.php. The manipulation of the argument va…	-	CVE-2014-125034	2024-11-21 11:03	2023-01-2	Show	GitHub Exploit DB Packet Storm

292309	7.5	HIGH Network	rails-cv-app_project	rails-cv-app	A vulnerability was found in rails-cv-app. It has been rated as problematic. Affected by this issue is some unknown functionality of the file app/controllers/uploaded_files_controller.rb. The manipul…	CWE-22 Path Traversal	CVE-2014-125033	2024-11-21 11:03	2023-01-2	Show	GitHub Exploit DB Packet Storm

292310	9.8	CRITICAL Network	go-with-me_project	go-with-me	A vulnerability was found in porpeeranut go-with-me. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file module/frontend/add.php. The manipulation…	-	CVE-2014-125032	2024-11-21 11:03	2023-01-2	Show	GitHub Exploit DB Packet Storm