Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201071 4.4 警告
Network 		IBM - IBM Security Access Manager における悪意のあるコードをロードされる脆弱性 CWE-345
データの信頼性についての不十分な検証 		CVE-2016-3016 2017-02-16 11:59 2016-12-8 Show GitHub Exploit DB Packet Storm
201072 4.3 警告
Network 		IBM - IBM CLM アプリケーションにおける管理上の展開パラメータを閲覧される脆弱性 CWE-200
情報漏えい 		CVE-2016-2987 2017-02-16 11:59 2016-12-16 Show GitHub Exploit DB Packet Storm
201073 9.1 緊急
Network 		IBM - IBM Bluemix 用 Single Sign On におけるシステム上の任意のファイルを読まれる脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-2908 2017-02-16 11:59 2016-12-6 Show GitHub Exploit DB Packet Storm
201074 3.3
Local 		IBM - IBM Integration Bus および WebSphere Message Broker における特定のファイルを操作される脆弱性 CWE-275
パーミッションの問題 		CVE-2016-0394 2017-02-16 11:59 2016-11-28 Show GitHub Exploit DB Packet Storm
201075 7.5 重要
Network 		Debian
cryptopp project		 - Crypto++ の ASN.1 BER デコーディングルーチンにおけるメモリブロックをゼロにされる脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9939 2017-02-15 17:39 2016-12-28 Show GitHub Exploit DB Packet Storm
201076 7.5 重要
Network 		cryptopp project - Crypto++ における不正なポインタを解放される脆弱性 CWE-399
リソース管理の問題 		CVE-2016-7544 2017-02-15 17:39 2016-10-11 Show GitHub Exploit DB Packet Storm
201077 5.4 警告
Network 		IBM - IBM Jazz Reporting Service におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6039 2017-02-15 17:36 2016-12-7 Show GitHub Exploit DB Packet Storm
201078 5.4 警告
Network 		IBM - IBM Jazz Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6030 2017-02-15 17:36 2016-12-16 Show GitHub Exploit DB Packet Storm
201079 4.3 警告
Network 		IBM - IBM Jazz テクノロジーベース製品における表示権限を持たない作業項目のタイトルを閲覧される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6028 2017-02-15 17:36 2016-12-16 Show GitHub Exploit DB Packet Storm
201080 5.4 警告
Network 		IBM - IBM Jazz Reporting Service における HTML インジェクションの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5897 2017-02-15 17:36 2016-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291461 - videolan vlc_media_player The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-… CWE-189
Numeric Errors 		CVE-2014-1684 2024-11-21 11:04 2014-03-4 Show GitHub Exploit DB Packet Storm
291462 - otrs otrs Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.1.x before 3.1.20, 3.2.x before 3.2.15, and 3.3.x before 3.3.5 allows remote attackers to inject arbitrary web script o… CWE-79
Cross-site Scripting 		CVE-2014-1695 2024-11-21 11:04 2014-03-1 Show GitHub Exploit DB Packet Storm
291463 - openwebanalytics open_web_analytics Cross-site scripting (XSS) vulnerability in the login page in Open Web Analytics (OWA) before 1.5.6 allows remote attackers to inject arbitrary web script or HTML via the owa_user_id parameter to ind… CWE-79
Cross-site Scripting 		CVE-2014-1456 2024-11-21 11:04 2014-03-1 Show GitHub Exploit DB Packet Storm
291464 - linux
canonical 		linux_kernel
ubuntu_linux 		The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in whic… CWE-200
Information Exposure 		CVE-2014-1690 2024-11-21 11:04 2014-02-28 Show GitHub Exploit DB Packet Storm
291465 - i-doit i-doit SQL injection vulnerability in the CMDB web application in synetics i-doit pro before 1.2.5 and i-doit open allows remote attackers to execute arbitrary SQL commands via the objID parameter to the de… CWE-89
SQL Injection 		CVE-2014-1597 2024-11-21 11:04 2014-02-28 Show GitHub Exploit DB Packet Storm
291466 - bandisoft bandizip Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. NVD-CWE-Other
CVE-2014-1680 2024-11-21 11:04 2014-02-14 Show GitHub Exploit DB Packet Storm
291467 - blackberry enterprise_server
blackberry_enterprise_service
enterprise_server_express
blackberry_universal_device_service 		BlackBerry Enterprise Service 10 before 10.2.1, Universal Device Service 6, Enterprise Server Express for Domino through 5.0.4, Enterprise Server Express for Exchange through 5.0.4, Enterprise Server… CWE-255
Credentials Management 		CVE-2014-1467 2024-11-21 11:04 2014-02-14 Show GitHub Exploit DB Packet Storm
291468 - doorgets doorgets_cms SQL injection vulnerability in dg-admin/index.php in doorGets CMS 5.2 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the _position_down_id parameter. NO… CWE-89
SQL Injection 		CVE-2014-1459 2024-11-21 11:04 2014-02-12 Show GitHub Exploit DB Packet Storm
291469 - auracms auracms Multiple SQL injection vulnerabilities in AuraCMS 2.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) search parameter to mod/content/content.php or (2) CLI… CWE-89
SQL Injection 		CVE-2014-1401 2024-11-21 11:04 2014-02-12 Show GitHub Exploit DB Packet Storm
291470 - siemens simatic_wincc_open_architecture Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999. CWE-399
 Resource Management Errors 		CVE-2014-1699 2024-11-21 11:04 2014-02-7 Show GitHub Exploit DB Packet Storm