Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201211 6.3 警告
Network 		International Digital Publishing Forum - EpubCheck に XML 外部実体参照 (XXE) に関する脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-9487 2016-12-15 16:42 2016-12-13 Show GitHub Exploit DB Packet Storm
201212 6.1 警告
Network 		Dotclear - Dotclear のメディアマネージャにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6523 2016-12-15 15:39 2016-08-5 Show GitHub Exploit DB Packet Storm
201213 6.5 警告
Network 		Pivotal Software, Inc.
オラクル		 - RabbitMQ の管理プラグインにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8786 2016-12-15 15:13 2015-12-29 Show GitHub Exploit DB Packet Storm
201214 9.8 緊急
Network 		The phpMyAdmin Project - phpMyAdmin における CSRF トークンがリターン URL から削除されない脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-9866 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
201215 9.8 緊急
Network 		The phpMyAdmin Project - phpMyAdmin における PMA_safeUnserialize() 関数による保護を回避される脆弱性 CWE-254
CWE-502
CVE-2016-9865 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
201216 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9864 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
201217 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9863 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
201218 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin における BBCode インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2016-9862 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
201219 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin における URL ホワイトリストによる保護を回避される脆弱性 CWE-254
セキュリティ機能 		CVE-2016-9861 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
201220 5.9 警告
Network 		The phpMyAdmin Project - phpMyAdmin におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9860 2016-12-15 14:58 2016-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290311 - openstack
opensuse 		horizon
opensuse 		Cross-site scripting (XSS) vulnerability in the Horizon Orchestration dashboard in OpenStack Dashboard (aka Horizon) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote attackers to… CWE-79
Cross-site Scripting 		CVE-2014-0157 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290312 - haxx curl
libcurl 		cURL and libcurl 7.1 before 7.36.0, when using the OpenSSL, axtls, qsossl or gskit libraries for TLS, recognize a wildcard IP address in the subject's Common Name (CN) field of an X.509 certificate, … CWE-310
Cryptographic Issues 		CVE-2014-0139 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290313 - haxx
debian 		curl
libcurl
debian_linux 		The default configuration in cURL and libcurl 7.10.6 before 7.36.0 re-uses (1) SCP, (2) SFTP, (3) POP3, (4) POP3S, (5) IMAP, (6) IMAPS, (7) SMTP, (8) SMTPS, (9) LDAP, and (10) LDAPS connections, whic… CWE-287
Improper Authentication 		CVE-2014-0138 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290314 - openstack python-keystoneclient The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authen… CWE-255
Credentials Management 		CVE-2014-0105 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290315 - xangati xangati_software_release
xangati_xnr 		Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a gui_input_test.pl params parameter to servlet/Installer. CWE-78
OS Command  		CVE-2014-0359 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290316 - xangati xangati_software_release
xangati_xnr 		Multiple directory traversal vulnerabilities in Xangati XSR before 11 and XNR before 7 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the file parameter in a getUpgradeStatu… CWE-22
Path Traversal 		CVE-2014-0358 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290317 - amtelco misecuremessages Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request… CWE-287
Improper Authentication 		CVE-2014-0357 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290318 - zyxel n300_netusb_nbg-419n_firmware
n300_netusb_nbg-419n 		The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 allows remote attackers to execute arbitrary code via shell metacharacters in input to the (1) detectWeather, (2) set_langua… CWE-78
OS Command  		CVE-2014-0356 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290319 - zyxel n300_netusb_nbg-419n_firmware
n300_netusb_nbg-419n 		Multiple stack-based buffer overflows on the ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 allow man-in-the-middle attackers to execute arbitrary code via (1) a long temp att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0355 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm
290320 - zyxel n300_netusb_nbg-419n_firmware
n300_netusb_nbg-419n 		The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 has a hardcoded password of qweasdzxc for an unspecified account, which allows remote attackers to obtain index.asp login ac… CWE-255
Credentials Management 		CVE-2014-0354 2024-11-21 11:01 2014-04-15 Show GitHub Exploit DB Packet Storm