Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201431 9.3 危険 AVM - AVM FRITZ!OS におけるシンボリックリンクを作成される脆弱性 CWE-310
暗号の問題 		CVE-2014-8886 2016-01-14 15:50 2014-10-14 Show GitHub Exploit DB Packet Storm
201432 9.3 危険 ジュニパーネットワークス - Juniper ScreenOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-7754 2016-01-14 15:46 2015-12-17 Show GitHub Exploit DB Packet Storm
201433 4.3 警告 SSP Europe GmbH - Secure Data Space SDS-API におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7706 2016-01-14 15:46 2015-10-13 Show GitHub Exploit DB Packet Storm
201434 2.1 注意 Huawei - Huawei Document Security Management のソフトウェアにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-8303 2016-01-14 15:42 2015-11-18 Show GitHub Exploit DB Packet Storm
201435 7.1 危険 Huawei - Huawei ALE および GEM-703L スマートフォンのソフトウェアの JPU ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8226 2016-01-14 15:42 2015-12-10 Show GitHub Exploit DB Packet Storm
201436 7.1 危険 Huawei - Huawei ALE および GEM-703L スマートフォンのソフトウェアの JPU ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8225 2016-01-14 15:42 2015-12-10 Show GitHub Exploit DB Packet Storm
201437 5 警告 IBM - IBM WebSphere Message Broker および IBM Integration Bus における重要な HTTP サーバ情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-7399 2016-01-14 15:37 2015-11-18 Show GitHub Exploit DB Packet Storm
201438 5.8 警告 IBM - IBM WebSphere Commerce の Aurora スターター・ストアにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2015-7397 2016-01-14 15:37 2015-09-29 Show GitHub Exploit DB Packet Storm
201439 7.2 危険 Zarafa
Fedora Project		 - Zarafa Collaboration Platform の zarafa-autorespond における権限を取得される脆弱性 CWE-59
リンク解釈の問題 		CVE-2015-6566 2016-01-14 15:35 2015-08-10 Show GitHub Exploit DB Packet Storm
201440 7.5 危険 LibTIFF - LibTIFF の bmp2tiff の tif_packbits.c 内の PackBitsPreEncode 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-8668 2016-01-14 15:00 2015-12-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307081 - ibm websphere_application_server The JAX-RPC WS-Security runtime in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.23 and 7.0 before 7.0.0.3, when APAR PK41002 is installed, does not p… CWE-20
 Improper Input Validation  		CVE-2009-1172 2014-10-24 14:37 2009-03-31 Show GitHub Exploit DB Packet Storm
307082 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.3 uses weak permissions (777) for files associated with unspecified "interim fixes," which allows attackers to modify files that would not have… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-1173 2014-10-24 14:37 2009-03-31 Show GitHub Exploit DB Packet Storm
307083 - oracle database_server Unspecified vulnerability in the Workspace Manager component in Oracle Database 11.1.0.6, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect co… NVD-CWE-noinfo
CVE-2009-0972 2014-09-9 02:56 2009-04-15 Show GitHub Exploit DB Packet Storm
307084 - mp3info mp3info Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this … NVD-CWE-Other
CVE-2006-2465 2014-05-31 11:22 2006-05-19 Show GitHub Exploit DB Packet Storm
307085 - emc avamar Unspecified vulnerability in EMC Avamar 4.1.x and 5.0 before SP1 allows remote attackers to cause a denial of service (gsan service hang) by sending a crafted message using TCP. NVD-CWE-noinfo
CVE-2010-1919 2014-05-5 13:43 2010-05-29 Show GitHub Exploit DB Packet Storm
307086 - oracle application_server Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTM… NVD-CWE-noinfo
CVE-2009-1011 2014-01-14 12:46 2009-04-15 Show GitHub Exploit DB Packet Storm
307087 - perl perl Integer overflow in the regular expression engine in Perl 5.8.x allows context-dependent attackers to cause a denial of service (stack consumption and application crash) by matching a crafted regular… CWE-189
Numeric Errors 		CVE-2010-1158 2013-10-24 12:22 2010-04-21 Show GitHub Exploit DB Packet Storm
307088 - larry_wall perl Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build dir… NVD-CWE-Other
CVE-2005-4278 2013-10-24 10:56 2005-12-16 Show GitHub Exploit DB Packet Storm
307089 - bluecoat proxysg_va-10
proxysg_va-15
proxysg_va-20
proxysg_va-5
proxysg
proxysg_sg210-10
proxysg_sg210-25
proxysg_sg210-5
proxysg_sg510-10
proxysg_sg510-20
proxysg_sg510-25
pr… 		Blue Coat ProxySG, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, … CWE-16
Configuration 		CVE-2009-1211 2013-10-8 01:17 2009-04-1 Show GitHub Exploit DB Packet Storm
307090 - argosoft argosoft_mail_server ArGoSoft Mail Server 1.8.1.7 and earlier allows a webmail user to cause a denial of service (CPU consumption) by forwarding the email to the user while autoresponse is enabled, which creates an infin… NVD-CWE-Other
CVE-2002-1005 2013-10-1 10:22 2002-10-4 Show GitHub Exploit DB Packet Storm