Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201631	3.3	低 Local	IBM	-	IBM Integration Bus および WebSphere Message Broker における特定のファイルを操作される脆弱性	CWE-275 パーミッションの問題	CVE-2016-0394	2017-02-16 11:59	2016-11-28	Show	GitHub Exploit DB Packet Storm

201632	7.5	重要 Network	Debian cryptopp project	-	Crypto++ の ASN.1 BER デコーディングルーチンにおけるメモリブロックをゼロにされる脆弱性	CWE-20 不適切な入力確認	CVE-2016-9939	2017-02-15 17:39	2016-12-28	Show	GitHub Exploit DB Packet Storm

201633	7.5	重要 Network	cryptopp project	-	Crypto++ における不正なポインタを解放される脆弱性	CWE-399 リソース管理の問題	CVE-2016-7544	2017-02-15 17:39	2016-10-11	Show	GitHub Exploit DB Packet Storm

201634	5.4	警告 Network	IBM	-	IBM Jazz Reporting Service におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6039	2017-02-15 17:36	2016-12-7	Show	GitHub Exploit DB Packet Storm

201635	5.4	警告 Network	IBM	-	IBM Jazz Foundation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6030	2017-02-15 17:36	2016-12-16	Show	GitHub Exploit DB Packet Storm

201636	4.3	警告 Network	IBM	-	IBM Jazz テクノロジーベース製品における表示権限を持たない作業項目のタイトルを閲覧される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-6028	2017-02-15 17:36	2016-12-16	Show	GitHub Exploit DB Packet Storm

201637	5.4	警告 Network	IBM	-	IBM Jazz Reporting Service における HTML インジェクションの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5897	2017-02-15 17:36	2016-12-7	Show	GitHub Exploit DB Packet Storm

201638	5.4	警告 Network	IBM	-	IBM Jazz Foundation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6061	2017-02-15 16:59	2016-12-16	Show	GitHub Exploit DB Packet Storm

201639	5.4	警告 Network	IBM	-	IBM Jazz Foundation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6054	2017-02-15 16:59	2016-12-6	Show	GitHub Exploit DB Packet Storm

201640	5.4	警告 Network	IBM	-	IBM Jazz Reporting Service におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6047	2017-02-15 16:59	2016-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289201	-	x	xf86-video-intel	Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the interface nam…	CWE-22 Path Traversal	CVE-2014-4910	2024-11-21 11:11	2014-07-24	Show	GitHub Exploit DB Packet Storm

289202	-	tenable	nessus web_ui	The /server/properties resource in Tenable Web UI before 2.3.5 for Nessus 5.2.3 through 5.2.7 allows remote attackers to obtain sensitive information via the token parameter.	CWE-200 Information Exposure	CVE-2014-4980	2024-11-21 11:11	2014-07-23	Show	GitHub Exploit DB Packet Storm

289203	-	citrix	xenserver	Unspecified vulnerability in Citrix XenServer 6.2 Service Pack 1 and earlier allows attackers to cause a denial of service and obtain sensitive information by modifying the guest virtual hard disk (V…	NVD-CWE-noinfo	CVE-2014-4948	2024-11-21 11:11	2014-07-23	Show	GitHub Exploit DB Packet Storm

289204	-	citrix	xenserver	Buffer overflow in the HVM graphics console support in Citrix XenServer 6.2 Service Pack 1 and earlier has unspecified impact and attack vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-4947	2024-11-21 11:11	2014-07-23	Show	GitHub Exploit DB Packet Storm

289205	-	gitlist	gitlist	Repository.php in Gitter, as used in Gitlist, allows remote attackers with commit privileges to execute arbitrary commands via shell metacharacters in a branch name, as demonstrated by a "git checkou…	NVD-CWE-Other	CVE-2014-5023	2024-11-21 11:11	2014-07-22	Show	GitHub Exploit DB Packet Storm

289206	-	drupal	drupal	Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled t…	CWE-79 Cross-site Scripting	CVE-2014-5022	2024-11-21 11:11	2014-07-22	Show	GitHub Exploit DB Packet Storm

289207	-	drupal	drupal	Cross-site scripting (XSS) vulnerability in the Form API in Drupal 6.x before 6.32 and possibly 7.x before 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject a…	CWE-79 Cross-site Scripting	CVE-2014-5021	2024-11-21 11:11	2014-07-22	Show	GitHub Exploit DB Packet Storm

289208	-	drupal	drupal	The File module in Drupal 7.x before 7.29 does not properly check permissions to view files, which allows remote authenticated users with certain permissions to bypass intended restrictions and read …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-5020	2024-11-21 11:11	2014-07-22	Show	GitHub Exploit DB Packet Storm

289209	-	drupal	drupal	The multisite feature in Drupal 6.x before 6.32 and 7.x before 7.29 allows remote attackers to cause a denial of service via a crafted HTTP Host header, related to determining which configuration fil…	CWE-20 Improper Input Validation	CVE-2014-5019	2024-11-21 11:11	2014-07-22	Show	GitHub Exploit DB Packet Storm

289210	-	polarssl debian	polarssl debian_linux	The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersu…	CWE-310 Cryptographic Issues	CVE-2014-4911	2024-11-21 11:11	2014-07-22	Show	GitHub Exploit DB Packet Storm