Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201811 9.8 緊急
Network 		The Tcpdump Group - tcpdump の STP パーサの print-stp.c および複数の関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7940 2017-02-10 11:52 2016-09-9 Show GitHub Exploit DB Packet Storm
201812 9.8 緊急
Network 		The Tcpdump Group - tcpdump の GRE パーサの print-gre.c および複数の関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7939 2017-02-10 11:52 2016-09-9 Show GitHub Exploit DB Packet Storm
201813 9.8 緊急
Network 		The Tcpdump Group - tcpdump の ZeroMQ パーサの print-zeromq.c:zmtp1_print_frame() における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-7938 2017-02-10 11:52 2016-09-9 Show GitHub Exploit DB Packet Storm
201814 9.8 緊急
Network 		The Tcpdump Group - tcpdump の VAT パーサの print-udp.c:vat_print() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7937 2017-02-10 11:52 2016-09-9 Show GitHub Exploit DB Packet Storm
201815 9.8 緊急
Network 		The Tcpdump Group - tcpdump の UDP パーサの print-udp.c:udp_print() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7936 2017-02-10 11:52 2016-09-9 Show GitHub Exploit DB Packet Storm
201816 9.8 緊急
Network 		The Tcpdump Group - tcpdump の RTP パーサの print-udp.c:rtp_print() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7935 2017-02-10 11:52 2016-09-9 Show GitHub Exploit DB Packet Storm
201817 9.8 緊急
Network 		The Tcpdump Group - tcpdump の RTCP パーサのprint-udp.c:rtcp_print() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7934 2017-02-10 11:51 2016-09-9 Show GitHub Exploit DB Packet Storm
201818 9.8 緊急
Network 		The Tcpdump Group - tcpdump の PPP パーサの print-ppp.c:ppp_hdlc_if_print() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7933 2017-02-10 11:51 2016-09-9 Show GitHub Exploit DB Packet Storm
201819 9.8 緊急
Network 		The Tcpdump Group - tcpdump の PIM パーサの print-pim.c:pimv2_check_checksum() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7932 2017-02-10 11:51 2016-09-9 Show GitHub Exploit DB Packet Storm
201820 9.8 緊急
Network 		The Tcpdump Group - tcpdump の MPLS パーサの print-mpls.c:mpls_print() におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7931 2017-02-10 11:51 2016-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289211 - limesurvey limesurvey Incomplete blacklist vulnerability in the autoEscape function in common_helper.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to conduct cross-site scripting (XSS) attacks via the GBK c… NVD-CWE-Other
CVE-2014-5018 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
289212 - limesurvey limesurvey SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx par… CWE-89
SQL Injection 		CVE-2014-5017 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
289213 - limesurvey limesurvey Multiple cross-site scripting (XSS) vulnerabilities in LimeSurvey 2.05+ Build 140618 allow remote attackers to inject arbitrary web script or HTML via (1) the pid attribute to the getAttribute_json f… CWE-79
Cross-site Scripting 		CVE-2014-5016 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
289214 - joomlaboat com_youtubegallery Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbit… CWE-89
SQL Injection 		CVE-2014-4960 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
289215 - opensuse
phpmyadmin 		opensuse
phpmyadmin 		server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x before 4.2.6 allows remote authenticated users to bypass intended access restrictions and read the MySQL user list via a viewUsers… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4987 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
289216 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 allow remote authenticated users to inject ar… CWE-79
Cross-site Scripting 		CVE-2014-4986 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
289217 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList function in libraries/rte/rte_list.lib.php in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 all… CWE-79
Cross-site Scripting 		CVE-2014-4955 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
289218 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLinks function in libraries/structure.lib.php in phpMyAdmin 4.2.x before 4.2.6 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2014-4954 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
289219 - linux
suse
opensuse
redhat
debian 		linux_kernel
linux_enterprise_desktop
linux_enterprise_server
opensuse
enterprise_linux_server_aus
debian_linux 		The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket. CWE-269
 Improper Privilege Management 		CVE-2014-4943 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
289220 - sonicwall scrutinizer Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new … CWE-89
SQL Injection 		CVE-2014-4977 2024-11-21 11:11 2014-07-16 Show GitHub Exploit DB Packet Storm