Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202571 9.8 緊急
Network 		The PHP Group - PHP の Zend/zend_hash.c における任意のコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-5340 2017-01-23 11:40 2017-01-3 Show GitHub Exploit DB Packet Storm
202572 9.8 緊急
Network 		The PHP Group - PHP の ext/spl/spl_observer.c の SplObjectStorage のアンシリアライズの実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-7480 2017-01-23 11:40 2016-10-13 Show GitHub Exploit DB Packet Storm
202573 7.5 重要
Network 		The PHP Group - PHP の Zend/zend_exceptions.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-835
無限ループ 		CVE-2016-7478 2017-01-23 11:40 2016-11-3 Show GitHub Exploit DB Packet Storm
202574 4.8 警告
Network 		web2py - Web2py における反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4807 2017-01-23 10:52 2016-04-4 Show GitHub Exploit DB Packet Storm
202575 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-4298 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
202576 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるヒープを破損される脆弱性 CWE-119
バッファエラー 		CVE-2016-4296 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
202577 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるヒープのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4295 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
202578 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4294 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
202579 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-4292 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
202580 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-4291 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292541 - ibm websphere_portal IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF28, and 8.0 before 8.0.0.1 CF12 does not validate JSP includes, which allows remote attackers to obt… CWE-20
 Improper Input Validation  		CVE-2014-0954 2024-11-21 11:03 2014-05-22 Show GitHub Exploit DB Packet Storm
292542 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in boot_config.jsp in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF28, 7.0 through 7.0.0.2 CF28, and 8.0 before 8.0.0.1 CF12 allow… CWE-79
Cross-site Scripting 		CVE-2014-0952 2024-11-21 11:03 2014-05-22 Show GitHub Exploit DB Packet Storm
292543 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in FilterForm.jsp in IBM WebSphere Portal 7.0 before 7.0.0.2 CF28 and 8.0 before 8.0.0.1 CF12 allows remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2014-0951 2024-11-21 11:03 2014-05-22 Show GitHub Exploit DB Packet Storm
292544 - ibm websphere_portal IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF28, and 8.0 before 8.0.0.1 CF12 allows remote attackers to cause a denial of service (resource consu… CWE-399
 Resource Management Errors 		CVE-2014-0949 2024-11-21 11:03 2014-05-22 Show GitHub Exploit DB Packet Storm
292545 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 6.1.0.0 through 6.1.0.47 and 6.0.2.0 through 6.0.2.43 allows remote attackers to cause a denial of service via crafted TLS traffic, as demonstrated by traffic f… CWE-399
 Resource Management Errors 		CVE-2014-0964 2024-11-21 11:03 2014-05-16 Show GitHub Exploit DB Packet Storm
292546 - ibm infosphere_information_server_metadata_workbench Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Information Server Metadata Workbench 8.1 through 9.1 allows remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error 		CVE-2014-0933 2024-11-21 11:03 2014-05-16 Show GitHub Exploit DB Packet Storm
292547 - ibm websphere_portal Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF27, and 8.0 before 8.0.0.1 CF… CWE-22
Path Traversal 		CVE-2014-0918 2024-11-21 11:03 2014-05-16 Show GitHub Exploit DB Packet Storm
292548 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF27, and 8.0 before 8.0… CWE-79
Cross-site Scripting 		CVE-2014-0917 2024-11-21 11:03 2014-05-16 Show GitHub Exploit DB Packet Storm
292549 - ibm operational_decision_manager The RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 does not send appropriate Cache-Control HTTP headers, whi… CWE-200
Information Exposure 		CVE-2014-0946 2024-11-21 11:03 2014-05-9 Show GitHub Exploit DB Packet Storm
292550 - ibm operational_decision_manager Cross-site scripting (XSS) vulnerability in the RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 allows remote… CWE-79
Cross-site Scripting 		CVE-2014-0945 2024-11-21 11:03 2014-05-9 Show GitHub Exploit DB Packet Storm