Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202791 9.8 緊急
Network 		uglify-js project - Node.js 用 uglify-js パッケージにおけるセキュリティメカニズムを回避される脆弱性 CWE-254
セキュリティ機能 		CVE-2015-8857 2017-02-7 11:48 2015-08-25 Show GitHub Exploit DB Packet Storm
202792 6.1 警告
Network 		serve-index project - Node.js 用 serve-index パッケージにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-8856 2017-02-7 11:48 2015-03-14 Show GitHub Exploit DB Packet Storm
202793 7.5 重要
Network 		semver project - Node.js 用 semver パッケージにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8855 2017-02-7 11:48 2015-04-4 Show GitHub Exploit DB Packet Storm
202794 7.5 重要
Network 		Marked project - Node.js 用 marked パッケージにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8854 2017-02-7 11:48 2015-01-23 Show GitHub Exploit DB Packet Storm
202795 7.5 重要
Network 		ms project - Node.js 用 ms パッケージにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8315 2017-02-7 11:48 2015-10-25 Show GitHub Exploit DB Packet Storm
202796 6.1 警告
Network 		validator project - Node.js 用 validator パッケージにおける XSS フィルタを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9772 2017-02-7 11:48 2014-10-28 Show GitHub Exploit DB Packet Storm
202797 6.1 警告
Network 		validator project - Node.js 用 validator モジュールにおける XSS フィルタを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7454 2017-02-7 11:48 2013-07-6 Show GitHub Exploit DB Packet Storm
202798 6.1 警告
Network 		validator project - Node.js 用 validator モジュールにおける XSS フィルタを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7453 2017-02-7 11:48 2013-07-6 Show GitHub Exploit DB Packet Storm
202799 6.1 警告
Network 		validator project - Node.js 用 validator モジュールにおける XSS フィルタを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7452 2017-02-7 11:48 2013-07-6 Show GitHub Exploit DB Packet Storm
202800 6.1 警告
Network 		validator project - Node.js 用 validator モジュールにおける XSS フィルタを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7451 2017-02-7 11:48 2013-07-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345401 - basilix basilix_webmail Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter. NVD-CWE-Other
CVE-2001-1045 2017-12-19 11:29 2001-07-6 Show GitHub Exploit DB Packet Storm
345402 - openbsd openbsd Race condition in OpenBSD VFS allows local users to cause a denial of service (kernel panic) by (1) creating a pipe in one thread and causing another thread to set one of the file descriptors to NULL… NVD-CWE-Other
CVE-2001-1047 2017-12-19 11:29 2001-06-2 Show GitHub Exploit DB Packet Storm
345403 - cccsoftware ccc CCCSoftware CCC PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1050 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
345404 - dark_hart_portal darkportal-unix Dark Hart Portal (darkportal) PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1051 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
345405 - emergenices_personnel_information_system empris Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1052 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
345406 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents u… NVD-CWE-Other
CVE-2001-1057 2017-12-19 11:29 2001-07-30 Show GitHub Exploit DB Packet Storm
345407 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes … NVD-CWE-Other
CVE-2001-1058 2017-12-19 11:29 2002-02-13 Show GitHub Exploit DB Packet Storm
345408 - cisco cbos Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a denial of service via multiple connections to the router on the (1) HTTP or (2) telnet service, which ca… NVD-CWE-Other
CVE-2001-1064 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm
345409 - cisco cbos Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the r… NVD-CWE-Other
CVE-2001-1065 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm
345410 - qualcomm qpopper qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote attackers to determi… NVD-CWE-Other
CVE-2001-1068 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm