Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
203531 4.9 警告
Network
シトリックス・システムズ - Citrix XenServer の Linux Foundation xapi における他の管理者のタスクをキャンセルされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-5573 2017-02-14 14:41 2017-01-25 Show GitHub Exploit DB Packet Storm
203532 6.5 警告
Network
シトリックス・システムズ - Citrix XenServer の Linux Foundation xapi におけるホストのデータベースを破損される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-5572 2017-02-14 14:41 2017-01-25 Show GitHub Exploit DB Packet Storm
203533 9.8 緊急
Network
Google - Android におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-8411 2017-02-14 14:39 2016-12-5 Show GitHub Exploit DB Packet Storm
203534 7.5 重要
Network
libarchive - libarchive の lha_read_file_header_1() 関数における境界外メモリアクセスを誘発される脆弱性 CWE-125
境界外読み取り
CVE-2017-5601 2017-02-14 14:19 2017-01-20 Show GitHub Exploit DB Packet Storm
203535 7.8 重要
Local
Palo Alto Networks - Palo Alto Networks Terminal Services Agent における権限を取得される脆弱性 CWE-264
CWE-787
CVE-2017-5329 2017-02-14 14:11 2017-01-26 Show GitHub Exploit DB Packet Storm
203536 7.5 重要
Network
Palo Alto Networks - Palo Alto Networks Terminal Services Agent における任意のユーザになりすまされる脆弱性 CWE-284
不適切なアクセス制御
CVE-2017-5328 2017-02-14 14:11 2017-01-26 Show GitHub Exploit DB Packet Storm
203537 9.8 緊急
Network
Debian
GStreamer
レッドハット
- GStreamer の FLIC デコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-9636 2017-02-14 14:05 2016-11-29 Show GitHub Exploit DB Packet Storm
203538 9.8 緊急
Network
Debian
GStreamer
レッドハット
- GStreamer の FLIC デコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-9635 2017-02-14 14:05 2016-11-29 Show GitHub Exploit DB Packet Storm
203539 9.8 緊急
Network
Debian
GStreamer
レッドハット
- GStreamer の FLIC デコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-9634 2017-02-14 14:05 2016-11-29 Show GitHub Exploit DB Packet Storm
203540 5.5 警告
Local
openSUSE project
libgit2
SUSE
Fedora Project
- libgit2 の commit.c の git_oid_nfmt 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-8569 2017-02-14 13:45 2016-11-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292201 - artifectx xclassified SQL injection vulnerability in demo/ads.php in Artifectx xClassified 1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter. CWE-89
SQL Injection
CVE-2014-4741 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292202 - linux
debian
canonical
linux_kernel
debian_linux
ubuntu_linux
The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows … CWE-362
Race Condition
CVE-2014-4699 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292203 - adobe flash_player
adobe_air
adobe_air_sdk
Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on Windows and OS X and before 11.2.202.394 on Linux, Adobe AIR before 14.0.0.137 on Android, Adobe AIR SDK before 14.0.0.137, and Adob… CWE-352
 Origin Validation Error
CVE-2014-4671 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292204 - custom_banners_project custom_banners Cross-site scripting (XSS) vulnerability in the Custom Banners plugin 1.2.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_banners_registered_name param… CWE-79
Cross-site Scripting
CVE-2014-4724 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292205 - easy_banners_plugin_project easy_banners Cross-site scripting (XSS) vulnerability in the Easy Banners plugin 1.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the name parameter to wp-admin/options-general… CWE-79
Cross-site Scripting
CVE-2014-4723 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292206 - ocsinventory-ng ocsinventory_ng Multiple cross-site scripting (XSS) vulnerabilities in the OCS Reports Web Interface in OCS Inventory NG allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2014-4722 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292207 - foxitsoftware foxit_pdf_sdk_dll Buffer overflow in the FPDFBookmark_GetTitle method in Foxit PDF SDK DLL before 3.1.1.5005 allows context-dependent attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-4646 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292208 - php
debian
php
debian_linux
The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_S… CWE-200
Information Exposure
CVE-2014-4721 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292209 - email\ \ Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service (CPU consumption) via vectors related to "backtracking i… NVD-CWE-Other
CVE-2014-4720 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292210 - yiiframework yiiframework The CDetailView widget in Yii PHP Framework 1.1.14 allows remote attackers to execute arbitrary PHP scripts via vectors related to the value property. CWE-94
Code Injection
CVE-2014-4672 2024-11-21 11:10 2014-07-4 Show GitHub Exploit DB Packet Storm