Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203541 5.3 警告
Network 		NTP Project - NTP におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
CWE-410
CVE-2016-7426 2017-01-26 11:43 2016-11-21 Show GitHub Exploit DB Packet Storm
203542 7.5 重要
Network 		WordPress.org - WordPress のマルチサイト WordPress API の wp-includes/ms-functions.php におけるアクセス制限を回避される脆弱性 CWE-310
暗号の問題 		CVE-2017-5493 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203543 8.8 重要
Network 		WordPress.org - WordPress のウィジェット編集のアクセシビリティモード機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-5492 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203544 5.3 警告
Network 		WordPress.org - WordPress の wp-mail.php における投稿の制限を回避される脆弱性 CWE-254
セキュリティ機能 		CVE-2017-5491 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203545 6.1 警告
Network 		WordPress.org - WordPress の wp-includes/class-wp-theme.php のテーマ名のフォールバック機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5490 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203546 8.8 重要
Network 		WordPress.org - WordPress におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-5489 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203547 6.1 警告
Network 		WordPress.org - WordPress の wp-admin/update-core.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5488 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203548 5.3 警告
Network 		WordPress.org - WordPress の REST API の実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2017-5487 2017-01-26 10:13 2017-01-11 Show GitHub Exploit DB Packet Storm
203549 9.8 緊急
Network 		MetalGenix - GeniXCMS の Posts.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-5519 2017-01-26 09:57 2017-01-14 Show GitHub Exploit DB Packet Storm
203550 9.8 緊急
Network 		MetalGenix - GeniXCMS の author.control.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-5517 2017-01-26 09:57 2017-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292701 - ibm rational_clearcase IBM Rational ClearCase 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document contai… NVD-CWE-Other
CVE-2014-3090 2024-11-21 11:07 2014-09-24 Show GitHub Exploit DB Packet Storm
292702 - cobham aviator_700d
aviator_700e 		Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code… CWE-255
Credentials Management 		CVE-2014-2942 2024-11-21 11:07 2014-09-22 Show GitHub Exploit DB Packet Storm
292703 - cisco ios_xr
network_convergence_system_6000
network_convergence_system_6008 		Cisco IOS XR 5.1 and earlier on Network Convergence System 6000 devices allows remote attackers to cause a denial of service (NPU and card hang or reload) via a malformed MPLS packet, aka Bug ID CSCu… CWE-20
 Improper Input Validation  		CVE-2014-3379 2024-11-21 11:07 2014-09-20 Show GitHub Exploit DB Packet Storm
292704 - cisco ios_xr tacacsd in Cisco IOS XR 5.1 and earlier allows remote attackers to cause a denial of service (process reload) via a malformed TACACS+ packet, aka Bug ID CSCum00468. CWE-20
 Improper Input Validation  		CVE-2014-3378 2024-11-21 11:07 2014-09-20 Show GitHub Exploit DB Packet Storm
292705 - cisco ios_xr snmpd in Cisco IOS XR 5.1 and earlier allows remote authenticated users to cause a denial of service (process reload) via a malformed SNMPv2 packet, aka Bug ID CSCun67791. CWE-20
 Improper Input Validation  		CVE-2014-3377 2024-11-21 11:07 2014-09-20 Show GitHub Exploit DB Packet Storm
292706 - cisco ios_xr Cisco IOS XR 5.1 and earlier allows remote attackers to cause a denial of service (process reload) via a malformed RSVP packet, aka Bug ID CSCuq12031. CWE-20
 Improper Input Validation  		CVE-2014-3376 2024-11-21 11:07 2014-09-20 Show GitHub Exploit DB Packet Storm
292707 - cisco cisco_nexus_1000v_intercloud Cross-site scripting (XSS) vulnerability in the vCloud Director component in Cisco Nexus 1000V InterCloud for VMware allows remote attackers to inject arbitrary web script or HTML via an unspecified … CWE-79
Cross-site Scripting 		CVE-2014-3367 2024-11-21 11:07 2014-09-20 Show GitHub Exploit DB Packet Storm
292708 - nongnu gksu GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2886 2024-11-21 11:07 2014-09-18 Show GitHub Exploit DB Packet Storm
292709 - ibm storwize_v7000_unified_software
storwize_unified_v7000 		IBM SONAS and System Storage Storwize V7000 Unified (aka V7000U) 1.3.x and 1.4.x before 1.4.3.4 store the chkauth password in the audit log, which allows local users to obtain sensitive information b… CWE-200
Information Exposure 		CVE-2014-3077 2024-11-21 11:07 2014-09-15 Show GitHub Exploit DB Packet Storm
292710 - cisco unified_communications_manager Cross-site scripting (XSS) vulnerability in the web framework in Cisco Unified Communications Manager (UCM) 9.1(2.10000.28) allows remote authenticated users to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2014-3363 2024-11-21 11:07 2014-09-12 Show GitHub Exploit DB Packet Storm