Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204271 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3008 2016-09-2 12:00 2016-08-16 Show GitHub Exploit DB Packet Storm
204272 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3005 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
204273 3.5
Network 		IBM - IBM Connections におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-2998 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
204274 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2997 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
204275 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2995 2016-09-2 12:00 2016-08-17 Show GitHub Exploit DB Packet Storm
204276 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2956 2016-09-2 12:00 2016-08-16 Show GitHub Exploit DB Packet Storm
204277 5.4 警告
Network 		IBM - IBM Connections の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2954 2016-09-2 12:00 2016-08-16 Show GitHub Exploit DB Packet Storm
204278 6.5 警告
Network 		NetApp - NetApp OnCommand System Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-5047 2016-09-2 11:43 2016-08-30 Show GitHub Exploit DB Packet Storm
204279 6.5 警告
Network 		NetApp - NetApp Clustered Data ONTAP における重要なクラスタおよびテナント情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3064 2016-09-2 11:43 2016-08-30 Show GitHub Exploit DB Packet Storm
204280 5.5 警告
Local 		Debian - Debian Wheezy の linux-image パッケージの "aufs 3.2.x+setfl-debian" パッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7118 2016-09-2 11:17 2016-08-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290341 - xen xen Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, w… CWE-399
 Resource Management Errors 		CVE-2014-1950 2024-11-21 11:05 2014-02-15 Show GitHub Exploit DB Packet Storm
290342 - openstack image_registry_and_delivery_service_\(glance\) OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1 and Icehouse before icehouse-2 logs a URL containing the Swift store backend password when authentication fails and WARN… CWE-255
Credentials Management 		CVE-2014-1948 2024-11-21 11:05 2014-02-15 Show GitHub Exploit DB Packet Storm
290343 - parcimonie_project parcimonie parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via unspecified vectors. CWE-362
Race Condition 		CVE-2014-1921 2024-11-21 11:05 2014-02-15 Show GitHub Exploit DB Packet Storm
290344 - oracle openjdk The unpacker::redirect_stdio function in unpack.cpp in unpack200 in OpenJDK 6, 7, and 8; Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 does not secu… CWE-59
Link Following 		CVE-2014-1876 2024-11-21 11:05 2014-02-11 Show GitHub Exploit DB Packet Storm
290345 - visibility_software cyber_recruiter The user login page in Visibility Software Cyber Recruiter before 8.1.00 generates different responses for invalid password-retrieval attempts depending on which data elements are incorrect, which mi… CWE-200
Information Exposure 		CVE-2014-1931 2024-11-21 11:05 2014-02-11 Show GitHub Exploit DB Packet Storm
290346 - visibility_software cyber_recruiter Visibility Software Cyber Recruiter before 8.1.00 does not use the appropriate combination of HTTPS transport and response headers to prevent access to (1) AppSelfService.aspx and (2) AgencyPortal.as… CWE-200
Information Exposure 		CVE-2014-1930 2024-11-21 11:05 2014-02-11 Show GitHub Exploit DB Packet Storm
290347 - light_speed_gaming mumble
mumblekit 		The (1) opus_packet_get_nb_frames and (2) opus_packet_get_samples_per_frame functions in the client in MumbleKit before commit fd190328a9b24d37382b269a5674b0c0c7a7e36d and Mumble for iOS 1.1 through … CWE-399
 Resource Management Errors 		CVE-2014-1916 2024-11-21 11:05 2014-02-8 Show GitHub Exploit DB Packet Storm
290348 - zeroclipboard_project
redhat 		zeroclipboard
openshift 		Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web … CWE-79
Cross-site Scripting 		CVE-2014-1869 2024-11-21 11:05 2014-02-8 Show GitHub Exploit DB Packet Storm
290349 - doug_poulin command_school_student_management_system Multiple cross-site request forgery (CSRF) vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to hijack the authentication of (1) administrators for requests t… CWE-352
 Origin Validation Error 		CVE-2014-1915 2024-11-21 11:05 2014-02-8 Show GitHub Exploit DB Packet Storm
290350 - doug_poulin command_school_student_management_system Multiple cross-site scripting (XSS) vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to inject arbitrary web script or HTML via the (1) topic parameter to sw… CWE-79
Cross-site Scripting 		CVE-2014-1914 2024-11-21 11:05 2014-02-8 Show GitHub Exploit DB Packet Storm