Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204411 5.9 警告
Network
F5 Networks - BIG-IP システムのバーチャルサーバにおける Traffic Management Microkernel を再起動される脆弱性 CWE-20
不適切な入力確認
CVE-2016-9247 2017-01-23 11:45 2016-12-15 Show GitHub Exploit DB Packet Storm
204412 9.8 緊急
Network
The PHP Group - PHP の Zend/zend_hash.c における任意のコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2017-5340 2017-01-23 11:40 2017-01-3 Show GitHub Exploit DB Packet Storm
204413 9.8 緊急
Network
The PHP Group - PHP の ext/spl/spl_observer.c の SplObjectStorage のアンシリアライズの実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2016-7480 2017-01-23 11:40 2016-10-13 Show GitHub Exploit DB Packet Storm
204414 7.5 重要
Network
The PHP Group - PHP の Zend/zend_exceptions.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-835
無限ループ
CVE-2016-7478 2017-01-23 11:40 2016-11-3 Show GitHub Exploit DB Packet Storm
204415 4.8 警告
Network
web2py - Web2py における反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-4807 2017-01-23 10:52 2016-04-4 Show GitHub Exploit DB Packet Storm
204416 7.8 重要
Local
Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2016-4298 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
204417 7.8 重要
Local
Hancom Inc. - Hancom Office 2014 におけるヒープを破損される脆弱性 CWE-119
バッファエラー
CVE-2016-4296 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
204418 7.8 重要
Local
Hancom Inc. - Hancom Office 2014 におけるヒープのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-4295 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
204419 7.8 重要
Local
Hancom Inc. - Hancom Office 2014 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-4294 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
204420 7.8 重要
Local
Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2016-4292 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291851 - polarssl
debian
polarssl
debian_linux
The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersu… CWE-310
Cryptographic Issues
CVE-2014-4911 2024-11-21 11:11 2014-07-22 Show GitHub Exploit DB Packet Storm
291852 - limesurvey limesurvey Incomplete blacklist vulnerability in the autoEscape function in common_helper.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to conduct cross-site scripting (XSS) attacks via the GBK c… NVD-CWE-Other
CVE-2014-5018 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291853 - limesurvey limesurvey SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx par… CWE-89
SQL Injection
CVE-2014-5017 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291854 - limesurvey limesurvey Multiple cross-site scripting (XSS) vulnerabilities in LimeSurvey 2.05+ Build 140618 allow remote attackers to inject arbitrary web script or HTML via (1) the pid attribute to the getAttribute_json f… CWE-79
Cross-site Scripting
CVE-2014-5016 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291855 - joomlaboat com_youtubegallery Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbit… CWE-89
SQL Injection
CVE-2014-4960 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291856 - opensuse
phpmyadmin
opensuse
phpmyadmin
server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x before 4.2.6 allows remote authenticated users to bypass intended access restrictions and read the MySQL user list via a viewUsers… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-4987 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291857 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 allow remote authenticated users to inject ar… CWE-79
Cross-site Scripting
CVE-2014-4986 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291858 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList function in libraries/rte/rte_list.lib.php in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 all… CWE-79
Cross-site Scripting
CVE-2014-4955 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291859 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLinks function in libraries/structure.lib.php in phpMyAdmin 4.2.x before 4.2.6 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting
CVE-2014-4954 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291860 - linux
suse
opensuse
redhat
debian
linux_kernel
linux_enterprise_desktop
linux_enterprise_server
opensuse
enterprise_linux_server_aus
debian_linux
The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket. CWE-269
 Improper Privilege Management
CVE-2014-4943 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm