Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206511 7.5 危険 CloudBees - CloudBees Jenkins における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-3666 2016-02-4 16:48 2014-10-1 Show GitHub Exploit DB Packet Storm
206512 6 警告 CloudBees - CloudBees Jenkins における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3663 2016-02-4 16:48 2014-10-1 Show GitHub Exploit DB Packet Storm
206513 5 警告 CloudBees - CloudBees Jenkins におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2014-3662 2016-02-4 16:48 2014-10-1 Show GitHub Exploit DB Packet Storm
206514 4.3 警告 CloudBees - CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3681 2016-02-4 16:48 2014-10-1 Show GitHub Exploit DB Packet Storm
206515 4 警告 CloudBees - CloudBees Jenkins におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-3664 2016-02-4 16:48 2014-10-1 Show GitHub Exploit DB Packet Storm
206516 5 警告 サン・マイクロシステムズ
日立
オラクル		 - 複数の Oracle Java 製品 における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4872 2016-02-3 14:55 2015-10-20 Show GitHub Exploit DB Packet Storm
206517 10 危険 IBM - 複数の特定の IBM 製品のシリアル化されたオブジェクトのインターフェースにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2015-7450 2016-02-3 14:40 2015-12-10 Show GitHub Exploit DB Packet Storm
206518 5.7 警告 ISC, Inc. - ISC DHCP にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8605 2016-02-2 16:25 2016-01-12 Show GitHub Exploit DB Packet Storm
206519 5 警告 xmlsoft.org
Canonical
レッドハット		 - libxml2 の parser.c の xmlParseXMLDecl 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2015-8317 2016-02-2 16:20 2015-06-29 Show GitHub Exploit DB Packet Storm
206520 7.2 危険 Debian - Debian の fuse パッケージの不特定の udev ルールにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1233 2016-02-2 15:25 2016-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347871 - qualiteam x-cart X-Cart 3.4.3 allows remote attackers to gain sensitive information via a mode parameter with (1) phpinfo command or (2) perlinfo command. NVD-CWE-Other
CVE-2004-0242 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347872 - web_crossing_inc web_crossing Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service (crash) by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero. NVD-CWE-Other
CVE-2004-0245 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347873 - laurent_adda les_commentaires Multiple PHP remote file inclusion vulnerabilities in (1) fonctions.lib.php, (2) derniers_commentaires.php, and (3) admin.php in Les Commentaires 2.0 allow remote attackers to execute arbitrary PHP c… NVD-CWE-Other
CVE-2004-0246 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347874 - cauldron chaser_client
chaser_server 		The client and server of Chaser 1.50 and earlier allow remote attackers to cause a denial of service (crash via exception) via a UDP packet with a length field that is greater than the actual data le… NVD-CWE-Other
CVE-2004-0247 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347875 - phpx phpx Cross-site scripting vulnerability (XSS) in PHPX 3.2.3 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into (1) keywords argument of main.inc.… NVD-CWE-Other
CVE-2004-0248 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347876 - phpx phpx This vulnerability is addressed in the following product release: PHPX, PHPX, 3.2.4 NVD-CWE-Other
CVE-2004-0248 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347877 - phpx phpx PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID. NVD-CWE-Other
CVE-2004-0249 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347878 - photopost photopost_php_pro SQL injection vulnerability in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain privileges via (1) the product parameter in showproduct.php or (2) the cat parameter in showcat.php. NVD-CWE-Other
CVE-2004-0250 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347879 - rxgoogle.cgi rxgoogle.cgi Cross-site scripting (XSS) vulnerability in rxgoogle.cgi allows remote attackers to execute arbitrary script as other users via the query parameter. NVD-CWE-Other
CVE-2004-0251 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
347880 - typsoft typsoft_ftp_server TYPSoft FTP Server 1.10 allows remote attackers to cause a denial of service (CPU consumption) via an empty USER name. NVD-CWE-Other
CVE-2004-0252 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm