Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209051	4.3	警告	IBM	-	IBM WebSphere Service Registry and Repository の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6179	2014-12-25 12:20	2014-12-19	Show	GitHub Exploit DB Packet Storm

209052	3.5	注意	IBM	-	IBM WebSphere Service Registry and Repository の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6132	2014-12-25 12:19	2014-12-19	Show	GitHub Exploit DB Packet Storm

209053	4.3	警告	NetIQ	-	NetIQ Access Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9412	2014-12-24 18:44	2014-12-15	Show	GitHub Exploit DB Packet Storm

209054	6.8	警告	NetIQ	-	NetIQ Access Manager の管理コンソールサーバの nps/servlet/webacc におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-5217	2014-12-24 18:43	2014-12-15	Show	GitHub Exploit DB Packet Storm

209055	4.3	警告	NetIQ	-	NetIQ Access Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5216	2014-12-24 18:43	2014-12-15	Show	GitHub Exploit DB Packet Storm

209056	4	警告	NetIQ	-	NetIQ Access Manager におけるサービスアカウントのパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2014-5215	2014-12-24 18:43	2014-12-15	Show	GitHub Exploit DB Packet Storm

209057	4	警告	NetIQ	-	NetIQ Access Manager の管理コンソールサーバの iManager の nps/servlet/webacc における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-5214	2014-12-24 18:42	2014-07-1	Show	GitHub Exploit DB Packet Storm

209058	3.5	注意	IBM	-	IBM InfoSphere Master Data Management Server for Product Information Management および InfoSphere Master Data Management - Collaborative Edition の Collaboration Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8899	2014-12-24 18:17	2014-12-12	Show	GitHub Exploit DB Packet Storm

209059	3.5	注意	IBM	-	IBM InfoSphere Master Data Management Server for Product Information Management および InfoSphere Master Data Management - Collaborative Edition の Collaboration Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8898	2014-12-24 18:17	2014-12-12	Show	GitHub Exploit DB Packet Storm

209060	3.5	注意	IBM	-	IBM InfoSphere Master Data Management Server for Product Information Management および InfoSphere Master Data Management - Collaborative Edition の Collaboration Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8897	2014-12-24 18:17	2014-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252131	5.9	MEDIUM Network	syracom	secure_login	The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows remote attackers to easily brute-force the 2FA PIN via the plugins/servlet/twofactor/public/pinvalidat…	NVD-CWE-noinfo	CVE-2024-48942	2024-10-12 06:36	2024-10-10	Show	GitHub Exploit DB Packet Storm

252132	5.4	MEDIUM Network	syracom	secure_login	The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows remote attackers to bypass 2FA by interacting with the /rest endpoint of Jira, Confluence, or Bitbucke…	NVD-CWE-noinfo	CVE-2024-48941	2024-10-12 06:36	2024-10-10	Show	GitHub Exploit DB Packet Storm

252133	-		-	-	An issue was discovered in Trusted Firmware-M through 2.1.0. User provided (and controlled) mailbox messages contain a pointer to a list of input arguments (in_vec) and output arguments (out_vec). Th…	-	CVE-2024-45746	2024-10-12 06:36	2024-10-10	Show	GitHub Exploit DB Packet Storm

252134	-		-	-	FydeOS for PC 17.1 R114, FydeOS for VMware 17.0 R114, FydeOS for You 17.1 R114, and OpenFyde R114 were discovered to be configured with the root password saved as a wildcard. This allows attackers to…	-	CVE-2024-25825	2024-10-12 06:36	2024-10-10	Show	GitHub Exploit DB Packet Storm

252135	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2024-38365. Reason: This record is a duplicate of CVE-2024-38365. Notes: All CVE users should reference CVE-2024-38365 instead of this rec…	-	CVE-2024-36051	2024-10-12 06:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

252136	-		-	-	Improper access control validation in firmware of some Solidigm DC Products may allow an attacker with physical access to gain unauthorized access or an attacker with local access to potentially enab…	-	CVE-2024-47975	2024-10-12 05:15	2024-10-8	Show	GitHub Exploit DB Packet Storm

252137	4.3	MEDIUM Network	siemens	sinec_security_monitor	A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly validate that user input complies with a list of allowed valu…	NVD-CWE-Other	CVE-2024-47565	2024-10-12 05:05	2024-10-8	Show	GitHub Exploit DB Packet Storm

252138	5.3	MEDIUM Network	siemens	sinec_security_monitor	A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly validate a file path that is supplied to an endpoint intended…	CWE-22 Path Traversal	CVE-2024-47563	2024-10-12 05:05	2024-10-8	Show	GitHub Exploit DB Packet Storm

252139	8.8	HIGH Local	siemens	sinec_security_monitor	A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly neutralize special elements in user input to the ```ssmctl-cl…	CWE-77 Command Injection	CVE-2024-47562	2024-10-12 05:04	2024-10-8	Show	GitHub Exploit DB Packet Storm

252140	9.9	CRITICAL Network	siemens	sinec_security_monitor	A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly validate user input to the ```ssmctl-client``` command. This…	CWE-88 Argument Injection	CVE-2024-47553	2024-10-12 05:04	2024-10-8	Show	GitHub Exploit DB Packet Storm