Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209161 4.3 警告 IBM - 複数の IBM 製品におけるセッションをハイジャックされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6176 2014-12-19 14:26 2014-12-12 Show GitHub Exploit DB Packet Storm
209162 3.5 注意 MIT Kerberos - MIT Kerberos 5 の plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-5354 2014-12-19 14:12 2014-11-19 Show GitHub Exploit DB Packet Storm
209163 10 危険 Zoho Corporation - ZOHO ManageEngine NetFlow Analyzer の CollectorConfInfoServlet サーブレットにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-9373 2014-12-19 13:51 2014-08-18 Show GitHub Exploit DB Packet Storm
209164 6.4 警告 Zoho Corporation - ZOHO ManageEngine Password Manager Pro の UploadAccountActivities サーブレットにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-9372 2014-12-19 13:50 2014-08-18 Show GitHub Exploit DB Packet Storm
209165 10 危険 Zoho Corporation - ZOHO ManageEngine Desktop Central MSP の NativeAppServlet における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9371 2014-12-19 13:50 2014-08-18 Show GitHub Exploit DB Packet Storm
209166 6.4 警告 Docker - Docker におけるパストラバーサル攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9358 2014-12-19 13:31 2014-12-11 Show GitHub Exploit DB Packet Storm
209167 10 危険 Docker - Docker におけるルート権限で任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9357 2014-12-19 13:31 2014-12-11 Show GitHub Exploit DB Packet Storm
209168 4.3 警告 Splunk - Splunk Enterprise の Splunk Web の Dashboard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5466 2014-12-19 12:08 2014-11-19 Show GitHub Exploit DB Packet Storm
209169 4 警告 IBM - IBM Business Process Manager の Process Center の エクスポート機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-6182 2014-12-19 11:49 2014-12-12 Show GitHub Exploit DB Packet Storm
209170 6.5 警告 IBM - IBM Business Process Manager のインポート/エクスポート機能におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4844 2014-12-19 11:49 2014-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252161 6.1 MEDIUM
Network 		michaeluno auto_amazon_links The Auto Amazon Links – Amazon Associates Affiliate Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL… CWE-79
Cross-site Scripting 		CVE-2024-9349 2024-10-11 05:25 2024-10-4 Show GitHub Exploit DB Packet Storm
252162 9.8 CRITICAL
Network 		dlink dir-860l_firmware In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can caus… CWE-120
Classic Buffer Overflow 		CVE-2024-42812 2024-10-11 05:18 2024-08-20 Show GitHub Exploit DB Packet Storm
252163 6.1 MEDIUM
Network 		angeljudesuarez placement_management_system itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php. CWE-79
Cross-site Scripting 		CVE-2024-46300 2024-10-11 03:52 2024-10-8 Show GitHub Exploit DB Packet Storm
252164 4.9 MEDIUM
Network 		google android In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is … CWE-125
Out-of-bounds Read 		CVE-2024-20102 2024-10-11 03:20 2024-10-7 Show GitHub Exploit DB Packet Storm
252165 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access to midibuf There can be concurrent accesses to line6 midibuf from both the URB completion callback a… CWE-362
Race Condition 		CVE-2024-44954 2024-10-11 03:02 2024-09-5 Show GitHub Exploit DB Packet Storm
252166 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Don't refer to dc_sink in is_dsc_need_re_compute [Why] When unplug one of monitors connected after mst hub, enco… CWE-476
 NULL Pointer Dereference 		CVE-2024-44955 2024-10-11 02:57 2024-09-5 Show GitHub Exploit DB Packet Storm
252167 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: sched/smt: Fix unbalance sched_smt_present dec/inc I got the following warn report while doing stress test: jump label: negative… NVD-CWE-noinfo
CVE-2024-44958 2024-10-11 02:56 2024-09-5 Show GitHub Exploit DB Packet Storm
252168 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tracefs: Use generic inode RCU for synchronizing freeing With structure layout randomization enabled for 'struct inode' we need t… NVD-CWE-noinfo
CVE-2024-44959 2024-10-11 02:54 2024-09-5 Show GitHub Exploit DB Packet Storm
252169 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ata: pata_macio: Fix DMA table overflow Kolbjørn and Jonáš reported that their 32-bit PowerMacs were crashing in pata-macio since… NVD-CWE-noinfo
CVE-2024-44976 2024-10-11 02:50 2024-09-5 Show GitHub Exploit DB Packet Storm
252170 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix missing workqueue destroy in xe_gt_pagefault On driver reload we never free up the memory for the pagefault and acces… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-44979 2024-10-11 02:44 2024-09-5 Show GitHub Exploit DB Packet Storm