Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210461 5 警告 ULTRAPOP.JP - i-HTTPD 付属「おまけ BBS」におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7262 2014-12-15 19:15 2014-12-9 Show GitHub Exploit DB Packet Storm
210462 7.5 危険 SAP - SAP SQL Anywhere の .NET Data Provider におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9264 2014-12-15 18:25 2014-12-9 Show GitHub Exploit DB Packet Storm
210463 5 警告 Trihedral Engineering Ltd. - Trihedral Engineering VTScada における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2014-9192 2014-12-15 18:23 2014-12-9 Show GitHub Exploit DB Packet Storm
210464 9 危険 VMware - VMware vCloud Automation Center の VMware Remote Console 機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8373 2014-12-15 18:22 2014-12-9 Show GitHub Exploit DB Packet Storm
210465 4 警告 VMware - AirWatch by VMware On-Premise における任意のテナントから組織の情報および統計データを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8372 2014-12-15 18:21 2014-12-10 Show GitHub Exploit DB Packet Storm
210466 4.3 警告 レッドハット - Red Hat JBoss Portal で使用される JBoss RichFaces におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7852 2014-12-15 18:21 2014-12-9 Show GitHub Exploit DB Packet Storm
210467 2.1 注意 ヒューレット・パッカード - Windows および Linux 上で稼働する HP Smart Update Manager における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2608 2014-12-15 18:20 2014-12-9 Show GitHub Exploit DB Packet Storm
210468 4 警告 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるグリッドデータのアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-6138 2014-12-15 18:19 2014-12-8 Show GitHub Exploit DB Packet Storm
210469 3.5 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6163 2014-12-15 18:18 2014-12-8 Show GitHub Exploit DB Packet Storm
210470 2.1 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-6143 2014-12-15 18:17 2014-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251821 5.5 MEDIUM
Local 		adobe acrobat Acrobat for Edge versions 126.0.2592.81 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerabilit… CWE-125
Out-of-bounds Read 		CVE-2024-39379 2024-10-16 22:38 2024-07-31 Show GitHub Exploit DB Packet Storm
251822 6.8 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could l… CWE-22
Path Traversal 		CVE-2024-39406 2024-10-16 22:37 2024-08-14 Show GitHub Exploit DB Packet Storm
251823 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a… CWE-352
 Origin Validation Error 		CVE-2024-39408 2024-10-16 22:36 2024-08-14 Show GitHub Exploit DB Packet Storm
251824 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a… CWE-352
 Origin Validation Error 		CVE-2024-39409 2024-10-16 22:35 2024-08-14 Show GitHub Exploit DB Packet Storm
251825 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a… CWE-352
 Origin Validation Error 		CVE-2024-39410 2024-10-16 22:34 2024-08-14 Show GitHub Exploit DB Packet Storm
251826 5.4 MEDIUM
Network 		flatpress flatpress FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into the "Add New Entry" section, which allows them to execute arbitrary code in the conte… CWE-79
Cross-site Scripting 		CVE-2024-33209 2024-10-16 22:33 2024-10-3 Show GitHub Exploit DB Packet Storm
251827 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged att… NVD-CWE-noinfo
CVE-2024-39412 2024-10-16 22:33 2024-08-14 Show GitHub Exploit DB Packet Storm
251828 5.5 MEDIUM
Local 		adobe after_effects After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to… CWE-125
Out-of-bounds Read 		CVE-2024-41867 2024-10-16 22:31 2024-09-13 Show GitHub Exploit DB Packet Storm
251829 7.2 HIGH
Network 		ivanti endpoint_manager_cloud_services_appliance Path traversal in Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to bypass restrictions. CWE-22
Path Traversal 		CVE-2024-9381 2024-10-16 22:30 2024-10-9 Show GitHub Exploit DB Packet Storm
251830 7.5 HIGH
Network 		ivanti avalanche Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to leak sensitive information CWE-22
Path Traversal 		CVE-2024-47011 2024-10-16 22:28 2024-10-9 Show GitHub Exploit DB Packet Storm