Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210761 5 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアの SSL VPN の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-3407 2014-12-1 15:43 2014-11-26 Show GitHub Exploit DB Packet Storm
210762 5 警告 Paid Memberships Pro - WordPress 用 Paid Memberships Pro プラグインの services/getfile.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-8801 2014-12-1 15:21 2014-11-14 Show GitHub Exploit DB Packet Storm
210763 5 警告 DukaPress - WordPress 用 DukaPress プラグインの php/dp-functions.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-8799 2014-12-1 15:16 2014-11-12 Show GitHub Exploit DB Packet Storm
210764 3.5 注意 apptha.com - WordPress 用 Apptha WordPress Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9098 2014-12-1 15:08 2014-07-15 Show GitHub Exploit DB Packet Storm
210765 7.5 危険 apptha.com - WordPress 用 Apptha WordPress Video Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9097 2014-12-1 14:39 2014-07-23 Show GitHub Exploit DB Packet Storm
210766 7.5 危険 Pligg - Pligg CMS の recover.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9096 2014-12-1 14:27 2014-07-31 Show GitHub Exploit DB Packet Storm
210767 7.5 危険 ラリタン・ジャパン株式会社 - Raritan Power IQ における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9095 2014-12-1 14:17 2014-07-16 Show GitHub Exploit DB Packet Storm
210768 7.5 危険 The Document Foundation - LibreOffice におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9093 2014-12-1 13:52 2014-11-19 Show GitHub Exploit DB Packet Storm
210769 4.3 警告 Digital Zoom Studio - WordPress 用 Digital Zoom Studio Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9094 2014-12-1 13:32 2014-05-8 Show GitHub Exploit DB Packet Storm
210770 7.2 危険 Wibu-Systems AG - Wibu-Systems CodeMeter Runtime における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8419 2014-12-1 11:56 2014-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252091 5.5 MEDIUM
Local 		- - The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H series uOS firmware version V1.21 and earlier versions could allow an authenticated local attacker to gain … CWE-522
 Insufficiently Protected Credentials 		CVE-2024-9677 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252092 - - - The AWS ALB Route Directive Adapter For Istio repo https://github.com/awslabs/aws-alb-route-directive-adapter-for-istio/tree/master provides an OIDC authentication mechanism that was integrated int… - CVE-2024-8901 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252093 - - - The Amazon.ApplicationLoadBalancer.Identity.AspNetCore repo https://github.com/awslabs/aws-alb-identity-aspnetcore#validatetokensignature contains Middleware that can be used in conjunction with th… - CVE-2024-10125 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252094 - - - A vulnerability in the Web Interface component of Mitel MiCollab through 9.8 SP1 (9.8.1.5) and MiVoice Business Solution Virtual Instance (MiVB SVI) through 1.0.0.27 could allow an authenticated atta… - CVE-2024-41714 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252095 - - - A vulnerability in the NuPoint Unified Messaging (NPM) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a path traversal attack, due to i… - CVE-2024-41713 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252096 - - - A vulnerability in the Web Conferencing Component of Mitel MiCollab through 9.8.1.5 could allow an authenticated attacker to conduct a command injection attack, due to insufficient validation of user… - CVE-2024-41712 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252097 - - - Vilo 5 Mesh WiFi System <= 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system. - CVE-2024-40091 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252098 - - - Vilo 5 Mesh WiFi System <= 5.16.1.33 is vulnerable to Information Disclosure. An information leak in the Boa webserver allows remote, unauthenticated attackers to leak memory addresses of uClibc and … - CVE-2024-40090 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252099 - - - A Command Injection vulnerability in Vilo 5 Mesh WiFi System <= 5.16.1.33 allows remote, authenticated attackers to execute arbitrary code by injecting shell commands into the name of the Vilo device. - CVE-2024-40089 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm
252100 - - - A Directory Traversal vulnerability in the Boa webserver of Vilo 5 Mesh WiFi System <= 5.16.1.33 allows remote, unauthenticated attackers to enumerate the existence and length of any file in the file… - CVE-2024-40088 2024-10-24 00:12 2024-10-22 Show GitHub Exploit DB Packet Storm