Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210861	6.5	警告	Dolibarr ERP & CRM	-	Dolibarr ERP/CRM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-7137	2014-11-25 16:39	2014-10-4	Show	GitHub Exploit DB Packet Storm

210862	6.8	警告	Huawei	-	複数の Huawei 製品におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-5395	2014-11-25 16:18	2014-08-6	Show	GitHub Exploit DB Packet Storm

210863	6.8	警告	オラクル	-	Oracle Database Server の JPublisher コンポーネントにおける機密性に影響のある脆弱性	CWE-200 情報漏えい	CVE-2014-6477	2014-11-25 15:56	2014-11-6	Show	GitHub Exploit DB Packet Storm

210864	5	警告	Wireshark	-	Wireshark の TN5250 ディセクタの epan/dissectors/packet-tn5250.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-8714	2014-11-25 15:50	2014-11-12	Show	GitHub Exploit DB Packet Storm

210865	5	警告	Wireshark	-	Wireshark の NCP ディセクタの epan/dissectors/packet-ncp2222.inc におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8713	2014-11-25 15:49	2014-11-12	Show	GitHub Exploit DB Packet Storm

210866	5	警告	Wireshark	-	Wireshark の NCP ディセクタの epan/dissectors/packet-ncp2222.inc におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-8712	2014-11-25 15:49	2014-11-12	Show	GitHub Exploit DB Packet Storm

210867	5	警告	Wireshark	-	Wireshark の AMQP ディセクタの epan/dissectors/packet-amqp.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2014-8711	2014-11-25 15:48	2014-11-12	Show	GitHub Exploit DB Packet Storm

210868	7.2	危険	アドバンテック株式会社	-	Advantech WebAccess におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8388	2014-11-25 15:43	2014-11-20	Show	GitHub Exploit DB Packet Storm

210869	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager IM and Presence Service におけるユーザアカウントを列挙される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8000	2014-11-25 15:30	2014-11-19	Show	GitHub Exploit DB Packet Storm

210870	4	警告	TIBCO Software	-	複数の TIBCO Spotfire 製品の TIBCO Spotfire Web Player における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-7195	2014-11-25 14:50	2014-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
283881	-	till_gerken	phppolls	Till Gerken phpPolls 1.0.3 allows remote attackers to bypass authentication and perform certain administrative actions via a direct request to phpPollAdmin.php3. NOTE: this issue might subsume CVE-2…	NVD-CWE-Other	CVE-2007-0924	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283882	-	communityserver.org	community_server	Cross-site scripting (XSS) vulnerability in search/SearchResults.aspx in Community Server allows remote attackers to inject arbitrary web script or HTML via the q parameter.	NVD-CWE-Other	CVE-2007-0925	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283883	-	kvguestbook	kvguestbook	The dologin function in guestbook.php in KvGuestbook 1.0 Beta allows remote attackers to gain administrative privileges, probably via modified $mysql['pass'] and $gbpass variables.	NVD-CWE-Other	CVE-2007-0926	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283884	-	utorrent	utorrent	Heap-based buffer overflow in uTorrent 1.6 allows remote attackers to execute arbitrary code via a torrent file with a crafted announce header.	NVD-CWE-Other	CVE-2007-0927	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283885	-	virtual_calendar	virtual_calendar	Virtual Calendar stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an encoded password via a direct request for pwd.txt.	NVD-CWE-Other	CVE-2007-0928	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283886	-	guillaume_fontaine	php_rrd_browser	Directory traversal vulnerability in php rrd browser before 0.2.1 allows remote attackers to read arbitrary files via ".." sequences in the p parameter.	NVD-CWE-Other	CVE-2007-0929	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283887	-	alcatel-lucent aruba	omniaccess_wireless mobility_controller	Heap-based buffer overflow in the management interfaces in (1) Aruba Mobility Controllers 200, 800, 2400, and 6000 and (2) Alcatel-Lucent OmniAccess Wireless 43xx and 6000 allows remote attackers to …	NVD-CWE-Other	CVE-2007-0931	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283888	-	alcatel-lucent aruba	omniaccess_wireless mobility_controller	The (1) Aruba Mobility Controllers 200, 600, 2400, and 6000 and (2) Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest ac…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-0932	2018-10-17 01:35	2007-02-14	Show	GitHub Exploit DB Packet Storm

283889	-	microsoft	visio	Unspecified vulnerability in Microsoft Visio 2002 allows remote user-assisted attackers to execute arbitrary code via a Visio (.VSD, VSS, .VST) file with a crafted version number that triggers memory…	NVD-CWE-Other	CVE-2007-0934	2018-10-17 01:35	2007-06-13	Show	GitHub Exploit DB Packet Storm

283890	-	microsoft	office visio	Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow remote user-assisted attackers to execute arbitrary code via a Visio (.VSD, VSS, .VST) file with a crafted packed object that trigge…	NVD-CWE-Other	CVE-2007-0936	2018-10-17 01:35	2007-06-13	Show	GitHub Exploit DB Packet Storm