Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211211 4.9 警告 Linux - Linux Kernel の KVM サブシステムの arch/x86/kvm/emulate.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-8481 2014-11-11 18:02 2014-10-13 Show GitHub Exploit DB Packet Storm
211212 4.9 警告 Linux - Linux Kernel の KVM サブシステムの arch/x86/kvm/emulate.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-8480 2014-11-11 18:01 2014-10-13 Show GitHub Exploit DB Packet Storm
211213 4.9 警告 Linux - Linux Kernel の IPv6 の実装に対する特定の Debian パッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-7207 2014-11-11 17:58 2014-10-27 Show GitHub Exploit DB Packet Storm
211214 5 警告 Elipse Software - Elipse E3 におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2014-8652 2014-11-11 15:59 2014-07-15 Show GitHub Exploit DB Packet Storm
211215 2.1 注意 Linux - Linux Kernel の KVM サブシステムの arch/x86/kvm/emulate.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3647 2014-11-11 15:56 2014-10-24 Show GitHub Exploit DB Packet Storm
211216 4.9 警告 Linux - Linux Kernel の KVM サブシステムの WRMSR 処理機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3610 2014-11-11 15:55 2014-10-24 Show GitHub Exploit DB Packet Storm
211217 5 警告 Ruby on Rails project
RubyGems.org		 - Ruby on Rails に同梱されている Sprockets の server.rb におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-7819 2014-11-11 13:55 2014-10-15 Show GitHub Exploit DB Packet Storm
211218 4.3 警告 Ruby on Rails project - Ruby on Rails の Action Pack の actionpack/lib/action_dispatch/middleware/static.rb におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-7818 2014-11-11 13:54 2014-10-10 Show GitHub Exploit DB Packet Storm
211219 4.3 警告 The phpMyAdmin Project - phpMyAdmin の micro history の実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6300 2014-11-11 13:54 2014-09-13 Show GitHub Exploit DB Packet Storm
211220 4.9 警告 シトリックス・システムズ - Citrix NetScaler Application Delivery Controller および NetScaler Gateway における他のユーザのネットワークリソースにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8580 2014-11-11 13:33 2014-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283571 - xoops friendfinder_module SQL injection vulnerability in view.php in the Friendfinder 3.3 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2007-1838 2018-10-17 01:40 2007-04-3 Show GitHub Exploit DB Packet Storm
283572 - maptools maplab PHP remote file inclusion vulnerability in gmapfactory/params.php in MapLab 2.2.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the gszAppPath … CWE-94
Code Injection 		CVE-2007-1843 2018-10-17 01:40 2007-04-4 Show GitHub Exploit DB Packet Storm
283573 - avatic aardvark_topsites_php Multiple PHP remote file inclusion vulnerabilities in Aardvark Topsites PHP 5 allow remote attackers to execute arbitrary PHP code via a URL in the path parameter to (1) button/settings_sql.php, (2) … NVD-CWE-Other
CVE-2007-1844 2018-10-17 01:40 2007-04-4 Show GitHub Exploit DB Packet Storm
283574 - php_fusion expanded_calendar_module SQL injection vulnerability in show_event.php in the Expanded Calendar (calendar_panel) 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the m_month parameter. NVD-CWE-Other
CVE-2007-1845 2018-10-17 01:40 2007-04-4 Show GitHub Exploit DB Packet Storm
283575 - drake_team drake_cms Cross-site scripting (XSS) vulnerability in admin/classes/ui.dta.php in Drake CMS allows remote attackers to inject arbitrary web script or HTML via the desc[][title] field. NOTE: Drake CMS has only… NVD-CWE-Other
CVE-2007-1848 2018-10-17 01:40 2007-04-4 Show GitHub Exploit DB Packet Storm
283576 - drake_team drake_cms Directory traversal vulnerability in classes/captcha/captcha.jpg.php in Drake CMS allows remote attackers to read arbitrary files or list arbitrary directories, and obtain the installation path, via … NVD-CWE-Other
CVE-2007-1850 2018-10-17 01:40 2007-04-4 Show GitHub Exploit DB Packet Storm
283577 - webasyst_llc shop-script Multiple PHP remote file inclusion vulnerabilities in smarty/smarty_class.php in Shop-Script FREE allow remote attackers to execute arbitrary PHP code via a URL in the (1) _smarty_compile_path, (2) s… NVD-CWE-Other
CVE-2007-1855 2018-10-17 01:40 2007-04-4 Show GitHub Exploit DB Packet Storm
283578 - linux linux_kernel The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infini… CWE-399
 Resource Management Errors 		CVE-2007-1861 2018-10-17 01:40 2007-05-8 Show GitHub Exploit DB Packet Storm
283579 - microsoft windows_2003_server
windows_xp 		\Device\NdisTapi (NDISTAPI.sys) in Microsoft Windows XP SP2 and 2003 SP1 uses weak permissions, which allows local users to write to the device and cause a denial of service, as demonstrated by using… NVD-CWE-Other
CVE-2007-1537 2018-10-17 01:39 2007-03-21 Show GitHub Exploit DB Packet Storm
283580 - radscan network_audio_system Stack-based buffer overflow in the accept_att_local function in server/os/connection.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to execute arbitrary code via a long p… NVD-CWE-Other
CVE-2007-1543 2018-10-17 01:39 2007-03-21 Show GitHub Exploit DB Packet Storm