Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211361 6.8 警告 Debian - APT における脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0488 2014-11-5 16:47 2014-09-16 Show GitHub Exploit DB Packet Storm
211362 7.5 危険 Debian - APT における脆弱性 CWE-noinfo
情報不足 		CVE-2014-0487 2014-11-5 16:41 2014-09-16 Show GitHub Exploit DB Packet Storm
211363 6.5 警告 OpenStack - OpenStack Identity における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0204 2014-11-5 16:04 2014-06-11 Show GitHub Exploit DB Packet Storm
211364 4.6 警告 ESTsoft Japan 株式会社 - ESTsoft の ALUpdate における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8494 2014-11-5 15:53 2014-10-28 Show GitHub Exploit DB Packet Storm
211365 6.8 警告 FFmpeg - FFMpeg の libavcodec/iff.c における脆弱性 CWE-119
バッファエラー 		CVE-2014-5272 2014-11-5 15:41 2014-08-11 Show GitHub Exploit DB Packet Storm
211366 7.5 危険 FFmpeg
Libav		 - FFMpeg および Libav におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-5271 2014-11-5 15:40 2014-08-12 Show GitHub Exploit DB Packet Storm
211367 5 警告 Katello Project - Katello におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-3712 2014-11-5 15:18 2014-10-22 Show GitHub Exploit DB Packet Storm
211368 7.2 危険 Pro Softnet Corp - iBackup における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5507 2014-11-5 14:38 2014-01-23 Show GitHub Exploit DB Packet Storm
211369 7.5 危険 FreeRADIUS - FreeRADIUS の rlm_pap モジュールの normify 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-2015 2014-11-5 14:27 2014-02-18 Show GitHub Exploit DB Packet Storm
211370 5 警告 シトリックス・システムズ - Citrix XenMobile MDX Toolkit における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-8495 2014-11-5 13:53 2014-10-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283901 - pidgin pidgin libpurple in Pidgin 2.1.0 through 2.2.1, when using HTML logging, allows remote attackers to cause a denial of service (NULL dereference and application crash) via a message that contains invalid HTM… CWE-20
 Improper Input Validation  		CVE-2007-4999 2018-10-16 06:39 2007-10-30 Show GitHub Exploit DB Packet Storm
283902 - joomla joomla SQL injection vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to the archive section. NOTE: … CWE-89
SQL Injection 		CVE-2007-4777 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283903 - joomla joomla Cross-site scripting (XSS) vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably related to the archiv… CWE-79
Cross-site Scripting 		CVE-2007-4779 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283904 - joomla joomla Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to obtain sensitive information (the full path) via unspecified vectors, probably involving direct requests to certain PHP scripts in tmpl… CWE-20
 Improper Input Validation  		CVE-2007-4780 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283905 - php php PHP before 5.2.3 allows context-dependent attackers to cause a denial of service (application crash) via (1) a long string in the pattern parameter to the glob function; or (2) a long string in the s… CWE-94
Code Injection 		CVE-2007-4782 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283906 - php php The iconv_substr function in PHP 5.2.4 and earlier allows context-dependent attackers to cause (1) a denial of service (application crash) via a long string in the charset parameter, probably also re… CWE-20
 Improper Input Validation  		CVE-2007-4783 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283907 - php php The setlocale function in PHP before 5.2.4 allows context-dependent attackers to cause a denial of service (application crash) via a long string in the locale parameter. NOTE: this might not be a vu… CWE-20
 Improper Input Validation  		CVE-2007-4784 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283908 - sony micro_vault_fingerprint_access_software Sony Micro Vault Fingerprint Access Software, as distributed with Sony Micro Vault USM-F USB flash drives, installs a driver that hides a directory under %WINDIR%, which might allow remote attackers … NVD-CWE-Other
CVE-2007-4785 2018-10-16 06:38 2007-09-11 Show GitHub Exploit DB Packet Storm
283909 - netjuke netjuke Multiple SQL injection vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to execute arbitrary SQL commands via (1) the ge_id parameter in a list.artists action to explore.php or (2) the id pa… CWE-89
SQL Injection 		CVE-2007-4810 2018-10-16 06:38 2007-09-12 Show GitHub Exploit DB Packet Storm
283910 - netjuke netjuke Multiple cross-site scripting (XSS) vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via (1) the val parameter to alphabet.php in an alpha.albums actio… CWE-79
Cross-site Scripting 		CVE-2007-4811 2018-10-16 06:38 2007-09-12 Show GitHub Exploit DB Packet Storm