Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211421 7.5 危険 Etiko - Etiko CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8506 2014-10-30 17:01 2014-10-13 Show GitHub Exploit DB Packet Storm
211422 4.3 警告 Etiko - Etiko CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8505 2014-10-30 17:01 2014-10-13 Show GitHub Exploit DB Packet Storm
211423 4.3 警告 wp-football project - WordPress 用 wp-football プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4586 2014-10-30 16:53 2014-06-12 Show GitHub Exploit DB Packet Storm
211424 6.4 警告 Pidgin - Pidgin の win32/untar.c 内の untar_block 関数の nmevent.c における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-3697 2014-10-30 16:39 2014-03-4 Show GitHub Exploit DB Packet Storm
211425 7.5 危険 libproxy - libproxy の bin/proxy.c 内の print_proxies 関数におけるフォーマットストリングの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5580 2014-10-30 16:34 2012-11-24 Show GitHub Exploit DB Packet Storm
211426 4.6 警告 Robert Ancell - lightdm における lightdm ログに書き込まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-1111 2014-10-30 16:25 2012-03-5 Show GitHub Exploit DB Packet Storm
211427 6.8 警告 GNU Project - Glibc および eglibc における整数符号エラーの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2702 2014-10-30 16:16 2011-07-18 Show GitHub Exploit DB Packet Storm
211428 5 警告 IBM - IBM Tivoli Application Dependency Discovery Manager の BIRT ビューアーにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-6149 2014-10-30 16:07 2014-10-27 Show GitHub Exploit DB Packet Storm
211429 4.3 警告 IBM - IBM Tivoli Composite Application Manager for Transactions の Internet Service Monitor エージェントにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-3051 2014-10-30 16:07 2014-10-24 Show GitHub Exploit DB Packet Storm
211430 4.3 警告 IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6126 2014-10-30 16:06 2014-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284261 - kde konqueror konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI fr… NVD-CWE-Other
CVE-2007-3820 2018-10-16 06:31 2007-07-17 Show GitHub Exploit DB Packet Storm
284262 - citadel webcit Cross-site request forgery (CSRF) vulnerability in Webcit before 7.11 allows remote attackers to modify configurations and perform other actions as arbitrary users via unspecified vectors. NVD-CWE-Other
CVE-2007-3821 2018-10-16 06:31 2007-07-17 Show GitHub Exploit DB Packet Storm
284263 - citadel webcit Multiple cross-site scripting (XSS) vulnerabilities in Webcit before 7.11 allow remote attackers to inject arbitrary web script or HTML via (1) the who parameter to showuser; and other vectors involv… NVD-CWE-Other
CVE-2007-3822 2018-10-16 06:31 2007-07-17 Show GitHub Exploit DB Packet Storm
284264 - mozilla firefox Mozilla Firefox allows for cookies to be set with a null domain (aka "domainless cookies"), which allows remote attackers to pass information between arbitrary domains and track user activity, as dem… NVD-CWE-Other
CVE-2007-3827 2018-10-16 06:31 2007-07-18 Show GitHub Exploit DB Packet Storm
284265 - exlibris_group aleph Multiple cross-site scripting (XSS) vulnerabilities in Ex Libris ALEPH allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a URL that can be discovered th… NVD-CWE-Other
CVE-2007-3834 2018-10-16 06:31 2007-07-18 Show GitHub Exploit DB Packet Storm
284266 - exlibris_group metalib Cross-site scripting (XSS) vulnerability in Ex Libris MetaLib 3.13 and 4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a resource id that can be di… NVD-CWE-Other
CVE-2007-3835 2018-10-16 06:31 2007-07-18 Show GitHub Exploit DB Packet Storm
284267 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting (XSS) attacks with chrome privileges via an addon that in… NVD-CWE-Other
CVE-2007-3844 2018-10-16 06:31 2007-08-8 Show GitHub Exploit DB Packet Storm
284268 - linux linux_kernel Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die, which deliv… NVD-CWE-Other
CVE-2007-3848 2018-10-16 06:31 2007-08-15 Show GitHub Exploit DB Packet Storm
284269 - oracle database_server Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to have an unknown impact via (1) SYS.DBMS_DRS in the Da… NVD-CWE-Other
CVE-2007-3855 2018-10-16 06:31 2007-07-19 Show GitHub Exploit DB Packet Storm
284270 - oracle apex Unspecified vulnerability in Oracle Application Express (formerly Oracle HTML DB) 2.2.0.00.32 up to 3.0.0.00.20 allows developers to have an unknown impact via unknown attack vectors, aka APEX01. NO… NVD-CWE-Other
CVE-2007-3860 2018-10-16 06:31 2007-07-19 Show GitHub Exploit DB Packet Storm