Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211601 4.3 警告 SAP - SAP HANA Developer Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8314 2014-10-23 19:27 2014-05-13 Show GitHub Exploit DB Packet Storm
211602 6 警告 SAP - SAP HANA の Developer Workbench の ide/core/base/server/net.xsjs における任意の XSJX コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-8313 2014-10-23 19:26 2014-06-10 Show GitHub Exploit DB Packet Storm
211603 3.5 注意 SAP - SAP Netweaver AS ABAP の Business Warehouse における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-8312 2014-10-23 19:26 2014-06-10 Show GitHub Exploit DB Packet Storm
211604 3.5 注意 SAP - SAP BusinessObjects における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-8311 2014-10-23 19:25 2014-06-10 Show GitHub Exploit DB Packet Storm
211605 7.1 危険 SAP - SAP BusinessObjects の CMS CORBA リスナーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-8310 2014-10-23 19:23 2014-06-10 Show GitHub Exploit DB Packet Storm
211606 5 警告 SAP - SAP BusinessObjects および BusinessObjects XI における有効なユーザ名を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8309 2014-10-23 19:22 2014-06-10 Show GitHub Exploit DB Packet Storm
211607 4.3 警告 SAP - SAP BusinessObjects の Send to Inbox 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8308 2014-10-23 19:19 2014-06-10 Show GitHub Exploit DB Packet Storm
211608 2.1 注意 CloudBees - CloudBees Jenkins の hudson/util/RemotingDiagnostics.java の doIndex 関数における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2068 2014-10-23 17:33 2014-02-8 Show GitHub Exploit DB Packet Storm
211609 6.8 警告 CloudBees - CloudBees Jenkins における Web セッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2014-2066 2014-10-23 17:33 2014-02-12 Show GitHub Exploit DB Packet Storm
211610 4.3 警告 CloudBees - CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2065 2014-10-23 17:32 2014-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284501 - microsoft antigen_for_exchange
antigen_for_smtp_gateway
diagnostics_and_recovery_toolkit
forefront_client_security
forefront_security_for_exchange_server
forefront_security_for_sharepoint
mal… 		Unspecified vulnerability in Microsoft Malware Protection Engine (mpengine.dll) 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent attackers to cause a denial… CWE-399
 Resource Management Errors 		CVE-2008-1438 2018-10-13 06:45 2008-05-14 Show GitHub Exploit DB Packet Storm
284502 - microsoft windows_server_2003
windows_server_2008
windows_vista
windows_xp 		Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system hang) via a series of Pragmatic General Mul… CWE-20
 Improper Input Validation  		CVE-2008-1441 2018-10-13 06:45 2008-06-12 Show GitHub Exploit DB Packet Storm
284503 - microsoft internet_explorer Heap-based buffer overflow in the substringData method in Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code, related to an unspecified manipulation of a DOM object… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-1442 2018-10-13 06:45 2008-06-12 Show GitHub Exploit DB Packet Storm
284504 - microsoft directx Stack-based buffer overflow in Microsoft DirectX 7.0 and 8.1 on Windows 2000 SP4 allows remote attackers to execute arbitrary code via a Synchronized Accessible Media Interchange (SAMI) file with cra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-1444 2018-10-13 06:45 2008-06-12 Show GitHub Exploit DB Packet Storm
284505 - microsoft windows-nt
windows_2003_server
windows_xp 		Active Directory on Microsoft Windows 2000 Server SP4, XP Professional SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to cause a denial of service (system han… CWE-20
 Improper Input Validation  		CVE-2008-1445 2018-10-13 06:45 2008-06-12 Show GitHub Exploit DB Packet Storm
284506 - microsoft directx Microsoft DirectX 8.1 through 9.0c, and DirectX on Microsoft XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, does not properly perform MJPEG error checking, which allows… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0011 2018-10-13 06:44 2008-06-12 Show GitHub Exploit DB Packet Storm
284507 - microsoft windows_2003_server
windows_xp 		Stack-based buffer overflow in the CComVariant::ReadFromStream function in the Active Template Library (ATL), as used in the MPEG2TuneRequest ActiveX control in msvidctl.dll in DirectShow, in Microso… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0015 2018-10-13 06:44 2009-07-8 Show GitHub Exploit DB Packet Storm
284508 - microsoft windows_2003_server
windows_xp 		Unspecified vulnerability in the Load method in the IPersistStreamInit interface in the Active Template Library (ATL), as used in the Microsoft Video ActiveX control in msvidctl.dll in DirectShow, in… CWE-94
Code Injection 		CVE-2008-0020 2018-10-13 06:44 2009-07-8 Show GitHub Exploit DB Packet Storm
284509 - microsoft ie
internet_explorer 		Unspecified vulnerability in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via crafted HTML layout combinations, aka "HTML Rendering Memory … CWE-94
Code Injection 		CVE-2008-0076 2018-10-13 06:44 2008-02-13 Show GitHub Exploit DB Packet Storm
284510 - microsoft activex
ie
internet_explorer 		Unspecified vulnerability in an ActiveX control (dxtmsft.dll) in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via a crafted image, aka "Arg… CWE-94
Code Injection 		CVE-2008-0078 2018-10-13 06:44 2008-02-13 Show GitHub Exploit DB Packet Storm