Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211621 6.5 警告 Splunk - Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8302 2014-10-23 16:57 2014-09-30 Show GitHub Exploit DB Packet Storm
211622 4.3 警告 Splunk - Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8301 2014-10-23 16:56 2014-09-30 Show GitHub Exploit DB Packet Storm
211623 2.6 注意 Max Foundry, LLC. - WordPress 用 Max Foundry MaxButtons プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7181 2014-10-23 16:55 2014-10-2 Show GitHub Exploit DB Packet Storm
211624 4.3 警告 Phil Derksen - WordPress 用 Google Calendar Events プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7138 2014-10-23 16:55 2014-10-6 Show GitHub Exploit DB Packet Storm
211625 4.3 警告 Marc Ferran - Drupal 用 Modal Frame API モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8296 2014-10-23 16:54 2014-02-8 Show GitHub Exploit DB Packet Storm
211626 3.5 注意 Drupal - Drupal 用 Custom Search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8320 2014-10-23 16:20 2014-04-2 Show GitHub Exploit DB Packet Storm
211627 3.5 注意 Drupal - Drupal 用 Easy Social モジュールの easy_social_admin_summary 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8319 2014-10-23 16:20 2014-02-12 Show GitHub Exploit DB Packet Storm
211628 3.5 注意 Webform project - Drupal 用 Webform モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8318 2014-10-23 16:19 2014-02-12 Show GitHub Exploit DB Packet Storm
211629 3.5 注意 Drupal - Drupal 用 Webform Validation モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8317 2014-10-23 16:19 2014-02-11 Show GitHub Exploit DB Packet Storm
211630 5 警告 IBM - IBM WebSphere Application Server における重要な Cookie および認証データを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3021 2014-10-23 14:50 2014-10-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283751 - mozilla firefox Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.locat… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-1256 2018-10-17 01:37 2007-03-4 Show GitHub Exploit DB Packet Storm
283752 - gnu
gnupg 		gpgme
gnupg 		GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might al… NVD-CWE-Other
CVE-2007-1263 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283753 - enigmail enigmail Enigmail 0.94.2 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Enigmail from visually distinguishing between signed and unsigned portions of OpenPGP me… NVD-CWE-Other
CVE-2007-1264 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283754 - kde k-mail KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents KMail from visually distinguishing between signed and unsigned portions of OpenPGP messages … NVD-CWE-Other
CVE-2007-1265 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283755 - gnome evolution Evolution 2.8.1 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Evolution from visually distinguishing between signed and unsigned portions of OpenPGP m… NVD-CWE-Other
CVE-2007-1266 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283756 - sylpheed sylpheed Sylpheed 2.2.7 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Sylpheed from visually distinguishing between signed and unsigned portions of OpenPGP mes… NVD-CWE-Other
CVE-2007-1267 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283757 - mutt mutt Mutt 1.5.13 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Mutt from visually distinguishing between signed and unsigned portions of OpenPGP messages w… NVD-CWE-Other
CVE-2007-1268 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283758 - gnu gnumail GNUMail 1.1.2 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents GNUMail from visually distinguishing between signed and unsigned portions of OpenPGP messa… NVD-CWE-Other
CVE-2007-1269 2018-10-17 01:37 2007-03-7 Show GitHub Exploit DB Packet Storm
283759 - wordpress wordpress WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary comma… CWE-20
 Improper Input Validation  		CVE-2007-1277 2018-10-17 01:37 2007-03-6 Show GitHub Exploit DB Packet Storm
283760 - wordpress wordpress This vulnerability is addressed in the following product update: http://wordpress.org/development/2007/03/upgrade-212/ CWE-20
 Improper Input Validation  		CVE-2007-1277 2018-10-17 01:37 2007-03-6 Show GitHub Exploit DB Packet Storm