Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
212871 7.5 危険 miniBB - MiniBB の bb_func_unsub.php における SQL インジェクション攻撃を実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9254 2015-01-6 18:41 2014-11-27 Show GitHub Exploit DB Packet Storm
212872 4.3 警告 JCE-Tech.com - JCE-Tech PHP Video Script の view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8752 2015-01-6 18:25 2014-11-18 Show GitHub Exploit DB Packet Storm
212873 4.6 警告 DELL EMC (旧 EMC Corporation) - EMC Replication Manager における権限を取得される脆弱性 CWE-Other
その他 		CVE-2014-4634 2015-01-6 17:42 2014-12-30 Show GitHub Exploit DB Packet Storm
212874 7.5 危険 Exponent CMS project - Exponent CMS の install/popup.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3295 2015-01-6 17:21 2013-05-3 Show GitHub Exploit DB Packet Storm
212875 4.3 警告 Tribal Ltd. - Tribal Tribiq CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2727 2015-01-6 17:16 2011-02-17 Show GitHub Exploit DB Packet Storm
212876 5 警告 Plogger Project - Plogger における CAPTCHA 保護メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2014-2224 2015-01-6 16:16 2014-02-24 Show GitHub Exploit DB Packet Storm
212877 5 警告 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインの error-handling 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-1908 2015-01-6 16:05 2014-02-6 Show GitHub Exploit DB Packet Storm
212878 10 危険 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインの ls/vw_snapshots.php における任意の PHP コードを実行される脆弱性 CWE-Other
その他 		CVE-2014-1905 2015-01-6 16:03 2014-02-6 Show GitHub Exploit DB Packet Storm
212879 6.8 警告 DFLabs - DFLabs PTK の lib/logout.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1415 2015-01-6 15:27 2012-02-22 Show GitHub Exploit DB Packet Storm
212880 4.3 警告 amcharts.com - amCharts Flash におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1303 2015-01-6 15:15 2012-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347291 - microsoft java_virtual_machine The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to determine the current directory of the Internet Explorer process via the getAbsolutePath() method in a File… NVD-CWE-Other
CVE-2002-1288 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347292 - microsoft java_virtual_machine The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read restricted process memory, cause a denial of service (crash), and possibly execute arbitrary code via … NVD-CWE-Other
CVE-2002-1289 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347293 - microsoft java_virtual_machine The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read and modify the contents of the Clipboard via an applet that accesses the (1) ClipBoardGetText and (2) … NVD-CWE-Other
CVE-2002-1290 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347294 - microsoft java_virtual_machine The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read arbitrary local files and network shares via an applet tag with a codebase set to a "file://%00" (null… NVD-CWE-Other
CVE-2002-1291 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347295 - microsoft java_virtual_machine The Microsoft Java implementation, as used in Internet Explorer, provides a public load0() method for the CabCracker class (com.ms.vm.loader.CabCracker), which allows remote attackers to bypass the s… NVD-CWE-Other
CVE-2002-1293 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347296 - microsoft java_virtual_machine The Microsoft Java implementation, as used in Internet Explorer, can provide HTML object references to applets via Javascript, which allows remote attackers to cause a denial of service (crash due to… NVD-CWE-Other
CVE-2002-1294 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347297 - kde kde Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote… NVD-CWE-Other
CVE-2002-1306 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347298 - macromedia coldfusion Heap-based buffer overflow in the error-handling mechanism for the IIS ISAPI handler in Macromedia ColdFusion 6.0 allows remote attackers to execute arbitrary via an HTTP GET request with a long .cfm… NVD-CWE-Other
CVE-2002-1309 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347299 - double_precision_incorporated courier_mta Courier sqwebmail before 0.40.0 does not quickly drop privileges after startup in certain cases, which could allow local users to read arbitrary files. NVD-CWE-Other
CVE-2002-1311 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
347300 - iplanet iplanet_web_server Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote attackers to execute web script or HTML as the iPlanet administrator by injecting the… NVD-CWE-Other
CVE-2002-1315 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm