Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
213941	5	警告	GNU Project	-	GNU Cpio の process_copy_in 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-9112	2014-12-3 16:08	2014-11-27	Show	GitHub Exploit DB Packet Storm

213942	4	警告	CSSJockey.com	-	WordPress 用 SupportEzzy Ticket System プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9179	2014-12-3 16:08	2014-10-12	Show	GitHub Exploit DB Packet Storm

213943	7.5	危険	Smarty Pants Plugins	-	WordPress 用 Smarty Pants Plugins SP Client Document Manager プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9178	2014-12-3 16:07	2014-11-21	Show	GitHub Exploit DB Packet Storm

213944	5	警告	SVN Labs Softwares.	-	WordPress 用 HTML5 MP3 Player with Playlist Free プラグインにおけるインストールパスを取得される脆弱性	CWE-200 情報漏えい	CVE-2014-9177	2014-12-3 16:07	2014-11-26	Show	GitHub Exploit DB Packet Storm

213945	4.3	警告	InstaSqueeze.com	-	WordPress 用 InstaSqueeze Sexy Squeeze Pages プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9176	2014-12-3 16:06	2014-11-26	Show	GitHub Exploit DB Packet Storm

213946	7.5	危険	wpDataTables	-	WordPress 用 wpDataTables プラグインの wpdatatables.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9175	2014-12-3 16:05	2014-11-22	Show	GitHub Exploit DB Packet Storm

213947	4.3	警告	Team Yoast	-	WordPress 用 Google Analytics by Yoast プラグインおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9174	2014-12-3 16:05	2014-11-26	Show	GitHub Exploit DB Packet Storm

213948	7.5	危険	Google Doc Embedder	-	WordPress 用 Google Doc Embedder プラグインの view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9173	2014-12-3 16:05	2014-11-14	Show	GitHub Exploit DB Packet Storm

213949	4.3	警告	Geardev	-	WordPress 用 Ad-Manager プラグインの track-click.php におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-8754	2014-12-3 16:04	2014-11-26	Show	GitHub Exploit DB Packet Storm

213950	5	警告	Kennziffer.com	-	TYPO3 用 ke_questionnaire エクステンションにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-8874	2014-12-3 15:56	2014-12-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350891	-	grant_averett	cerberus_ftp_server	Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command.	NVD-CWE-Other	CVE-2001-1295	2008-09-6 05:26	2001-08-21	Show	GitHub Exploit DB Packet Storm

350892	-	zorbat	zorbstats	Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.	NVD-CWE-Other	CVE-2001-1299	2008-09-6 05:26	2001-10-2	Show	GitHub Exploit DB Packet Storm

350893	-	dynu_systems_inc.	dynu_ftp_server	Directory traversal vulnerability in Dynu FTP server 1.05 and earlier allows remote attackers to read arbitrary files via a .. in the CD (CWD) command.	NVD-CWE-Other	CVE-2001-1300	2008-09-6 05:26	2002-06-25	Show	GitHub Exploit DB Packet Storm

350894	-	gnu xemacs	emacs xemacs	rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file.	NVD-CWE-Other	CVE-2001-1301	2008-09-6 05:26	2001-08-7	Show	GitHub Exploit DB Packet Storm

350895	-	nullsoft	shoutcast_server	Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.	NVD-CWE-Other	CVE-2001-1304	2008-09-6 05:26	2001-08-3	Show	GitHub Exploit DB Packet Storm

350896	-	sun	iplanet_directory_server	iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstr…	NVD-CWE-Other	CVE-2001-1306	2008-09-6 05:26	2001-07-16	Show	GitHub Exploit DB Packet Storm

350897	-	critical_path	injoin_directory_server livecontent_directory	Buffer overflows in Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstr…	NVD-CWE-Other	CVE-2001-1314	2008-09-6 05:26	2001-07-16	Show	GitHub Exploit DB Packet Storm

350898	-	critical_path	injoin_directory_server livecontent_directory	Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed BER encodings, as …	NVD-CWE-Other	CVE-2001-1315	2008-09-6 05:26	2001-07-16	Show	GitHub Exploit DB Packet Storm

350899	-	teamware	teamware_office	Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for certain BER object types, as demonstra…	NVD-CWE-Other	CVE-2001-1317	2008-09-6 05:26	2001-07-16	Show	GitHub Exploit DB Packet Storm

350900	-	qualcomm	eudora_worldmail_server	Vulnerabilities in Qualcomm Eudora WorldMail Server may allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suit…	NVD-CWE-Other	CVE-2001-1318	2008-09-6 05:26	2001-07-16	Show	GitHub Exploit DB Packet Storm