Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
214531 7.2 危険 マイクロソフト - Microsoft Windows XP および Microsoft Windows Server 2003 における任意のメモリ領域にデータを書き込まれる脆弱性 CWE-Other
その他 		CVE-2014-4971 2014-10-21 11:56 2014-07-18 Show GitHub Exploit DB Packet Storm
214532 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの fastfat.sys における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-4115 2014-10-21 11:51 2014-10-14 Show GitHub Exploit DB Packet Storm
214533 5.8 警告 オラクル - Oracle Identity Manager におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2880 2014-10-21 11:01 2014-04-3 Show GitHub Exploit DB Packet Storm
214534 5 警告 IBM
Apache Software Foundation
オラクル		 - Apache Tomcat の java/org/apache/coyote/ajp/AbstractAjpProcessor.java におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0095 2014-10-21 10:50 2014-03-27 Show GitHub Exploit DB Packet Storm
214535 4.3 警告 IBM
Apache Software Foundation
オラクル		 - Apache Tomcat の org/apache/catalina/connector/CoyoteAdapter.java におけるセッション固定攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0033 2014-10-21 10:43 2014-01-31 Show GitHub Exploit DB Packet Storm
214536 7.5 危険 Epicor Software - Epicor Procurement における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4313 2014-10-20 18:33 2014-10-3 Show GitHub Exploit DB Packet Storm
214537 4.3 警告 Epicor Software - Epicor Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4312 2014-10-20 18:33 2014-09-30 Show GitHub Exploit DB Packet Storm
214538 4.3 警告 CloudBees - CloudBees Jenkins 用 Monitoring プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3678 2014-10-20 18:18 2014-10-1 Show GitHub Exploit DB Packet Storm
214539 4 警告 IBM - IBM WebSphere Portal における認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-4761 2014-10-20 18:17 2014-10-7 Show GitHub Exploit DB Packet Storm
214540 4.3 警告 Textpattern - Textpattern CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4737 2014-10-20 18:14 2014-09-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347261 - geeklog geeklog Geeklog 1.3 allows remote attackers to hijack user accounts, including the administrator account, by modifying the UID of a user's permanent cookie to the target account. NVD-CWE-Other
CVE-2002-0097 2008-09-11 04:11 2002-03-25 Show GitHub Exploit DB Packet Storm
347262 - scott_parish chuid Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack. NVD-CWE-Other
CVE-2002-0144 2008-09-11 04:11 2002-03-25 Show GitHub Exploit DB Packet Storm
347263 - apple quicktime Buffer overflow in Apple QuickTime 5.0 ActiveX component allows remote attackers to execute arbitrary code via a long pluginspage field. NVD-CWE-Other
CVE-2002-0376 2008-09-11 04:11 2002-09-24 Show GitHub Exploit DB Packet Storm
347264 - astart_technologies lprng The default configuration of LPRng print spooler in Red Hat Linux 7.0 through 7.3, Mandrake 8.1 and 8.2, and other operating systems, accepts print jobs from arbitrary remote hosts. NVD-CWE-Other
CVE-2002-0378 2008-09-11 04:11 2002-07-3 Show GitHub Exploit DB Packet Storm
347265 - rob_flynn gaim Buffer overflow in Jabber plug-in for Gaim client before 0.58 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2002-0384 2008-09-11 04:11 2002-10-4 Show GitHub Exploit DB Packet Storm
347266 - oracle application_server The administration module for Oracle Web Cache in Oracle9iAS (9i Application Suite) 9.0.2 allows remote attackers to cause a denial of service (crash) via (1) an HTTP GET request containing a ".." (d… NVD-CWE-Other
CVE-2002-0386 2008-09-11 04:11 2002-11-4 Show GitHub Exploit DB Packet Storm
347267 - isc bind ISC BIND 9 before 9.2.1 allows remote attackers to cause a denial of service (shutdown) via a malformed DNS packet that triggers an error condition that is not properly handled when the rdataset para… NVD-CWE-Other
CVE-2002-0400 2008-09-11 04:11 2002-06-18 Show GitHub Exploit DB Packet Storm
347268 - peaceworks_computer_consulting phormation Phormation PHP script 0.9.1 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the phormationdir variable. NVD-CWE-Other
CVE-2001-1237 2008-09-11 04:10 2001-10-2 Show GitHub Exploit DB Packet Storm
347269 - connect_inc. powernet_ix PowerNet IX allows remote attackers to cause a denial of service via a port scan. NVD-CWE-Other
CVE-2001-1239 2008-09-11 04:10 2001-06-29 Show GitHub Exploit DB Packet Storm
347270 - steve_grimm un-cgi Un-CGI 1.9 and earlier does not verify that a CGI script has the execution bits set before executing it, which allows remote attackers to execute arbitrary commands by directing Un-CGI to a document … NVD-CWE-Other
CVE-2001-1241 2008-09-11 04:10 2001-07-17 Show GitHub Exploit DB Packet Storm