Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
214701 2.1 注意 シトリックス・システムズ - Citrix VDI-in-a-Box における管理者の認証情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2690 2014-04-18 16:14 2014-04-8 Show GitHub Exploit DB Packet Storm
214702 7.8 危険 ジュニパーネットワークス - Juniper ScreenOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2842 2014-04-18 15:52 2014-04-14 Show GitHub Exploit DB Packet Storm
214703 4.6 警告 IBM - IBM MessageSight におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0924 2014-04-18 15:38 2014-04-14 Show GitHub Exploit DB Packet Storm
214704 4.3 警告 IBM - IBM MessageSight におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0923 2014-04-18 15:38 2014-04-14 Show GitHub Exploit DB Packet Storm
214705 4.3 警告 IBM - IBM MessageSight におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0922 2014-04-18 15:37 2014-04-14 Show GitHub Exploit DB Packet Storm
214706 4.3 警告 IBM - IBM MessageSigh のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0921 2014-04-18 15:36 2014-04-14 Show GitHub Exploit DB Packet Storm
214707 9.3 危険 アドビシステムズ - Android 用 Adobe Reader Mobile アプリケーションにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0514 2014-04-18 15:25 2014-04-14 Show GitHub Exploit DB Packet Storm
214708 4.4 警告 Xen プロジェクト - Xen のネットバンクドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2580 2014-04-18 15:24 2014-03-24 Show GitHub Exploit DB Packet Storm
214709 4.3 警告 Raoul Proenca - Gnew におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7368 2014-04-18 15:23 2013-07-23 Show GitHub Exploit DB Packet Storm
214710 6 警告 OpenStack - OpenStack Compute および Icehouse の Nova EC2 API セキュリティグループの実装における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0167 2014-04-18 15:21 2014-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289361 - woltlab burning_board SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and earlier, and 2.3.6 and earlier in the 2.x series, allows remote attackers to execute arbitrary SQL commands via the … NVD-CWE-Other
CVE-2007-0388 2017-10-19 10:29 2007-01-20 Show GitHub Exploit DB Packet Storm
289362 - comvironment comvironment PHP remote file inclusion vulnerability in libraries/grab_globals.lib.php in ComVironment 4.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter. NVD-CWE-Other
CVE-2007-0395 2017-10-19 10:29 2007-01-20 Show GitHub Exploit DB Packet Storm
289363 - divx divx_player DivXBrowserPlugin (aka DivX Web Player) npdivx32.dll, as distributed with DivX Player 6.4.1, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) by invoking the GoWindowe… NVD-CWE-Other
CVE-2007-0429 2017-10-19 10:29 2007-01-23 Show GitHub Exploit DB Packet Storm
289364 - visohotlink visohotlink PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig… NVD-CWE-Other
CVE-2007-0489 2017-10-19 10:29 2007-01-25 Show GitHub Exploit DB Packet Storm
289365 - phpsherpa phpsherpa PHP remote file inclusion vulnerability in include/config.inc.php in PhpSherpa allows remote attackers to execute arbitrary PHP code via a URL in the racine parameter. NVD-CWE-Other
CVE-2007-0495 2017-10-19 10:29 2007-01-26 Show GitHub Exploit DB Packet Storm
289366 - neon_labs neon_labs_website PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the g_strRootDir parameter. NVD-CWE-Other
CVE-2007-0496 2017-10-19 10:29 2007-01-26 Show GitHub Exploit DB Packet Storm
289367 - sky_gunning myspeach PHP remote file inclusion vulnerability in up.php in MySpeach 2.1 beta and possibly earlier allows remote attackers to execute arbitrary PHP code via a URL in the my[root] parameter. NVD-CWE-Other
CVE-2007-0498 2017-10-19 10:29 2007-01-26 Show GitHub Exploit DB Packet Storm
289368 - devellion cubecart PHP remote file include vulnerability in includes/orderSuccess.inc.php in CubeCart allows remote attackers to execute arbitrary PHP code via a URL in the glob[rootDir] parameter. CWE-94
Code Injection 		CVE-2006-0064 2017-10-19 10:29 2006-01-4 Show GitHub Exploit DB Packet Storm
289369 - valdersoft valdersoft_shopping_cart PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote att… NVD-CWE-Other
CVE-2006-0099 2017-10-19 10:29 2006-01-6 Show GitHub Exploit DB Packet Storm
289370 - cisco ip_phone_7940 The Cisco IP Phone 7940 allows remote attackers to cause a denial of service (reboot) via a large amount of TCP SYN packets (syn flood) to arbitrary ports, as demonstrated to port 80. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2006-0179 2017-10-19 10:29 2006-01-12 Show GitHub Exploit DB Packet Storm