Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
214841 7.5 危険 Todd Palino - phpMyRecipes の browse.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9440 2015-01-8 14:44 2014-12-23 Show GitHub Exploit DB Packet Storm
214842 4.3 警告 EFS Software - Easy File Sharing Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9439 2015-01-8 14:36 2014-12-27 Show GitHub Exploit DB Packet Storm
214843 6.8 警告 vBulletin Solutions, Inc. - vBulletin の Moderator Control Panel におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9438 2015-01-8 14:20 2014-08-27 Show GitHub Exploit DB Packet Storm
214844 4.3 警告 Basic-CMS - SweetRice CMS の as/index.php の password-reset 機能における管理者のパスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-5318 2015-01-8 14:04 2010-11-4 Show GitHub Exploit DB Packet Storm
214845 7.5 危険 Basic-CMS - SweetRice CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5317 2015-01-8 14:04 2010-11-4 Show GitHub Exploit DB Packet Storm
214846 4.3 警告 Basic-CMS - SweetRice CMS の as/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5316 2015-01-8 14:03 2010-11-4 Show GitHub Exploit DB Packet Storm
214847 3.5 注意 Reality66 - WordPress 用 Cart66 Lite プラグインの models/Cart66.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-9461 2015-01-8 13:48 2014-11-22 Show GitHub Exploit DB Packet Storm
214848 6.8 警告 Justin Klein - WordPress 用 WP-ViperGB プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9460 2015-01-8 13:48 2014-11-27 Show GitHub Exploit DB Packet Storm
214849 4.3 警告 Rinat Khaziev - WordPress 用 Frontend Uploader プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9444 2015-01-8 13:47 2014-12-27 Show GitHub Exploit DB Packet Storm
214850 4.3 警告 Mikko Saari - WordPress 用 Relevanssi プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9443 2015-01-8 13:47 2014-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352251 - instantservers_inc. miniportal Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command. NVD-CWE-Other
CVE-2002-0261 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352252 - sybex e-trainer Directory traversal vulnerability in netget for Sybex E-Trainer web server allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter. NVD-CWE-Other
CVE-2002-0262 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352253 - ezne.net ezboard_2000 Buffer overflow in EasyBoard 2000 1.27 (aka EZboard) allows remote attackers to execute arbitrary code via a long boundary value in a multipart Content-Type header to (1) ezboard.cgi, (2) ezman.cgi, … NVD-CWE-Other
CVE-2002-0263 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352254 - cooolsoft powerftp PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges. NVD-CWE-Other
CVE-2002-0264 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352255 - sawmill sawmill Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file. NVD-CWE-Other
CVE-2002-0265 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352256 - thunderstone_software texis Thunderstone Texis CGI script allows remote attackers to obtain the full path of the web root via a request for a nonexistent file, which generates an error message that includes the full pathname. NVD-CWE-Other
CVE-2002-0266 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352257 - sips sips preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin c… NVD-CWE-Other
CVE-2002-0267 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352258 - identix biologon Identix BioLogon 3 allows users with physical access to the system to gain administrative privileges by using CTRL-ALT-DEL and running a "Browse" function, which runs Explorer with SYSTEM privileges. NVD-CWE-Other
CVE-2002-0268 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
352259 - apache-ssl
mod_ssl 		apache-ssl
mod_ssl 		The dbm and shm session cache code in mod_ssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2d_SSL_SESSION function, which allows remote attac… NVD-CWE-Other
CVE-2002-0082 2016-10-18 11:16 2002-03-15 Show GitHub Exploit DB Packet Storm
352260 - cvs cvs CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability. NVD-CWE-Other
CVE-2002-0092 2016-10-18 11:16 2002-03-15 Show GitHub Exploit DB Packet Storm