Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215241	7.5	危険	MetalGenix	-	MetalGenix GeniXCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-2679	2015-03-25 12:25	2015-03-14	Show	GitHub Exploit DB Packet Storm

215242	4.3	警告	MetalGenix	-	MetalGenix GeniXCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2678	2015-03-25 12:25	2015-03-14	Show	GitHub Exploit DB Packet Storm

215243	3.5	注意	s9y	-	Serendipity の templates/2k11/admin/entries.tpl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2289	2015-03-25 11:30	2015-03-12	Show	GitHub Exploit DB Packet Storm

215244	5	警告	CODOFORUM	-	Codoforum の sanitize 関数における任意のファイルを読まれる脆弱性	CWE-22 パス・トラバーサル	CVE-2014-9261	2015-03-25 11:18	2014-11-23	Show	GitHub Exploit DB Packet Storm

215245	6.4	警告	ヒューレット・パッカードオラクル	-	Oracle E-Business Suite の Oracle Applications Framework における Diagnostics の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-0397	2015-03-24 17:45	2013-01-15	Show	GitHub Exploit DB Packet Storm

215246	6.4	警告	ヒューレット・パッカードオラクル	-	Oracle E-Business Suite の Oracle CRM Technical Foundation における Application Framework の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-0381	2015-03-24 17:44	2013-01-15	Show	GitHub Exploit DB Packet Storm

215247	4.3	警告	ヒューレット・パッカードオラクル	-	複数の Oracle Enterprise Manager 製品における Distributed/Cross DB Features の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-0372	2015-03-24 17:44	2013-01-15	Show	GitHub Exploit DB Packet Storm

215248	4.3	警告	Apache Software Foundation	-	Apache ActiveMQ の Web デモにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6092	2015-03-24 15:35	2012-10-18	Show	GitHub Exploit DB Packet Storm

215249	10	危険	ヒューレット・パッカードオラクル	-	Oracle Database Mobile Server および Oracle Database Lite における脆弱性	CWE-noinfo 情報不足	CVE-2013-0366	2015-03-24 15:31	2013-01-15	Show	GitHub Exploit DB Packet Storm

215250	7.8	危険	ヒューレット・パッカードオラクル	-	Oracle Database Mobile Server および Oracle Database Lite における脆弱性	CWE-noinfo 情報不足	CVE-2013-0364	2015-03-24 15:30	2013-01-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346111	-	redhat	enterprise_linux	The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to m…	NVD-CWE-Other	CVE-2004-0491	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346112	-	avaya redhat	cvlan enterprise_linux enterprise_linux_desktop linux_advanced_workstation	Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.	NVD-CWE-Other	CVE-2004-0494	2017-10-11 10:29	2004-11-23	Show	GitHub Exploit DB Packet Storm

346113	-	avaya gentoo linux redhat suse conectiva	converged_communications_server modular_messaging_message_storage_server linux linux_kernel enterprise_linux suse_linux intuity_audix suse_email_server suse_linux_admin-cd_for…	Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.	NVD-CWE-Other	CVE-2004-0495	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

346114	-	mandrakesoft conectiva gentoo linux redhat suse trustix	mandrake_multi_network_firewall linux linux_kernel mandrake_linux mandrake_linux_corporate_server enterprise_linux suse_linux secure_linux	Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4.	NVD-CWE-Other	CVE-2004-0497	2017-10-11 10:29	2004-12-6	Show	GitHub Exploit DB Packet Storm

346115	-	rob_flynn gentoo mandrakesoft	gaim linux mandrake_linux	Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protoco…	NVD-CWE-Other	CVE-2004-0500	2017-10-11 10:29	2004-09-28	Show	GitHub Exploit DB Packet Storm

346116	-	sgi squirrelmail	propack squirrelmail	Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple …	NVD-CWE-Other	CVE-2004-0519	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

346117	-	open_webmail sgi squirrelmail	open_webmail propack squirrelmail	Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using …	NVD-CWE-Other	CVE-2004-0520	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

346118	-	sgi squirrelmail	propack squirrelmail	SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.	NVD-CWE-Other	CVE-2004-0521	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

346119	-	mandrakesoft suse conectiva engardelinux gentoo linux	mandrake_multi_network_firewall suse_email_server suse_linux_admin-cd_for_firewall suse_linux_connectivity_server suse_linux_database_server suse_linux_firewall_cd suse_linux_firewa…	The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally …	NVD-CWE-Other	CVE-2004-0535	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

346120	-	sox conectiva gentoo redhat	sox linux enterprise_linux enterprise_linux_desktop fedora_core	Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.	NVD-CWE-Other	CVE-2004-0557	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm