Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215691 7.2 危険 linley henzell - crawl における権限を取得される脆弱性 - CVE-2006-0045 2014-03-11 17:43 2006-01-20 Show GitHub Exploit DB Packet Storm
215692 4.6 警告 SUSE - SUSE Linux におけるバッファオーバーフローの脆弱性 - CVE-2006-0043 2014-03-11 17:43 2006-01-31 Show GitHub Exploit DB Packet Storm
215693 3.5 注意 IBM - IBM Cognos Business Intelligence のサーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0861 2014-03-11 17:33 2014-02-14 Show GitHub Exploit DB Packet Storm
215694 6.5 警告 ownCloud - ownCloud Server の lib/bookmarks.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2046 2014-03-11 17:30 2013-05-14 Show GitHub Exploit DB Packet Storm
215695 6.5 警告 ownCloud - ownCloud Server の lib/db.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2045 2014-03-11 17:30 2013-05-14 Show GitHub Exploit DB Packet Storm
215696 6.5 警告 ownCloud - ownCloud Server の addressbookprovider.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-1893 2014-03-11 17:29 2013-03-25 Show GitHub Exploit DB Packet Storm
215697 4.3 警告 ownCloud - ownCloud Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1890 2014-03-11 17:29 2013-03-24 Show GitHub Exploit DB Packet Storm
215698 7.5 危険 Zemanta - WordPress 用 Search Everything プラグインの se_search_default における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2316 2014-03-11 17:24 2014-02-11 Show GitHub Exploit DB Packet Storm
215699 4.3 警告 ShinePHP - WordPress 用 Thank You Counter Button プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2315 2014-03-11 17:24 2014-02-25 Show GitHub Exploit DB Packet Storm
215700 4.3 警告 SFR - SFR Box ルータのファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1599 2014-03-11 15:46 2014-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
299501 - drake_team drake_cms Cross-site scripting (XSS) vulnerability in index.php in Drake CMS 0.4.9 allows remote attackers to inject arbitrary web script or HTML via the option parameter. CWE-79
Cross-site Scripting 		CVE-2007-6695 2017-08-8 10:29 2008-02-2 Show GitHub Exploit DB Packet Storm
299502 - novell client Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP4 for Windows allow remote attackers to execute arbitrary code via long arguments to multiple unspec… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6701 2017-08-8 10:29 2008-02-14 Show GitHub Exploit DB Packet Storm
299503 - synce vdccm Unspecified vulnerability in vdccm before 0.10.1 in SynCE (SynCE-dccm) might allow attackers to cause a denial of service via unspecified vectors. NVD-CWE-noinfo
CVE-2007-6703 2017-08-8 10:29 2008-03-5 Show GitHub Exploit DB Packet Storm
299504 - freewebshop freewebshop Unspecified vulnerability in customer.php in FreeWebshop.org 2.2.5, 2.2.6 and 2.2.7WIP1/2 allows remote attackers to gain administrator privileges via unknown vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-6711 2017-08-8 10:29 2008-03-25 Show GitHub Exploit DB Packet Storm
299505 - flip4mac flip4mac_wmv Unspecified vulnerability in Flip4Mac WMV before 2.2.0.49 has unknown impact and attack vectors related to malformed WMV files. NVD-CWE-noinfo
CVE-2007-6713 2017-08-8 10:29 2008-04-17 Show GitHub Exploit DB Packet Storm
299506 - civica_software civica SQL injection vulnerability in display.asp in Civica Software Civica allows remote attackers to execute arbitrary SQL commands via the Entry parameter. NOTE: the provenance of this information is un… CWE-89
SQL Injection 		CVE-2006-7231 2017-08-8 10:29 2006-12-31 Show GitHub Exploit DB Packet Storm
299507 - ignite_realtime openfire Cross-site scripting (XSS) vulnerability in the login form (login.jsp) of the admin console in Openfire (formerly Wildfire) 2.6.0, and possibly other versions before 3.5.3, allows remote attackers to… CWE-79
Cross-site Scripting 		CVE-2006-7233 2017-08-8 10:29 2006-12-31 Show GitHub Exploit DB Packet Storm
299508 - 5e5 teamtek_universal_ftp_server Teamtek Universal FTP Server 1.0.50 allows remote attackers to cause a denial of service (daemon crash or hang) via (1) multiple STOR (aka PUT) commands, or an MKD command followed by (2) a '*' argum… CWE-20
 Improper Input Validation  		CVE-2006-7235 2017-08-8 10:29 2008-12-12 Show GitHub Exploit DB Packet Storm
299509 - cups cups Multiple stack-based buffer overflows in the phpcups PHP module for CUPS 1.1.23rc1 might allow context-dependent attackers to execute arbitrary code via vectors that result in long function parameter… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-4873 2017-08-8 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm
299510 - mozilla mozilla The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE method, which allows remote attackers to obtain (1) proxy authentication passwords via a request with a "Max-Forwards: 0" header or … CWE-94
Code Injection 		CVE-2005-4874 2017-08-8 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm