Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215821 7.1 危険 David King
Canonical		 - GNOME Vino の vino-server.c の vino_server_client_data_pending 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5745 2014-03-5 17:26 2013-09-12 Show GitHub Exploit DB Packet Storm
215822 3.6 注意 Samba Project - Samba の nsswitch/pam_winbind.c の winbind_name_list_to_sid_string_list 関数におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6150 2014-03-5 17:22 2012-06-12 Show GitHub Exploit DB Packet Storm
215823 6.8 警告 Gentoo Linux - Xdg-utils における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0386 2014-03-5 17:22 2008-01-30 Show GitHub Exploit DB Packet Storm
215824 6.8 警告 Google - Android OS において任意の Java のメソッドが実行される脆弱性 CWE-DesignError
CVE-2013-4710 2014-03-5 17:21 2013-12-17 Show GitHub Exploit DB Packet Storm
215825 6 警告 シスコシステムズ - Cisco Unified Communications Manager における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0686 2014-03-5 17:20 2014-02-3 Show GitHub Exploit DB Packet Storm
215826 4.3 警告 AITpro - WordPress 用 BulletProof Security プラグインのセキュリティログにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3487 2014-03-5 17:14 2013-08-1 Show GitHub Exploit DB Packet Storm
215827 4.3 警告 Andy Bailey - WordPress 用 CommentLuv プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1409 2014-03-5 17:13 2013-02-6 Show GitHub Exploit DB Packet Storm
215828 4.3 警告 アイファイ - Eye-Fi Helper におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4696 2014-03-5 16:56 2011-11-17 Show GitHub Exploit DB Packet Storm
215829 4.3 警告 DrinkedIn - Android 用 DrinkedIn BarFinder アプリケーションにおける任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1887 2014-03-5 16:42 2014-02-7 Show GitHub Exploit DB Packet Storm
215830 6.4 警告 HS Group - Android 用 ForzeArmate アプリケーションにおける任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1885 2014-03-5 16:40 2014-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289671 - - - The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary. NVD-CWE-Other
CVE-2004-1074 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
289672 - cisco ios
multiservice_platform_2650
multiservice_platform_2650xm
multiservice_platform_2651
multiservice_platform_2651xm
7200_router
7300_router
7500_router
7600_router
catalyst… 		Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue ins… NVD-CWE-Other
CVE-2004-1111 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
289673 - vim_development_group vim VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap,… NVD-CWE-Other
CVE-2004-1138 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
289674 - linux linux_kernel Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges. NVD-CWE-Other
CVE-2004-1144 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
289675 - ethereal_group
sgi
conectiva
altlinux
debian
redhat
suse 		ethereal
propack
linux
alt_linux
debian_linux
enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation
suse_linux 		Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java… NVD-CWE-Other
CVE-2004-1145 2017-10-11 10:29 2004-12-15 Show GitHub Exploit DB Packet Storm
289676 - adobe acrobat_reader Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an .ETD docume… NVD-CWE-Other
CVE-2004-1153 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
289677 - mozilla firefox
mozilla 		Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a dif… NVD-CWE-Other
CVE-2004-1156 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
289678 - kde
mandrakesoft
redhat 		konqueror
mandrake_linux
fedora_core 		Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but… NVD-CWE-Other
CVE-2004-1158 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
289679 - kde kdelibs
konqueror 		Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserte… NVD-CWE-Other
CVE-2004-1165 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
289680 - gnu mailman Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the re… NVD-CWE-Other
CVE-2004-1177 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm