Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
215971 5 警告 Django Software Foundation
Canonical
- Django の utils.html.strip_tags 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2015-2316 2015-05-25 16:11 2015-03-18 Show GitHub Exploit DB Packet Storm
215972 4.3 警告 OpenStack - OpenStack keystonemiddleware および python-keystoneclient の s3_token ミドルウェアにおける中間者攻撃を実行される脆弱性 CWE-Other
その他
CVE-2015-1852 2015-05-25 16:11 2015-04-14 Show GitHub Exploit DB Packet Storm
215973 5.5 警告 OpenStack
オラクル
- OpenStack Image Registry and Delivery Service の V2 API における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-9493 2015-05-25 16:09 2014-12-10 Show GitHub Exploit DB Packet Storm
215974 7.5 危険 FreeType Project - FreeType の sfnt/ttcmap.c 内の tt_cmap4_validate 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2014-9663 2015-05-25 16:09 2014-11-22 Show GitHub Exploit DB Packet Storm
215975 5.5 警告 OpenStack - OpenStack Object Storage におけるオブジェクトの最新バージョンを削除される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-1856 2015-05-25 16:09 2015-04-15 Show GitHub Exploit DB Packet Storm
215976 6.5 警告 The Cacti Group - Cacti における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2015-0916 2015-05-25 15:28 2015-05-14 Show GitHub Exploit DB Packet Storm
215977 6.8 警告 Thomas Abeel - Simple PHP Agenda におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1978 2015-05-25 14:45 2012-03-28 Show GitHub Exploit DB Packet Storm
215978 5 警告 シスコシステムズ - Cisco Access Control Server の REST API におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2015-0746 2015-05-25 14:44 2015-05-21 Show GitHub Exploit DB Packet Storm
215979 5 警告 Huawei - Huawei E355s Mobile WiFi のファームウェアおよび WEBUI における重要な設定情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2015-3912 2015-05-25 12:30 2015-04-29 Show GitHub Exploit DB Packet Storm
215980 9 危険 Huawei - Huawei E587 Mobile WiFi のファームウェアにおける認証を回避される脆弱性 CWE-Other
その他
CVE-2015-3911 2015-05-25 12:29 2015-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293441 - castor_project
opensuse_project
opensuse
castor
opensuse
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document. CWE-611
XXE
CVE-2014-3004 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293442 - directfb
suse
opensuse
directfb
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_workstation_extension
opensuse
suse_linux_enterprise_server
The Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via th… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-2978 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293443 - suse
opensuse
directfb
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_workstation_extension
opensuse
suse_linux_enterprise_server
directfb
Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and … CWE-189
Numeric Errors
CVE-2014-2977 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293444 - google chrome Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3157 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293445 - google chrome Buffer overflow in the clipboard implementation in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that t… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3156 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293446 - google chrome net/spdy/spdy_write_queue.cc in the SPDY implementation in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service (out-of-bounds read) by leveraging incorrect queue m… NVD-CWE-Other
CVE-2014-3155 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293447 - google chrome Use-after-free vulnerability in the ChildThread::Shutdown function in content/child/child_thread.cc in the filesystem API in Google Chrome before 35.0.1916.153 allows remote attackers to cause a deni… NVD-CWE-Other
CVE-2014-3154 2024-11-21 11:07 2014-06-11 Show GitHub Exploit DB Packet Storm
293448 - gomlab gom_media_player GOM Media Player 2.2.57.5189 and earlier allows remote attackers to cause a denial of service (crash) via a crafted .ogg file. CWE-20
 Improper Input Validation 
CVE-2014-3216 2024-11-21 11:07 2014-06-10 Show GitHub Exploit DB Packet Storm
293449 - cisco webex_meetings_server Cisco WebEx Meeting Server does not properly restrict the content of URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-serve… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3294 2024-11-21 11:07 2014-06-10 Show GitHub Exploit DB Packet Storm
293450 - cisco unified_communications_manager The Real Time Monitoring Tool (RTMT) implementation in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to (1) read or (2) delete arbitrary files via a crafted URL,… CWE-20
 Improper Input Validation 
CVE-2014-3292 2024-11-21 11:07 2014-06-10 Show GitHub Exploit DB Packet Storm