Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216051 5 警告 シスコシステムズ - Cisco Unified Communications Manager の Enterprise License Manager コンポーネントにおける ELM ファイルを読まれる脆弱性 CWE-287
不適切な認証 		CVE-2014-0733 2014-02-21 11:42 2014-02-19 Show GitHub Exploit DB Packet Storm
216052 6.8 警告 シスコシステムズ - Cisco Unified Communications Manager の Call Detail Records Analysis and Reporting ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-0736 2014-02-21 11:37 2014-02-19 Show GitHub Exploit DB Packet Storm
216053 4.3 警告 シスコシステムズ - Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0735 2014-02-21 11:14 2014-02-19 Show GitHub Exploit DB Packet Storm
216054 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Certificate Authority Proxy Function の実装における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0734 2014-02-21 11:13 2014-02-19 Show GitHub Exploit DB Packet Storm
216055 5 警告 シスコシステムズ - Cisco Unified Communications Manager の Real Time Monitoring Tool Web アプリケーションにおけるアプリケーションファイルを読まれる脆弱性 CWE-287
不適切な認証 		CVE-2014-0732 2014-02-21 11:12 2014-02-19 Show GitHub Exploit DB Packet Storm
216056 2.1 注意 Linux - Linux Kernel の net/key/af_key.c におけるカーネルヒープメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2013-2234 2014-02-20 18:22 2013-06-26 Show GitHub Exploit DB Packet Storm
216057 2.1 注意 Linux
レッドハット		 - Linux Kernel の drivers/cdrom/cdrom.c 内の mmc_ioctl_cdrom_read_data 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2164 2014-02-20 18:17 2013-06-6 Show GitHub Exploit DB Packet Storm
216058 4.4 警告 Linux - Linux Kernel の drivers/net/ethernet/broadcom/tg3.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1929 2014-02-20 18:07 2013-03-27 Show GitHub Exploit DB Packet Storm
216059 4.7 警告 Linux
レッドハット		 - Linux Kernel の fs/compat_ioctl.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-1928 2014-02-20 18:03 2013-04-8 Show GitHub Exploit DB Packet Storm
216060 5 警告 GNU Project - GNU C Library におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1914 2014-02-20 17:53 2013-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279701 - vtiger vtiger_crm The uploads module in vTiger CRM 4.2 and earlier allows remote attackers to upload arbitrary files, such as PHP files, via the add2db action. NVD-CWE-Other
CVE-2005-3824 2018-10-20 00:39 2005-11-26 Show GitHub Exploit DB Packet Storm
279702 - speedproject speedcommander
squeez
zipstar 		Stack-based buffer overflow in (1) CxZIP60.dll and (2) CxZIP60u.dll, as used in SpeedProject products including (a) ZipStar 5.0 Build 4285, (b) Squeez 5.0 Build 4285, and (c) SpeedCommander 11.0 Buil… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3831 2018-10-20 00:39 2005-11-27 Show GitHub Exploit DB Packet Storm
279703 - speedproject speedcommander
squeez 		Stack-based buffer overflow in (1) CxUux60.dll and (2) CxUux60u.dll, as used in SpeedProject products including (a) Squeez 5.0 Build 4285, and (b) SpeedCommander 11.0 Build 4430 and 10.51 Build 4430,… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3832 2018-10-20 00:39 2005-11-27 Show GitHub Exploit DB Packet Storm
279704 - pmwiki pmwiki Cross-site scripting (XSS) vulnerability in the Search module in PmWiki up to 2.0.12 allows remote attackers to inject arbitrary web script or HTML via the q parameter. NVD-CWE-Other
CVE-2005-3849 2018-10-20 00:39 2005-11-27 Show GitHub Exploit DB Packet Storm
279705 - q-news q-news PHP remote file inclusion vulnerability in q-news.php in Q-News 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter. CWE-94
Code Injection 		CVE-2005-3859 2018-10-20 00:39 2005-11-29 Show GitHub Exploit DB Packet Storm
279706 - oliver_may athena_php_website_administration PHP remote file inclusion vulnerability in athena.php in Oliver May Athena PHP Website Administration 0.1a allows remote attackers to execute arbitrary PHP code via a URL in the athena_dir parameter. CWE-94
Code Injection 		CVE-2005-3860 2018-10-20 00:39 2005-11-29 Show GitHub Exploit DB Packet Storm
279707 - phpgreetz phpgreetz PHP remote file inclusion vulnerability in content.php in phpGreetz 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the content parameter. CWE-94
Code Injection 		CVE-2005-3861 2018-10-20 00:39 2005-11-29 Show GitHub Exploit DB Packet Storm
279708 - ktools ktools Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3863 2018-10-20 00:39 2005-11-29 Show GitHub Exploit DB Packet Storm
279709 - cisco ios Cross-site scripting (XSS) vulnerability in Cisco IOS Web Server for IOS 12.0(2a) allows remote attackers to inject arbitrary web script or HTML by (1) packets containing HTML that an administrator v… NVD-CWE-Other
CVE-2005-3921 2018-10-20 00:39 2005-11-30 Show GitHub Exploit DB Packet Storm
279710 - guppy guppy Direct static code injection vulnerability in error.php in GuppY 4.5.9 and earlier, when register_globals is disabled, allows remote attackers to execute arbitrary PHP code via the _SERVER[REMOTE_ADD… NVD-CWE-Other
CVE-2005-3926 2018-10-20 00:39 2005-11-30 Show GitHub Exploit DB Packet Storm