Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216071	2.6	注意	phpMyFAQ	-	phpMyFAQ におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-0813	2014-02-20 13:57	2014-02-7	Show	GitHub Exploit DB Packet Storm

216072	4.3	警告	デル	-	DELL SonicWALL GMS/Analyzer/UMA にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0332	2014-02-20 13:55	2014-02-11	Show	GitHub Exploit DB Packet Storm

216073	4.3	警告	Mozilla Foundation	-	Mozilla Thunderbird および SeaMonkey におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2018	2014-02-19 19:08	2014-02-6	Show	GitHub Exploit DB Packet Storm

216074	6.8	警告	Mozilla Foundation	-	Mozilla Firefox における永続的なログアウトに関するクロスサイトリクエストフォージェリに相当する攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-6167	2014-02-19 19:08	2013-04-4	Show	GitHub Exploit DB Packet Storm

216075	4.3	警告	Canonical	-	Ubuntu Metal as a Service の API におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1070	2014-02-19 18:55	2013-11-14	Show	GitHub Exploit DB Packet Storm

216076	2.1	注意	Canonical	-	Ubuntu Metal as a Service における RabbitMQ 認証資格情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1069	2014-02-19 18:55	2013-11-22	Show	GitHub Exploit DB Packet Storm

216077	7.5	危険	Csound	-	Csound におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0270	2014-02-19 18:54	2012-04-5	Show	GitHub Exploit DB Packet Storm

216078	5	警告	Litech Systems Design	-	router advertisement daemon の process_rs 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3605	2014-02-19 18:54	2011-10-6	Show	GitHub Exploit DB Packet Storm

216079	7.5	危険	Litech Systems Design	-	router advertisement daemon の process_ra 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-3604	2014-02-19 18:53	2011-10-6	Show	GitHub Exploit DB Packet Storm

216080	7.5	危険	Litech Systems Design	-	router advertisement daemon の process_ra 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3601	2014-02-19 18:53	2011-10-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
279871	-	anteco_visual_technologies	ownserver	Directory traversal vulnerability in Anteco Visual Technologies OwnServer 1.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in a URL.	CWE-22 Path Traversal	CVE-2004-2745	2018-10-20 00:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

279872	-	pensacola_web_designs	xtremeasp_photogallery	SQL injection vulnerability in adminlogin.asp in XTREME ASP Photo Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.	CWE-89 SQL Injection	CVE-2004-2746	2018-10-20 00:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

279873	-	pablo_software_solutions	quick_n_easy_ftp_server	Directory traversal vulnerability in Pablo Software Solutions Quick 'n Easy FTP Server 1.77, and possibly earlier versions, allows remote authenticated users to determine the existence of arbitrary f…	CWE-22 Path Traversal	CVE-2004-2747	2018-10-20 00:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

279874	-	webtrends	reporting_center	viewreport.pl in NetIQ WebTrends Reporting Center Enterprise Edition 6.1a allows remote attackers to determine the installation path via an invalid profileid parameter, which leaks the pathname in an…	CWE-200 Information Exposure	CVE-2004-2748	2018-10-20 00:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

279875	-	ietf	md5	The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the sig…	CWE-310 Cryptographic Issues	CVE-2004-2761	2018-10-20 00:30	2009-01-6	Show	GitHub Exploit DB Packet Storm

279876	-	ietf	md5	There are four significant mitigating factors. 1) Most enterprise-class certificates, such as VeriSign’s Extended Validation SSL Certificates use the still secure SHA-1 hash function. 2) Certifica…	CWE-310 Cryptographic Issues	CVE-2004-2761	2018-10-20 00:30	2009-01-6	Show	GitHub Exploit DB Packet Storm

279877	-	lbl	tcpdump	The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP pac…	NVD-CWE-Other	CVE-2004-0057	2018-10-20 00:29	2004-02-17	Show	GitHub Exploit DB Packet Storm

279878	-	robert_krawitz	escputil	Buffer overflow in escputil, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long printer-name command line argument.	NVD-CWE-Other	CVE-2003-0035	2018-10-20 00:29	2003-02-7	Show	GitHub Exploit DB Packet Storm

279879	-	rildo_pragana	ml85p	ml85p, as included in the printer-drivers package for Mandrake Linux, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable filenames of the form "m…	NVD-CWE-Other	CVE-2003-0036	2018-10-20 00:29	2003-02-7	Show	GitHub Exploit DB Packet Storm

279880	-	samba hp	samba cifs-9000_server	Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.	NVD-CWE-Other	CVE-2003-0085	2018-10-20 00:29	2003-03-31	Show	GitHub Exploit DB Packet Storm