Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216301 10 危険 GateHouse
Harris
Thuraya Telecommunications
Hughes Network Systems
日本無線株式会社
Inmarsat plc.		 - 複数の衛星通信端末のファームウェアにおける不特定のログインアクセス権を取得される脆弱性 CWE-255
CWE-Other
CVE-2013-6034 2014-02-5 17:49 2013-10-4 Show GitHub Exploit DB Packet Storm
216302 3.5 注意 Lexmark - Lexmark の複数のプリンタ製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6033 2014-02-5 17:05 2013-10-4 Show GitHub Exploit DB Packet Storm
216303 10 危険 Lexmark - Lexmark の複数のプリンタ製品の cgi-bin/postpf/cgi-bin/dynamic/config/config.html における Password Protect の管理パスワードを削除される脆弱性 CWE-20
CWE-Other
CVE-2013-6032 2014-02-5 17:00 2013-10-4 Show GitHub Exploit DB Packet Storm
216304 4 警告 IBM - IBM General Parallel File System におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0834 2014-02-5 16:12 2014-01-31 Show GitHub Exploit DB Packet Storm
216305 6.8 警告 IBM - IBM InfoSphere Master Data Management - Collaborative Edition および InfoSphere Master Data Management Server for Product Information Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5427 2014-02-5 16:11 2013-08-22 Show GitHub Exploit DB Packet Storm
216306 9.3 危険 ZTE - ZTE ZXV10 W300 に認証情報がハードコードされている問題 CWE-255
CWE-Other
CVE-2014-0329 2014-02-5 15:50 2014-02-3 Show GitHub Exploit DB Packet Storm
216307 4.9 警告 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4739 2014-02-5 11:54 2013-10-15 Show GitHub Exploit DB Packet Storm
216308 7.2 危険 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4738 2014-02-5 11:53 2013-10-15 Show GitHub Exploit DB Packet Storm
216309 8.5 危険 ISC, Inc.
アップル
VMware		 - ISC BIND にサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2012-1667 2014-02-4 18:13 2012-06-5 Show GitHub Exploit DB Packet Storm
216310 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-2250 2014-02-4 18:08 2012-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298651 - bti-tracker bti-tracker blocks/shoutbox_block.php in BtiTracker 1.4.4 does not verify user accounts, which allows remote attackers to post shoutbox entries as arbitrary users via a modified nick field. CWE-287
CWE-255
CWE-264
Improper Authentication
Credentials Management
Permissions, Privileges, and Access Controls 		CVE-2007-5988 2017-07-29 10:33 2007-11-15 Show GitHub Exploit DB Packet Storm
298652 - bandersnatch bandersnatch Multiple cross-site scripting (XSS) vulnerabilities in index.php in Bandersnatch 0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) func or (2) date parameter, or the jid p… CWE-79
Cross-site Scripting 		CVE-2007-6001 2017-07-29 10:33 2007-11-16 Show GitHub Exploit DB Packet Storm
298653 - fenrir grani
sleipnir 		Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search fiel… CWE-79
Cross-site Scripting 		CVE-2007-6002 2017-07-29 10:33 2007-11-16 Show GitHub Exploit DB Packet Storm
298654 - thomson speedtouch Cross-site scripting (XSS) vulnerability in cgi/b/ic/connect in the Thomson SpeedTouch 716 with firmware 5.4.0.14 allows remote attackers to inject arbitrary web script or HTML via the url parameter.… CWE-79
Cross-site Scripting 		CVE-2007-6003 2017-07-29 10:33 2007-11-16 Show GitHub Exploit DB Packet Storm
298655 - webex_communications webex_gpccontainer_activex_control Unspecified vulnerability in the GpcContainer.GpcContainer.1 ActiveX control in WebEx allows remote attackers to cause a denial of service (memory access violation and crash) via (1) an invalid argum… CWE-399
 Resource Management Errors 		CVE-2007-6005 2017-07-29 10:33 2007-11-16 Show GitHub Exploit DB Packet Storm
298656 - horde framework
groupware_webmail_edition
horde
imp 		IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to (1) delete arbitra… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-6018 2017-07-29 10:33 2008-01-11 Show GitHub Exploit DB Packet Storm
298657 - atom photoblog Multiple cross-site scripting (XSS) vulnerabilities in atomPhotoBlog.php in Atom PhotoBlog 1.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Your Name, (2) Y… NVD-CWE-Other
CVE-2007-3134 2017-07-29 10:32 2007-06-9 Show GitHub Exploit DB Packet Storm
298658 - opera opera_browser Visual truncation vulnerability in Opera 9.21 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after 34 characters, as de… NVD-CWE-Other
CVE-2007-3142 2017-07-29 10:32 2007-06-12 Show GitHub Exploit DB Packet Storm
298659 - kde konqueror Visual truncation vulnerability in Konqueror 3.5.5 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain numbe… NVD-CWE-Other
CVE-2007-3143 2017-07-29 10:32 2007-06-12 Show GitHub Exploit DB Packet Storm
298660 - mozilla mozilla Visual truncation vulnerability in Mozilla 1.7.12 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number… NVD-CWE-Other
CVE-2007-3144 2017-07-29 10:32 2007-06-12 Show GitHub Exploit DB Packet Storm