Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216301	10	危険	Mozilla Foundation	-	Firefox および Thunderbird で使用される Mozilla Network Security Services の libnss3.so における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2014-1544	2014-07-24 14:38	2014-07-22	Show	GitHub Exploit DB Packet Storm

216302	4.3	警告	Drupal	-	Drupal の Ajax システムにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5022	2014-07-23 16:52	2014-07-16	Show	GitHub Exploit DB Packet Storm

216303	2.1	注意	Drupal	-	Drupal の Form API におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5021	2014-07-23 16:51	2014-07-16	Show	GitHub Exploit DB Packet Storm

216304	4.9	警告	Drupal	-	Drupal の File モジュールにおける制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-5020	2014-07-23 16:50	2014-07-16	Show	GitHub Exploit DB Packet Storm

216305	5	警告	Drupal	-	Drupal のマルチサイト機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-5019	2014-07-23 16:49	2014-07-16	Show	GitHub Exploit DB Packet Storm

216306	7.5	危険	JoomlaBoat.com	-	Joomla! 用 YouTube Gallery コンポーネントの models\gallery.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-4960	2014-07-23 14:58	2014-07-15	Show	GitHub Exploit DB Packet Storm

216307	5	警告	ARM Ltd. (旧 Offspark)	-	PolarSSL の library/ssl_tls.c の ssl_decrypt_buf 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-310 暗号の問題	CVE-2014-4911	2014-07-23 14:18	2014-07-11	Show	GitHub Exploit DB Packet Storm

216308	4.3	警告	e107.org	-	e107 の e107_admin/db.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4734	2014-07-23 14:13	2014-06-27	Show	GitHub Exploit DB Packet Storm

216309	6.8	警告	GitList	-	Gitlist で使用される Gitter の Repository.php における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-5023	2014-07-23 14:01	2014-06-29	Show	GitHub Exploit DB Packet Storm

216310	7.5	危険	GitList	-	Gitlist における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-4511	2014-07-23 14:01	2014-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347071	-	newsboard	unclassified_newsboard	SQL injection vulnerability in search.inc.php in Unclassified NewsBoard before 1.5.3 Patch 4 allows remote attackers to execute arbitrary SQL commands via the (1) DateFrom or (2) DateUntil parameter …	CWE-89 SQL Injection	CVE-2005-3686	2011-08-5 13:00	2005-11-19	Show	GitHub Exploit DB Packet Storm

347072	-	phpcomasy	phpcomasy	SQL injection vulnerability in index.php in phpComasy 0.7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: an examination of the 0.7.5 source code …	CWE-89 SQL Injection	CVE-2005-3744	2011-08-5 13:00	2005-11-22	Show	GitHub Exploit DB Packet Storm

347073	-	tru-zone	nukeet	SQL injection vulnerability in the Search module in Tru-Zone Nuke ET 3.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the query parameter.	CWE-89 SQL Injection	CVE-2005-3748	2011-08-5 13:00	2005-11-22	Show	GitHub Exploit DB Packet Storm

347074	-	omnistar_interactive	omnistar_live	SQL injection vulnerability in kb.php in Omnistar Live 5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) category_id parameter. NOTE: due to a typo, an…	CWE-89 SQL Injection	CVE-2005-3840	2011-08-5 13:00	2005-11-27	Show	GitHub Exploit DB Packet Storm

347075	-	altantisfaq	altantis_knowledge_base_software	SQL injection vulnerability in search.php in AtlantisFAQ Knowledge Base Software 2.03 and earlier allows remote attackers to execute arbitrary SQL commands via the searchStr parameter.	CWE-89 SQL Injection	CVE-2005-3881	2011-08-5 13:00	2005-11-29	Show	GitHub Exploit DB Packet Storm

347076	-	cfmagic	magic_list_pro	SQL injection vulnerability in view_archive.cfm in CFMagic Magic List Pro 2.5 allows remote attackers to execute arbitrary SQL commands via the ListID parameter.	CWE-89 SQL Injection	CVE-2005-4073	2011-08-5 13:00	2005-12-8	Show	GitHub Exploit DB Packet Storm

347077	-	mimms xine	mimms xine-lib	Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arb…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-2200	2011-08-2 13:00	2006-06-28	Show	GitHub Exploit DB Packet Storm

347078	-	jed_wing	chm_lib	Stack-based buffer overflow in the _chm_find_in_PMGL function in chm_lib.c for chmlib before 0.36, as used in products such as KchmViewer, allows user-assisted attackers to execute arbitrary code via…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2005-2930	2011-08-2 13:00	2005-10-29	Show	GitHub Exploit DB Packet Storm

347079	-	freebsd nrl	freebsd opie	Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to c…	CWE-189 Numeric Errors	CVE-2010-1938	2011-07-29 11:37	2010-05-29	Show	GitHub Exploit DB Packet Storm

347080	-	clamav	clamav	The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB fil…	CWE-399 Resource Management Errors	CVE-2005-3501	2011-07-14 13:00	2005-11-5	Show	GitHub Exploit DB Packet Storm