Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
218311 9 危険 オラクル - Oracle Database Server の Core RDBMS における脆弱性 CWE-noinfo
情報不足
CVE-2014-6567 2015-01-21 16:25 2015-01-20 Show GitHub Exploit DB Packet Storm
218312 6.3 警告 オラクル - Oracle Database Server の Recovery における脆弱性 CWE-noinfo
情報不足
CVE-2014-6541 2015-01-21 16:24 2015-01-20 Show GitHub Exploit DB Packet Storm
218313 4 警告 オラクル - Oracle Database Server の PL/SQL における脆弱性 CWE-noinfo
情報不足
CVE-2014-6514 2015-01-21 16:24 2015-01-20 Show GitHub Exploit DB Packet Storm
218314 3.5 注意 オラクル - Oracle MySQL の MySQL Server における Server : Pluggable Auth に関する脆弱性 CWE-noinfo
情報不足
CVE-2015-0385 2015-01-21 15:34 2015-01-20 Show GitHub Exploit DB Packet Storm
218315 10 危険 Ceragon Ltd. - Ceragon FibeAir IP-10 に root パスワードがハードコードされている問題 CWE-255
CWE-Other
CVE-2015-0924 2015-01-21 14:05 2015-01-16 Show GitHub Exploit DB Packet Storm
218316 3.5 注意 Envato Pty Ltd. - Crea8Social の Games 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-1054 2015-01-21 13:34 2015-01-3 Show GitHub Exploit DB Packet Storm
218317 4.3 警告 Croogo - Croogo の管理バックエンドにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-1053 2015-01-21 12:35 2015-01-12 Show GitHub Exploit DB Packet Storm
218318 7.2 危険 Macroplant LLC - Macroplant iExplorer における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2014-9600 2015-01-21 12:14 2014-12-25 Show GitHub Exploit DB Packet Storm
218319 5 警告 MediaWiki - MediaWiki のにおける $wgCrossSiteAJAXdomains の CORS の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-9476 2015-01-21 12:13 2014-12-17 Show GitHub Exploit DB Packet Storm
218320 4.3 警告 MediaWiki - MediaWiki 用 Hovercards エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-9480 2015-01-21 12:03 2014-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354181 - freshmeat network_query_tool Cross-site scripting (XSS) vulnerability in nqt.php in Network Query Tool (NQT) 1.6 allows remote attackers to inject arbitrary web script or HTML via the portNum parameter. NVD-CWE-Other
CVE-2004-1964 2017-07-11 10:31 2004-04-23 Show GitHub Exploit DB Packet Storm
354182 - - - Multiple cross-site scripting (XSS) vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) redirect parameter to … NVD-CWE-Other
CVE-2004-1965 2017-07-11 10:31 2004-04-25 Show GitHub Exploit DB Packet Storm
354183 - openbb openbb Multiple SQL injection vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) FID parameter in board.php, (2) sortorder… NVD-CWE-Other
CVE-2004-1966 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354184 - openbb openbb The readmsg action in myhome.php in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to read arbitrary messages by modifying the id parameter. NVD-CWE-Other
CVE-2004-1968 2017-07-11 10:31 2004-04-26 Show GitHub Exploit DB Packet Storm
354185 - - - The avatar upload capability in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to execute arbitrary script by uploading files that include scripting code such as Javascript. NVD-CWE-Other
CVE-2004-1969 2017-07-11 10:31 2004-04-25 Show GitHub Exploit DB Packet Storm
354186 - securecomputing smartether_ss6215s_switch Samsung SmartEther SS6215S switch, and possibly other Samsung switches, allows remote attackers and local users to gain administrative access by providing the admin username followed by a password th… NVD-CWE-Other
CVE-2004-1970 2017-07-11 10:31 2004-04-26 Show GitHub Exploit DB Packet Storm
354187 - - - modules.php in PHP-Nuke Video Gallery Module 0.1 Beta 5 allows remote attackers to gain sensitive information via an HTTP request with an invalid (1) catid or (2) clipid parameter, which reveals the … NVD-CWE-Other
CVE-2004-1971 2017-07-11 10:31 2004-04-26 Show GitHub Exploit DB Packet Storm
354188 - francisco_burzi php-nuke SQL injection vulnerability in modules.php in PHP-Nuke Video Gallery Module 0.1 Beta 5 allows remote attackers to execute arbitrary SQL code via the (1) clipid or (2) catid parameters in a viewclip, … NVD-CWE-Other
CVE-2004-1972 2017-07-11 10:31 2004-04-26 Show GitHub Exploit DB Packet Storm
354189 - digi www_server DiGi Web Server allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi… NVD-CWE-Other
CVE-2004-1973 2017-07-11 10:31 2004-04-27 Show GitHub Exploit DB Packet Storm
354190 - php_arena pafiledb paFileDB 3.1 allows remote attackers to gain sensitive information via a direct request to (1) login.php, (2) category.php, (3) search.php, (4) main.php, (5) viewall.php, (6) download.php, (7) email.… NVD-CWE-Other
CVE-2004-1974 2017-07-11 10:31 2004-04-27 Show GitHub Exploit DB Packet Storm