Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218661	3.3	注意	libimobiledevice	-	libimobiledevice の userpref.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2013-2142	2014-01-22 16:31	2013-08-14	Show	GitHub Exploit DB Packet Storm

218662	2.6	注意	Drupal	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0244	2014-01-22 16:31	2013-01-16	Show	GitHub Exploit DB Packet Storm

218663	2.7	注意	Fabrice Bellard Xen プロジェクト	-	Xen および QEMU の qemu-xen の qdisk PV ディスクバックエンドにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-4375	2014-01-22 16:22	2013-10-10	Show	GitHub Exploit DB Packet Storm

218664	1.9	注意	Linux	-	Linux Kernel の drivers/net/hamradio/yam.c の yam_ioctl 関数における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1446	2014-01-22 16:05	2014-01-15	Show	GitHub Exploit DB Packet Storm

218665	2.1	注意	Linux	-	Linux Kernel の drivers/net/wan/wanxl.c の wanxl_ioctl 関数における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1445	2014-01-22 16:04	2014-01-15	Show	GitHub Exploit DB Packet Storm

218666	1.7	注意	Linux	-	Linux Kernel の drivers/net/wan/farsync.c の fst_get_iface 関数における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1444	2014-01-22 16:04	2014-01-15	Show	GitHub Exploit DB Packet Storm

218667	4.7	警告	Linux	-	AMD K7 および K8 プラットフォーム上で稼働する Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1438	2014-01-22 16:03	2014-01-15	Show	GitHub Exploit DB Packet Storm

218668	9.3	危険	Hexagon	-	Intergraph ERDAS ER Viewer の ermapper_u.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3483	2014-01-22 14:56	2013-05-27	Show	GitHub Exploit DB Packet Storm

218669	9.3	危険	Hexagon	-	Intergraph ERDAS ER Viewer の ermapper_u.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3482	2014-01-22 14:54	2013-05-27	Show	GitHub Exploit DB Packet Storm

218670	5	警告	Puppet Canonical オラクル	-	Puppet における SSLv2 ダウングレード攻撃を実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-1654	2014-01-22 14:17	2013-03-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295041	-	obm	open_business_management	Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 2.3.20 and probably earlier allow remote attackers to inject arbitrary web script or HTML via the (1) tf_name, (2…	CWE-79 Cross-site Scripting	CVE-2011-5143	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295042	-	obm	open_business_management	Multiple SQL injection vulnerabilities in Open Business Management (OBM) 2.4.0-rc13 and probably earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) sel_domain_id o…	CWE-89 SQL Injection	CVE-2011-5145	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295043	-	obm	open_business_management	Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 2.4.0-rc13 and probably earlier allow remote attackers to inject arbitrary web script or HTML via the (1) tf_dele…	CWE-79 Cross-site Scripting	CVE-2011-5142	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295044	-	obm	open_business_management	Directory traversal vulnerability in exportcsv/exportcsv_index.php in Open Business Management (OBM) 2.4.0-rc13 and earlier allows remote authenticated users to include and execute arbitrary local fi…	CWE-22 Path Traversal	CVE-2011-5141	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295045	-	diy-cms	blog	Multiple SQL injection vulnerabilities in the blog module 1.0 for DiY-CMS allow remote attackers to execute arbitrary SQL commands via the (1) start parameter to (a) tags.php, (b) list.php, (c) index…	CWE-89 SQL Injection	CVE-2011-5140	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295046	-	preprojects	business_cards_designer	SQL injection vulnerability in page.php in Pre Studio Business Cards Designer allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2011-5139	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295047	-	tforum	tforum	Cross-site scripting (XSS) vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action.	CWE-79 Cross-site Scripting	CVE-2011-5138	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295048	-	tforum	tforum	Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the (1) TopicID parameter to viewtopic.php, the (2) BoardID parameter to viewboard…	CWE-89 SQL Injection	CVE-2011-5137	2024-11-21 10:33	2012-09-1	Show	GitHub Exploit DB Packet Storm

295049	-	epractizelabs	subscription_manager	showImg.php in EPractize Labs Subscription Manager, possibly 1.0, allows remote attackers to overwrite arbitrary files via the db parameter.	CWE-20 Improper Input Validation	CVE-2011-5136	2024-11-21 10:33	2012-08-31	Show	GitHub Exploit DB Packet Storm

295050	-	docebo	docebolms	Multiple SQL injection vulnerabilities in the save_connection function in lib/lib.iotask.php in the iotask module in DoceboLMS 4.0.4 and earlier allow remote authenticated users with admin or teacher…	CWE-89 SQL Injection	CVE-2011-5135	2024-11-21 10:33	2012-08-31	Show	GitHub Exploit DB Packet Storm