Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218701 4.3 警告 シスコシステムズ - Windows 上で稼働する Cisco Jabber の Send Screen Capture の実装におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-0666 2014-01-20 16:07 2014-01-15 Show GitHub Exploit DB Packet Storm
218702 6.3 警告 シスコシステムズ - Cisco Secure Access Control System の RMI インターフェースにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0667 2014-01-20 16:07 2014-01-16 Show GitHub Exploit DB Packet Storm
218703 10 危険 シスコシステムズ - Cisco Secure Access Control System の Web インターフェースにおける任意のオペレーティングシステムコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0650 2014-01-20 16:05 2014-01-15 Show GitHub Exploit DB Packet Storm
218704 9 危険 シスコシステムズ - Cisco Secure Access Control System の RMI インターフェースにおける superadmin のアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0649 2014-01-20 16:05 2014-01-15 Show GitHub Exploit DB Packet Storm
218705 10 危険 シスコシステムズ - Cisco Secure Access Control System の RMI インターフェースにおける管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0648 2014-01-20 16:04 2014-01-15 Show GitHub Exploit DB Packet Storm
218706 4 警告 シスコシステムズ - Cisco WebEx Meetings Server における平文の管理者パスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-6687 2014-01-20 16:03 2014-01-16 Show GitHub Exploit DB Packet Storm
218707 6.8 警告 マカフィー - McAfee Vulnerability Manager の Enterprise Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-1473 2014-01-20 15:26 2014-01-9 Show GitHub Exploit DB Packet Storm
218708 4.3 警告 マカフィー - McAfee Vulnerability Manager の Enterprise Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1472 2014-01-20 15:20 2014-01-9 Show GitHub Exploit DB Packet Storm
218709 10 危険 Sierra Wireless - Sierra Wireless AirLink Raven X EV-DO ゲートウェイにおけるファームウェアをリプログラムされる脆弱性 CWE-287
不適切な認証 		CVE-2013-2820 2014-01-20 14:39 2014-01-10 Show GitHub Exploit DB Packet Storm
218710 9.3 危険 Sierra Wireless - Sierra Wireless AirLink Raven X EV-DO ゲートウェイにおけるトロイの木馬ファームウェアをインストールされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-2819 2014-01-20 14:33 2014-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295071 - sophos safeguard_enterprise_device_encryption
safeguard_easy_device_encryption_client
disk_encryption 		Sophos SafeGuard Enterprise Device Encryption 5.x through 5.50.8.13, Sophos SafeGuard Easy Device Encryption Client 5.50.x, and Sophos Disk Encryption 5.50.x have a delay before removal of (1) out-of… CWE-362
Race Condition 		CVE-2011-5117 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295072 - setseed setseed_cms SQL injection vulnerability in setseed-hub in SetSeed CMS 5.8.20, 5.11.2, and earlier allows remote attackers to execute arbitrary SQL commands via the loggedInUser cookie. CWE-89
SQL Injection 		CVE-2011-5116 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295073 - dlguard dlguard Cross-site scripting (XSS) vulnerability in DLGuard, possibly 4.6 and earlier, allows remote attackers to inject arbitrary web script or HTML via the searchCart parameter to index.php. CWE-79
Cross-site Scripting 		CVE-2011-5115 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295074 - barraguard barracuda_link_balancer_series_firmware Multiple cross-site scripting (XSS) vulnerabilities in the Authoritative DNS - DNS Zones page in Barracuda Link Balancer 330 Firmware 1.3.2.005 and earlier allow remote attackers to inject arbitrary … CWE-79
Cross-site Scripting 		CVE-2011-5114 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295075 - techdeluge com_techfolio SQL injection vulnerability in frontend/models/techfoliodetail.php in Techfolio (com_techfolio) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid param… CWE-89
SQL Injection 		CVE-2011-5113 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295076 - blueflyingfish com_alameda SQL injection vulnerability in Alameda (com_alameda) component before 1.0.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the storeid parameter to index.php. CWE-89
SQL Injection 		CVE-2011-5112 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295077 - kajianwebsite cms_balitbang Multiple SQL injection vulnerabilities in Kajian Website CMS Balitbang 3.x allow remote attackers to execute arbitrary SQL commands via the hal parameter to (1) the data module in alumni.php; or the … CWE-89
SQL Injection 		CVE-2011-5111 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295078 - john_geo blogs_manager Multiple SQL injection vulnerabilities in Blogs Manager 1.101 and earlier allow remote attackers to execute arbitrary SQL commands via the SearchField parameter in a search action to (1) _authors_lis… CWE-89
SQL Injection 		CVE-2011-5110 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295079 - john_geo freelancer_calendar Multiple SQL injection vulnerabilities in Freelancer calendar 1.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the SearchField parameter in a search action to (1) ca… CWE-89
SQL Injection 		CVE-2011-5109 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm
295080 - adaptcms adaptcms Cross-site scripting (XSS) vulnerability in config.php in AdaptCMS 2.0.0 and 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2011-5108 2024-11-21 10:33 2012-08-24 Show GitHub Exploit DB Packet Storm