Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218961 5 警告 tera-charts project - WordPress 用 Tera Charts プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-4940 2014-07-15 18:22 2014-05-28 Show GitHub Exploit DB Packet Storm
218962 6.5 警告 Darell Sun - WordPress 用 ENL Newsletter プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4939 2014-07-15 18:21 2014-05-28 Show GitHub Exploit DB Packet Storm
218963 7.5 危険 Darell Sun - WordPress 用 WP Rss Poster プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4938 2014-07-15 18:19 2014-05-28 Show GitHub Exploit DB Packet Storm
218964 5 警告 BookX plugin project - WordPress 用 includes/bookx_export.php の BookX プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-4937 2014-07-15 18:18 2014-05-28 Show GitHub Exploit DB Packet Storm
218965 4.9 警告 アルバネットワークス株式会社 - Aruba Networks ClearPass の Policy Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4013 2014-07-15 15:34 2014-07-3 Show GitHub Exploit DB Packet Storm
218966 4.3 警告 フォーティネット - FortiGuard FortiWeb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4738 2014-07-15 15:27 2014-07-10 Show GitHub Exploit DB Packet Storm
218967 7.5 危険 Dahua Technology Co., Ltd - Dahua DVR における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-6117 2014-07-15 13:54 2013-11-13 Show GitHub Exploit DB Packet Storm
218968 7.5 危険 特定非営利活動法人 Seasar ファウンデーション - S2Struts において ClassLoader が操作可能な脆弱性 CWE-DesignError
CVE-2014-3893 2014-07-15 12:17 2014-07-15 Show GitHub Exploit DB Packet Storm
218969 4.9 警告 シトリックス・システムズ - Citrix XenDesktop における他のユーザのデスクトップへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4700 2014-07-14 17:31 2014-07-10 Show GitHub Exploit DB Packet Storm
218970 3.5 注意 OpenStack
Canonical		 - OpenStack Neutron の L3-agent におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4167 2014-07-14 17:30 2014-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2001 - - - In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select, which is automagically… - CVE-2026-46148 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2002 - - - In the Linux kernel, the following vulnerability has been resolved: octeon_ep_vf: add NULL check for napi_build_skb() napi_build_skb() can return NULL on allocation failure. In __octep_vf_oq_proces… - CVE-2026-46188 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2003 - - - In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in… - CVE-2026-46191 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2004 - - - In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: don't attempt to transmit during emulated read-only dual/quad operations The core will deal with reads … - CVE-2026-46192 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2005 - - - In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix controller deregistration Make sure to deregister the controller before disabling and releasing underlying reso… - CVE-2026-46200 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2006 - - - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak btrfs_ioctl_space_info() has a TOCTOU race betw… - CVE-2026-46159 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2007 - - - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix missing last_unlink_trans update when removing a directory When removing a directory we are not updating its last_unli… - CVE-2026-46160 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2008 - - - In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during … - CVE-2026-46203 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2009 - - - In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix device name memory leak The device name allocated via kzalloc() in init_one_mc() is assigned to dev->init_nam… - CVE-2026-46221 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2010 - - - In the Linux kernel, the following vulnerability has been resolved: spi: rspi: fix controller deregistration Make sure to deregister the controller before releasing underlying resources like DMA du… - CVE-2026-46225 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm