Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219091	7.5	危険	WordPress.org	-	WordPress の wp-links/links.all.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2003-1599	2014-10-30 13:51	2003-06-2	Show	GitHub Exploit DB Packet Storm

219092	4	警告	Oliver Eglseder	-	TYPO3 用 fal_sftp エクステンションにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-8327	2014-10-30 13:43	2014-09-15	Show	GitHub Exploit DB Packet Storm

219093	5	警告	FreeBSD	-	FreeBSD の routed におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3955	2014-10-29 18:27	2014-10-21	Show	GitHub Exploit DB Packet Storm

219094	10	危険	FreeBSD	-	FreeBSD の rtsold におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3954	2014-10-29 18:26	2014-10-21	Show	GitHub Exploit DB Packet Storm

219095	5	警告	FreeBSD	-	FreeBSD の namei におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-3711	2014-10-29 18:25	2014-10-21	Show	GitHub Exploit DB Packet Storm

219096	5	警告	レッドハット	-	Red Hat CloudForms Management Engine の AgentController における任意のテキストをログファイルに挿入される脆弱性	CWE-20 不適切な入力確認	CVE-2014-0136	2014-10-29 17:42	2014-08-13	Show	GitHub Exploit DB Packet Storm

219097	7.5	危険	Django Software Foundation	-	Django Tastypie のserializers.py の from_yaml メソッドにおける任意の Python コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4104	2014-10-29 17:41	2011-11-1	Show	GitHub Exploit DB Packet Storm

219098	7.5	危険	Django Software Foundation	-	Django Piston の emitters.py における任意の Python コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4103	2014-10-29 17:41	2011-11-1	Show	GitHub Exploit DB Packet Storm

219099	6.8	警告	Cobbler project	-	Cobbler の item.py の set_mgmt_parameters 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4953	2014-10-29 17:32	2011-11-15	Show	GitHub Exploit DB Packet Storm

219100	7.8	危険	Claudio Klingler	-	QuiXplorer の zip ダウンロード機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1641	2014-10-29 17:21	2013-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290441	-	selinuxproject	policycoreutils	seunshare in policycoreutils 2.2.5 is owned by root with 4755 permissions, and executes programs in a way that changes the relationship between the setuid system call and the getresuid saved set-user…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3215	2024-11-21 11:07	2014-05-8	Show	GitHub Exploit DB Packet Storm

290442	-	caldera	caldera	The directory manager in Caldera 9.20 allows remote attackers to conduct variable-injection attacks in the global scope via (1) the maindir_hotfolder parameter to dirmng/index.php, or an unspecified …	CWE-94 Code Injection	CVE-2014-2936	2024-11-21 11:07	2014-05-8	Show	GitHub Exploit DB Packet Storm

290443	-	caldera	caldera	costview3/xmlrpc_server/xmlrpc.php in CostView in Caldera 9.20 allows remote attackers to execute arbitrary commands via shell metacharacters in a methodCall element in a PHP XMLRPC request.	CWE-78 OS Command	CVE-2014-2935	2024-11-21 11:07	2014-05-8	Show	GitHub Exploit DB Packet Storm

290444	-	caldera	caldera	Multiple SQL injection vulnerabilities in Caldera 9.20 allow remote attackers to execute arbitrary SQL commands via the tr parameter to (1) costview2/jobs.php or (2) costview2/printers.php.	CWE-89 SQL Injection	CVE-2014-2934	2024-11-21 11:07	2014-05-8	Show	GitHub Exploit DB Packet Storm

290445	-	caldera	caldera	Directory traversal vulnerability in dirmng/index.php in Caldera 9.20 allows remote attackers to access arbitrary directories via a crafted pathname.	CWE-22 Path Traversal	CVE-2014-2933	2024-11-21 11:07	2014-05-8	Show	GitHub Exploit DB Packet Storm

290446	-	xen	xen	The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local guest HVM administrators to cause a denial of service (hypervisor crash) or possibly execute arbitrary code by leveraging a separa…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3124	2024-11-21 11:07	2014-05-7	Show	GitHub Exploit DB Packet Storm

290447	-	opensuse nagios	opensuse remote_plugin_executor	Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to…	NVD-CWE-Other	CVE-2014-2913	2024-11-21 11:07	2014-05-7	Show	GitHub Exploit DB Packet Storm

290448	-	debian strongswan	strongswan	strongSwan before 5.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a crafted ID_DER_ASN1_DN ID payload.	NVD-CWE-Other	CVE-2014-2891	2024-11-21 11:07	2014-05-7	Show	GitHub Exploit DB Packet Storm

290449	-	ayatana_project canonical	unity ubuntu_linux	Unity before 7.2.1, as used in Ubuntu 14.04, does not properly handle keyboard shortcuts, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3204	2024-11-21 11:07	2014-05-6	Show	GitHub Exploit DB Packet Storm

290450	-	ayatana_project canonical	unity ubuntu_linux	Unity before 7.2.1, as used in Ubuntu 14.04, does not properly restrict access to the Dash when the lock screen is active, which allows physically proximate attackers to bypass the lock screen and ex…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3203	2024-11-21 11:07	2014-05-6	Show	GitHub Exploit DB Packet Storm