Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219401 7.5 危険 LimeSurvey - LimeSurvey の application/controllers/admin/participantsaction.php の CPDB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5017 2014-07-23 11:59 2014-07-2 Show GitHub Exploit DB Packet Storm
219402 4.3 警告 LimeSurvey - LimeSurvey におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5016 2014-07-23 11:59 2014-07-2 Show GitHub Exploit DB Packet Storm
219403 5.1 警告 FuelPHP - FuelPHP において任意のコードが実行される脆弱性 CWE-Other
その他 		CVE-2014-1999 2014-07-23 10:50 2014-07-18 Show GitHub Exploit DB Packet Storm
219404 4.3 警告 NextApp, Inc. - File Explorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1973 2014-07-23 10:49 2014-07-18 Show GitHub Exploit DB Packet Storm
219405 2.6 注意 Nexa Technologies - Meridian におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3892 2014-07-23 10:49 2014-07-18 Show GitHub Exploit DB Packet Storm
219406 4.3 警告 PHP工房 - 多機能メールフォームフリーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3894 2014-07-23 10:48 2014-07-16 Show GitHub Exploit DB Packet Storm
219407 3.5 注意 サイボウズ - サイボウズ ガルーンのメッセージ機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1992 2014-07-23 10:47 2014-07-15 Show GitHub Exploit DB Packet Storm
219408 3.5 注意 サイボウズ - サイボウズ ガルーンにおいて他のユーザのポートレット設定へアクセス可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1993 2014-07-23 10:47 2014-07-15 Show GitHub Exploit DB Packet Storm
219409 3.5 注意 サイボウズ - サイボウズ ガルーンのお知らせポートレット機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1994 2014-07-23 10:46 2014-07-15 Show GitHub Exploit DB Packet Storm
219410 3.5 注意 サイボウズ - サイボウズ ガルーンの地図検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1995 2014-07-23 10:46 2014-07-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290821 - cisco ips_sensor_software The control-plane access-list implementation in Cisco IPS Software before 7.1(8p2)E4 and 7.2 before 7.2(2)E4 allows remote attackers to cause a denial of service (MainApp process outage) via crafted … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0719 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm
290822 - cisco ips_sensor_software The produce-verbose-alert feature in Cisco IPS Software 7.1 before 7.1(8)E4 and 7.2 before 7.2(2)E4 allows remote attackers to cause a denial of service (Analysis Engine process outage) via fragmente… CWE-20
 Improper Input Validation  		CVE-2014-0718 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm
290823 - cisco firewall_services_module_software Race condition in the cut-through proxy feature in Cisco Firewall Services Module (FWSM) Software 3.x before 3.2(28) and 4.x before 4.1(15) allows remote attackers to cause a denial of service (devic… CWE-362
Race Condition 		CVE-2014-0710 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm
290824 - cisco ucs_director Cisco UCS Director (formerly Cloupia) before 4.0.0.3 has a hardcoded password for the root account, which makes it easier for remote attackers to obtain administrative access via an SSH session to th… CWE-255
Credentials Management 		CVE-2014-0709 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm
290825 - adobe flash_player
adobe_air_sdk
adobe_air 		Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK befor… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0499 2024-11-21 11:02 2014-02-21 Show GitHub Exploit DB Packet Storm
290826 - adobe flash_player
adobe_air_sdk
adobe_air 		Stack-based buffer overflow in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0498 2024-11-21 11:02 2014-02-21 Show GitHub Exploit DB Packet Storm
290827 - cisco unified_communications_manager The Enterprise License Manager (ELM) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier does not properly enforce authentication requirements, which allows remote atta… CWE-287
Improper Authentication 		CVE-2014-0733 2024-11-21 11:02 2014-02-21 Show GitHub Exploit DB Packet Storm
290828 - cisco unified_communications_manager Cross-site request forgery (CSRF) vulnerability in the Call Detail Records Analysis and Reporting (CAR) page in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote att… CWE-352
 Origin Validation Error 		CVE-2014-0736 2024-11-21 11:02 2014-02-20 Show GitHub Exploit DB Packet Storm
290829 - cisco unified_communications_manager Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to inject arbitr… CWE-79
Cross-site Scripting 		CVE-2014-0735 2024-11-21 11:02 2014-02-20 Show GitHub Exploit DB Packet Storm
290830 - cisco unified_communications_manager SQL injection vulnerability in the Certificate Authority Proxy Function (CAPF) implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to execu… CWE-89
SQL Injection 		CVE-2014-0734 2024-11-21 11:02 2014-02-20 Show GitHub Exploit DB Packet Storm