Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
220261 5 警告 マイクロソフト - Microsoft Exchange Server の Outlook Web App における電子メールメッセージの発信元になりすまされる脆弱性 CWE-Other
その他
CVE-2014-6319 2014-12-12 11:11 2014-12-9 Show GitHub Exploit DB Packet Storm
220262 4.3 警告 マイクロソフト - Microsoft Internet Explorer 11 における ASLR 保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2014-6368 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220263 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-6369 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220264 9.3 危険 マイクロソフト - Microsoft Internet Explorer 10 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-6373 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220265 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2014-6374 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220266 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-6375 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220267 9.3 危険 マイクロソフト - Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-6376 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220268 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 8 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2014-8966 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220269 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 および 7 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2014-6366 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
220270 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 から 11 における XSS フィルタを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2014-6365 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 2, 2026, 4:03 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294161 - fuelphp fuelphp The auto-format feature in the Request_Curl class in FuelPHP 1.1 through 1.7.1 allows remote attackers to execute arbitrary code via a crafted response. CWE-94
Code Injection
CVE-2014-1999 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294162 - cybozu garoon Cybozu Garoon 3.7 before SP4 allows remote authenticated users to bypass intended access restrictions, and execute arbitrary code or cause a denial of service, via an API call. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1996 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294163 - cybozu garoon Cross-site scripting (XSS) vulnerability in the Map search functionality in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspe… CWE-79
Cross-site Scripting
CVE-2014-1995 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294164 - cybozu garoon Cross-site scripting (XSS) vulnerability in the Notices portlet in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified ve… CWE-79
Cross-site Scripting
CVE-2014-1994 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294165 - cybozu garoon The Portlets subsystem in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to bypass intended access restrictions via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1993 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294166 - cybozu garoon Cross-site scripting (XSS) vulnerability in the Messages functionality in Cybozu Garoon 3.1.x, 3.5.x, and 3.7.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting
CVE-2014-1992 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294167 - cybozu garoon The CGI component in Cybozu Garoon 3.1.0 through 3.7 SP3 allows remote attackers to execute arbitrary commands via unspecified vectors. CWE-78
OS Command 
CVE-2014-1987 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294168 - nextapp file_explorer Directory traversal vulnerability in the NextApp File Explorer application before 2.1.0.3 for Android allows remote attackers to overwrite or create arbitrary files via a crafted filename. CWE-22
Path Traversal
CVE-2014-1973 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
294169 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_7
windows_8.1
windows_rt_8.1
windows_vista
windows_8
Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote a… CWE-94
Code Injection
CVE-2014-1824 2024-11-21 11:05 2014-07-9 Show GitHub Exploit DB Packet Storm
294170 - cisco unified_communications_domain_manager
unified_cdm_platform_software
Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software before 4.4.2 has a hardcoded SSH private key, which makes it easier for remote attackers to obtain access to the sup… CWE-255
Credentials Management
CVE-2014-2198 2024-11-21 11:05 2014-07-7 Show GitHub Exploit DB Packet Storm