Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
220361 2.1 注意 レッドハット - Red Hat Enterprise Virtualization の rhevm-log-collector パッケージにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-3561 2014-12-8 14:16 2014-12-2 Show GitHub Exploit DB Packet Storm
220362 7.2 危険 Huawei - Huawei P2-6011 の hx170dec デバイスドライバにおける任意のメモリ領域を読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-2273 2014-12-8 14:09 2014-12-2 Show GitHub Exploit DB Packet Storm
220363 7.5 危険 PBBoard - PBBoard の includes/functions.class.php の CheckEmail 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-9215 2014-12-8 14:02 2014-11-28 Show GitHub Exploit DB Packet Storm
220364 4.3 警告 Altitude Software - Altitude uCI の Altitude uAgent におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-9212 2014-12-8 13:47 2014-12-3 Show GitHub Exploit DB Packet Storm
220365 6.8 警告 CreativeMinds - WordPress 用 CreativeMinds CM Downloads Manager プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2014-9129 2014-12-8 13:38 2014-12-1 Show GitHub Exploit DB Packet Storm
220366 4.3 警告 Nextend - WordPress 用 Nextend Facebook Connect プラグインの nextend-facebook-settings.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-8800 2014-12-8 13:38 2014-11-24 Show GitHub Exploit DB Packet Storm
220367 7.5 危険 Technicolor - Technicolor ルータ TD5130 のファームウェアにおける任意のコマンドを実行される脆弱性 CWE-Other
その他
CVE-2014-9144 2014-12-8 12:14 2014-12-3 Show GitHub Exploit DB Packet Storm
220368 4.3 警告 Technicolor - Technicolor ルータ TD5130 のファームウェアにおけるオープンリダイレクトの脆弱性 CWE-Other
その他
CVE-2014-9143 2014-12-8 12:14 2014-12-3 Show GitHub Exploit DB Packet Storm
220369 4.3 警告 Technicolor - Technicolor ルータ TD5130 のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-9142 2014-12-8 12:14 2014-12-3 Show GitHub Exploit DB Packet Storm
220370 7.5 危険 Zoho Corporation - 複数の ManageEngine 製品の MetadataServlet サーブレットにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-3997 2014-12-8 11:31 2014-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292951 - apache
libreoffice
openoffice
libreoffice
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet. CWE-77
Command Injection
CVE-2014-3524 2024-11-21 11:08 2014-08-26 Show GitHub Exploit DB Packet Storm
292952 - python
debian
opensuse
pillow
python-imaging
opensuse
PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size. CWE-20
 Improper Input Validation 
CVE-2014-3589 2024-11-21 11:08 2014-08-25 Show GitHub Exploit DB Packet Storm
292953 - php php Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or p… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3597 2024-11-21 11:08 2014-08-23 Show GitHub Exploit DB Packet Storm
292954 - christos_zoulas
php
file
php
Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause… CWE-189
Numeric Errors
CVE-2014-3587 2024-11-21 11:08 2014-08-23 Show GitHub Exploit DB Packet Storm
292955 - saltstack salt Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local users to have an unspecified impact via vectors related to temporary file creation in (1) seed.py, (2) salt-s… CWE-59
Link Following
CVE-2014-3563 2024-11-21 11:08 2014-08-23 Show GitHub Exploit DB Packet Storm
292956 - openstack
opensuse
horizon
opensuse
Cross-site scripting (XSS) vulnerability in the Host Aggregates interface in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-3 allows remote administrators… CWE-79
Cross-site Scripting
CVE-2014-3594 2024-11-21 11:08 2014-08-22 Show GitHub Exploit DB Packet Storm
292957 - apache traffic_server Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x before 5.0.1 has unknown impact and attack vectors, possibly related to health checks. NVD-CWE-noinfo
CVE-2014-3525 2024-11-21 11:08 2014-08-22 Show GitHub Exploit DB Packet Storm
292958 - symantec pgp_desktop
encryption_desktop
Symantec Encryption Desktop 10.3.x before 10.3.2 MP3, and Symantec PGP Desktop 10.0.x through 10.2.x, allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted e… CWE-310
Cryptographic Issues
CVE-2014-3436 2024-11-21 11:08 2014-08-22 Show GitHub Exploit DB Packet Storm
292959 - apache httpclient
httpasyncclient
org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in … NVD-CWE-Other
CVE-2014-3577 2024-11-21 11:08 2014-08-21 Show GitHub Exploit DB Packet Storm
292960 - fedoraproject
redhat
389_directory_server
enterprise_linux
directory_server
Red Hat Directory Server 8 and 389 Directory Server, when debugging is enabled, allows remote attackers to obtain sensitive replicated metadata by searching the directory. CWE-200
Information Exposure
CVE-2014-3562 2024-11-21 11:08 2014-08-21 Show GitHub Exploit DB Packet Storm