Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
220621 2.1 注意 Zarafa - Zarafa WebAccess および WebApp における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-5447 2014-11-21 17:59 2014-08-24 Show GitHub Exploit DB Packet Storm
220622 2.1 注意 Zarafa - Zarafa における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-5448 2014-11-21 17:59 2014-08-24 Show GitHub Exploit DB Packet Storm
220623 2.1 注意 Zarafa - Zarafa WebAccess および WebApp における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-5449 2014-11-21 17:59 2014-08-24 Show GitHub Exploit DB Packet Storm
220624 6.5 警告 Ward Mundy & Associates LLC. - Incredible PBX の reminders/index.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-9001 2014-11-21 14:32 2014-10-21 Show GitHub Exploit DB Packet Storm
220625 7.5 危険 DigitalVidhya - DigitalVidhya Online Examination System の Photo 機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-8997 2014-11-21 14:23 2014-11-13 Show GitHub Exploit DB Packet Storm
220626 4.3 警告 Nibbleblog - Nibbleblog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-8996 2014-11-21 14:13 2014-07-3 Show GitHub Exploit DB Packet Storm
220627 5 警告 Maarch - Maarch LetterBox における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-8995 2014-11-21 14:07 2014-11-17 Show GitHub Exploit DB Packet Storm
220628 5 警告 ZTE - ZTE ZXHN H108L のファームウェアにおける CWMP 設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-8493 2014-11-21 13:37 2014-11-14 Show GitHub Exploit DB Packet Storm
220629 5 警告 Monstra - Monstra における総当たりログイン攻撃を実行される脆弱性 CWE-255
証明書・パスワード管理
CVE-2014-9006 2014-11-21 12:12 2014-11-12 Show GitHub Exploit DB Packet Storm
220630 7.5 危険 VLD Interactive - vldPersonals における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-9005 2014-11-21 11:55 2014-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292951 - apache
libreoffice
openoffice
libreoffice
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet. CWE-77
Command Injection
CVE-2014-3524 2024-11-21 11:08 2014-08-26 Show GitHub Exploit DB Packet Storm
292952 - python
debian
opensuse
pillow
python-imaging
opensuse
PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size. CWE-20
 Improper Input Validation 
CVE-2014-3589 2024-11-21 11:08 2014-08-25 Show GitHub Exploit DB Packet Storm
292953 - php php Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or p… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3597 2024-11-21 11:08 2014-08-23 Show GitHub Exploit DB Packet Storm
292954 - christos_zoulas
php
file
php
Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause… CWE-189
Numeric Errors
CVE-2014-3587 2024-11-21 11:08 2014-08-23 Show GitHub Exploit DB Packet Storm
292955 - saltstack salt Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local users to have an unspecified impact via vectors related to temporary file creation in (1) seed.py, (2) salt-s… CWE-59
Link Following
CVE-2014-3563 2024-11-21 11:08 2014-08-23 Show GitHub Exploit DB Packet Storm
292956 - openstack
opensuse
horizon
opensuse
Cross-site scripting (XSS) vulnerability in the Host Aggregates interface in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-3 allows remote administrators… CWE-79
Cross-site Scripting
CVE-2014-3594 2024-11-21 11:08 2014-08-22 Show GitHub Exploit DB Packet Storm
292957 - apache traffic_server Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x before 5.0.1 has unknown impact and attack vectors, possibly related to health checks. NVD-CWE-noinfo
CVE-2014-3525 2024-11-21 11:08 2014-08-22 Show GitHub Exploit DB Packet Storm
292958 - symantec pgp_desktop
encryption_desktop
Symantec Encryption Desktop 10.3.x before 10.3.2 MP3, and Symantec PGP Desktop 10.0.x through 10.2.x, allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted e… CWE-310
Cryptographic Issues
CVE-2014-3436 2024-11-21 11:08 2014-08-22 Show GitHub Exploit DB Packet Storm
292959 - apache httpclient
httpasyncclient
org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in … NVD-CWE-Other
CVE-2014-3577 2024-11-21 11:08 2014-08-21 Show GitHub Exploit DB Packet Storm
292960 - fedoraproject
redhat
389_directory_server
enterprise_linux
directory_server
Red Hat Directory Server 8 and 389 Directory Server, when debugging is enabled, allows remote attackers to obtain sensitive replicated metadata by searching the directory. CWE-200
Information Exposure
CVE-2014-3562 2024-11-21 11:08 2014-08-21 Show GitHub Exploit DB Packet Storm