Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220671 7.5 危険 xnau webdesign - WordPress 用 Participants Database プラグインの Export CSV ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3961 2014-06-6 12:15 2014-06-1 Show GitHub Exploit DB Packet Storm
220672 4.3 警告 OpenNMS - OpenNMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3960 2014-06-6 11:51 2014-06-2 Show GitHub Exploit DB Packet Storm
220673 4.3 警告 F5 Networks - 複数の F5 BIG-IP 製品の Configuration ユーティリティにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3959 2014-06-5 17:50 2014-05-29 Show GitHub Exploit DB Packet Storm
220674 7.5 危険 ownCloud - ownCloud Server における他のユーザの連絡先にアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3834 2014-06-5 17:05 2014-04-29 Show GitHub Exploit DB Packet Storm
220675 4.3 警告 ownCloud - ownCloud Server の Gallery および コアコンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3833 2014-06-5 16:57 2014-04-29 Show GitHub Exploit DB Packet Storm
220676 4.3 警告 ownCloud - ownCloud Server の Documents コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3832 2014-06-5 16:50 2014-04-29 Show GitHub Exploit DB Packet Storm
220677 7.5 危険 leonardofln
ownCloud		 - ownCloud Server で使用される PHPDocX における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2014-2056 2014-06-5 16:47 2014-03-7 Show GitHub Exploit DB Packet Storm
220678 7.5 危険 fruux
ownCloud		 - ownCloud Server で使用される SabreDAV における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2014-2055 2014-06-5 16:46 2014-02-27 Show GitHub Exploit DB Packet Storm
220679 7.5 危険 PHPOffice
ownCloud		 - ownCloud Server で使用される PHPExcel における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2014-2054 2014-06-5 16:44 2014-03-3 Show GitHub Exploit DB Packet Storm
220680 5 警告 ownCloud - ownCloud Server のインストールルーチンにおけるパスワードを推測される脆弱性 CWE-310
暗号の問題 		CVE-2013-1941 2014-06-5 16:37 2013-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345631 - hassan_consulting shopping_cart Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter. NVD-CWE-Other
CVE-2000-0921 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345632 - bytes_interactive web_shopper Directory traversal vulnerability in Bytes Interactive Web Shopper shopping cart program (shopper.cgi) 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the… NVD-CWE-Other
CVE-2000-0922 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345633 - aplio aplio_phone authenticate.cgi CGI program in Aplio PRO allows remote attackers to execute arbitrary commands via shell metacharacters in the password parameter. NVD-CWE-Other
CVE-2000-0923 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345634 - armada_design master_index Directory traversal vulnerability in search.cgi CGI script in Armada Master Index allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catigory" parameter. NVD-CWE-Other
CVE-2000-0924 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345635 - smartwin_technology cyberoffice_shopping_cart The default installation of SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) installs the _private directory with world readable permissions, which allows remote attackers to obtain sensitive inf… NVD-CWE-Other
CVE-2000-0925 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345636 - smartwin_technology cyberoffice_shopping_cart SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) allows remote attackers to modify price information by changing the "Price" hidden form variable. NVD-CWE-Other
CVE-2000-0926 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345637 - wquinn quotaadvisor WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions. NVD-CWE-Other
CVE-2000-0927 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345638 - wquinn diskadvisor WQuinn QuotaAdvisor 4.1 allows users to list directories and files by running a report on the targeted shares. NVD-CWE-Other
CVE-2000-0928 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345639 - david_harris pegasus_mail Pegasus Mail 3.12 allows remote attackers to read arbitrary files via an embedded URL that calls the mailto: protocol with a -F switch. NVD-CWE-Other
CVE-2000-0930 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345640 - clearswift mailsweeper_for_smtp MAILsweeper for SMTP 3.x does not properly handle corrupt CDA documents in a ZIP file and hangs, which allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2000-0932 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm