Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220891 4.3 警告 ソフォス - Sophos Anti-Virus for Linux の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2385 2014-07-23 13:48 2014-06-24 Show GitHub Exploit DB Packet Storm
220892 4.3 警告 LimeSurvey - LimeSurvey の common_helper.php の autoEscape 関数におけるクロスサイトスクリプティングの脆弱性 CWE-Other
その他 		CVE-2014-5018 2014-07-23 12:00 2014-07-2 Show GitHub Exploit DB Packet Storm
220893 7.5 危険 LimeSurvey - LimeSurvey の application/controllers/admin/participantsaction.php の CPDB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5017 2014-07-23 11:59 2014-07-2 Show GitHub Exploit DB Packet Storm
220894 4.3 警告 LimeSurvey - LimeSurvey におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5016 2014-07-23 11:59 2014-07-2 Show GitHub Exploit DB Packet Storm
220895 5.1 警告 FuelPHP - FuelPHP において任意のコードが実行される脆弱性 CWE-Other
その他 		CVE-2014-1999 2014-07-23 10:50 2014-07-18 Show GitHub Exploit DB Packet Storm
220896 4.3 警告 NextApp, Inc. - File Explorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1973 2014-07-23 10:49 2014-07-18 Show GitHub Exploit DB Packet Storm
220897 2.6 注意 Nexa Technologies - Meridian におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3892 2014-07-23 10:49 2014-07-18 Show GitHub Exploit DB Packet Storm
220898 4.3 警告 PHP工房 - 多機能メールフォームフリーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3894 2014-07-23 10:48 2014-07-16 Show GitHub Exploit DB Packet Storm
220899 3.5 注意 サイボウズ - サイボウズ ガルーンのメッセージ機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1992 2014-07-23 10:47 2014-07-15 Show GitHub Exploit DB Packet Storm
220900 3.5 注意 サイボウズ - サイボウズ ガルーンにおいて他のユーザのポートレット設定へアクセス可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1993 2014-07-23 10:47 2014-07-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293071 - isc bind The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a de… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0591 2024-11-21 11:02 2014-01-14 Show GitHub Exploit DB Packet Storm
293072 - skyarts neofiler Directory traversal vulnerability in the NeoFiler application 5.4.3 and earlier, NeoFiler Free application 5.4.3 and earlier, and NeoFiler Lite application 2.4.2 and earlier for Android allows attack… CWE-22
Path Traversal 		CVE-2014-0805 2024-11-21 11:02 2014-01-13 Show GitHub Exploit DB Packet Storm
293073 - cgene security_file_manager Directory traversal vulnerability in the CGENE Security File Manager Pro application 1.0.6 and earlier, and Security File Manager Trial application 1.0.6 and earlier, for Android allows attackers to … CWE-22
Path Traversal 		CVE-2014-0804 2024-11-21 11:02 2014-01-13 Show GitHub Exploit DB Packet Storm
293074 - yuichiro_okuyama tetra_filer
tetra_filer_free 		Directory traversal vulnerability in the tetra filer application 2.3.1 and earlier for Android 4.0.3, tetra filer free application 2.3.1 and earlier for Android 4.0.3, tetra filer application 1.5.1 a… CWE-22
Path Traversal 		CVE-2014-0803 2024-11-21 11:02 2014-01-13 Show GitHub Exploit DB Packet Storm
293075 - aokitaka zip_with_pass_pro
zip_with_pass 		Directory traversal vulnerability in the aokitaka ZIP with Pass application 4.5.7 and earlier, and ZIP with Pass Pro application 6.3.8 and earlier, for Android allows attackers to overwrite or create… CWE-22
Path Traversal 		CVE-2014-0802 2024-11-21 11:02 2014-01-13 Show GitHub Exploit DB Packet Storm
293076 - cisco rvs4000_firmware
rvs4000
wrvs4400n_firmware
wrvs4400n
wap4410n_firmware
wap4410n 		The Cisco WAP4410N access point with firmware through 2.0.6.1, WRVS4400N router with firmware 1.x through 1.1.13 and 2.x through 2.0.2.1, and RVS4000 router with firmware through 2.0.3.2 allow remote… CWE-78
OS Command  		CVE-2014-0659 2024-11-21 11:02 2014-01-13 Show GitHub Exploit DB Packet Storm
293077 - juniper junos
srx100
srx110
srx1400
srx210
srx220
srx240
srx3400
srx3600
srx550
srx5600
srx5800
srx650 		Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforc… NVD-CWE-noinfo
CVE-2014-0618 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm
293078 - cisco unity_connection The server in Cisco Unity Connection allows remote authenticated users to cause a denial of service (CPU consumption) via unspecified IMAP commands, aka Bug ID CSCul49976. CWE-399
 Resource Management Errors 		CVE-2014-0664 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm
293079 - cisco secure_access_control_system Cross-site scripting (XSS) vulnerability in the web framework in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, … CWE-79
Cross-site Scripting 		CVE-2014-0663 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm
293080 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		Cisco 9900 Unified IP phones allow remote attackers to cause a denial of service (unregistration) via a crafted SIP header, aka Bug ID CSCul24898. CWE-20
 Improper Input Validation  		CVE-2014-0658 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm