Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
221241 7.7 危険 Cryoserver FCS (UK) Limited. - Cryoserver における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-4867 2014-10-21 15:03 2014-10-7 Show GitHub Exploit DB Packet Storm
221242 4.6 警告 アドビシステムズ - Adobe ColdFusion における IP ベースのアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-0572 2014-10-21 14:18 2014-10-14 Show GitHub Exploit DB Packet Storm
221243 4.3 警告 アドビシステムズ - Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-0571 2014-10-21 14:18 2014-10-14 Show GitHub Exploit DB Packet Storm
221244 6.8 警告 アドビシステムズ - Adobe ColdFusion におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2014-0570 2014-10-21 14:17 2014-10-14 Show GitHub Exploit DB Packet Storm
221245 10 危険 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player および Adobe AIR における整数オーバーフローの脆弱性 CWE-noinfo
情報不足
CVE-2014-0569 2014-10-21 12:29 2014-10-14 Show GitHub Exploit DB Packet Storm
221246 10 危険 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-0558 2014-10-21 12:28 2014-10-14 Show GitHub Exploit DB Packet Storm
221247 7.2 危険 マイクロソフト - Microsoft Windows XP および Microsoft Windows Server 2003 における任意のメモリ領域にデータを書き込まれる脆弱性 CWE-Other
その他
CVE-2014-4971 2014-10-21 11:56 2014-07-18 Show GitHub Exploit DB Packet Storm
221248 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの fastfat.sys における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2014-4115 2014-10-21 11:51 2014-10-14 Show GitHub Exploit DB Packet Storm
221249 5.8 警告 オラクル - Oracle Identity Manager におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認
CVE-2014-2880 2014-10-21 11:01 2014-04-3 Show GitHub Exploit DB Packet Storm
221250 5 警告 IBM
Apache Software Foundation
オラクル
- Apache Tomcat の java/org/apache/coyote/ajp/AbstractAjpProcessor.java におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2014-0095 2014-10-21 10:50 2014-03-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
360121 - joey_hess bsdgames Buffer overflow in pl_main.c in sail in BSDgames before 2.17-7 allows local users to execute arbitrary code via a long player name that is used in a scanf function call. NVD-CWE-Other
CVE-2006-1744 2008-09-6 06:02 2006-04-13 Show GitHub Exploit DB Packet Storm
360122 - debian debian_linux debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the c… NVD-CWE-Other
CVE-2006-1772 2008-09-6 06:02 2006-04-13 Show GitHub Exploit DB Packet Storm
360123 - phpbb_group phpbb Multiple cross-site scripting (XSS) vulnerabilities in phpBB 2.0.19 allow remote attackers to inject arbitrary web script or HTML via the (1) Site Description field in (a) admin_board.php, the (2) Gr… NVD-CWE-Other
CVE-2006-1775 2008-09-6 06:02 2006-04-13 Show GitHub Exploit DB Packet Storm
360124 - mailenable mailenable_enterprise
mailenable_professional
mailenable_standard
Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professional Edition before 1.74, and Enterprise Edition before 1.22 has unknown attack vectors and impact rel… NVD-CWE-Other
CVE-2006-1792 2008-09-6 06:02 2006-04-15 Show GitHub Exploit DB Packet Storm
360125 - runcms runcms Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. N… NVD-CWE-Other
CVE-2006-1793 2008-09-6 06:02 2006-04-17 Show GitHub Exploit DB Packet Storm
360126 - runcms runcms Succesful exploitation requires that register_globals = On & allow_url_fopen = On NVD-CWE-Other
CVE-2006-1793 2008-09-6 06:02 2006-04-17 Show GitHub Exploit DB Packet Storm
360127 - wordpress wordpress Cross-site scripting (XSS) vulnerability in the paging links functionality in template-functions-links.php in Wordpress 1.5.2, and possibly other versions before 2.0.1, allows remote attackers to inj… NVD-CWE-Other
CVE-2006-1796 2008-09-6 06:02 2006-04-18 Show GitHub Exploit DB Packet Storm
360128 - wordpress wordpress The vulnerability manifests itself only when viewed by IE. This vulnerability is addressed in the following product release: Wordpress 2.0.1-1 NVD-CWE-Other
CVE-2006-1796 2008-09-6 06:02 2006-04-18 Show GitHub Exploit DB Packet Storm
360129 - datenbank_module
woltlab
datenbank_module
burning_board
SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) dat… NVD-CWE-Other
CVE-2006-1094 2008-09-6 06:01 2006-03-9 Show GitHub Exploit DB Packet Storm
360130 - logit logit PHP remote file include vulnerability in logIT 1.3 and 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the pg parameter. NOTE: the provenance of this information is unknown; t… NVD-CWE-Other
CVE-2006-1099 2008-09-6 06:01 2006-03-9 Show GitHub Exploit DB Packet Storm