Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221291	4	警告	シスコシステムズ	-	Cisco Cloud Portal の Cisco Intelligent Automation for Cloud の Form Data Viewer における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-3298	2014-07-3 17:39	2014-07-1	Show	GitHub Exploit DB Packet Storm

221292	7.2	危険	IBM	-	IBM AIX および VIOS の runtime linker における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3074	2014-07-3 16:28	2014-06-30	Show	GitHub Exploit DB Packet Storm

221293	3.5	注意	IBM	-	IBM Tivoli Application Dependency Discovery Manager の BIRT-Report Viewer におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3004	2014-07-3 16:26	2013-04-12	Show	GitHub Exploit DB Packet Storm

221294	4.3	警告	KDE project	-	kdelibs の POP3 kioslave の kio/usernotificationhandler.cpp における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-3494	2014-07-3 16:25	2014-06-17	Show	GitHub Exploit DB Packet Storm

221295	4.3	警告	The Foreman	-	Foreman のホストの YAML ビューにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3492	2014-07-3 16:17	2014-06-11	Show	GitHub Exploit DB Packet Storm

221296	4.3	警告	The Foreman	-	Foreman におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3491	2014-07-3 16:17	2014-06-10	Show	GitHub Exploit DB Packet Storm

221297	4.3	警告	XEN Carousel plugin project	-	WordPress 用 XEN Carousel プラグインの xencarousel-admin.js.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4602	2014-07-3 15:56	2014-05-28	Show	GitHub Exploit DB Packet Storm

221298	4.3	警告	MNT-TECH	-	WordPress 用 WP-FaceThumb プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4585	2014-07-3 15:56	2014-06-12	Show	GitHub Exploit DB Packet Storm

221299	4.3	警告	Easy Booking	-	WordPress 用 wp-easybooking プラグインの admin/editFacility.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4584	2014-07-3 15:55	2014-04-25	Show	GitHub Exploit DB Packet Storm

221300	4.3	警告	WP-Contact plugin project	-	WordPress 用 WP-Contact プラグインの forms/messages.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4583	2014-07-3 15:55	2014-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273301	7.5	HIGH Network	microsoft	internet_explorer	Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-20…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3288	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

273302	7.5	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_10 windows_8.1 windows_7 windows_rt_8.1 windows_vista	Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows ma…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3237	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

273303	6.2	MEDIUM Local	ibm	tivoli_storage_flashcopy_manager_for_sql_server tivoli_storage_manager_for_databases_data_protection_for_microsoft_sql_server	IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka IBM Spectrum Protect for Databases) 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Mana…	CWE-200 Information Exposure	CVE-2016-3059	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273304	5.4	MEDIUM Network	ibm	filenet_workplace	Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace 4.0.2 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file.	CWE-79 Cross-site Scripting	CVE-2016-3054	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273305	6.5	MEDIUM Network	ibm	connections_portlets	Open redirect vulnerability in the Connections Portlets component 5.x before 5.0.2 for IBM WebSphere Portal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attac…	CWE-284 Improper Access Control	CVE-2016-2989	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273306	3.7	LOW Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x before 8.0.0.13, 8.5.0.x before 8.5.5.10, 8.5.0.x and 16.0.0.x Liberty before Liberty Fix Pack 16.0.0.3, and 9.0.0.x before 9.0.0.1…	CWE-284 Improper Access Control	CVE-2016-2960	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273307	5.4	MEDIUM Network	ibm	websphere_portal	Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.x through 7.0.0.2 CF30, 8.0.0.x through 8.0.0.1 CF21, and 8.5.0 before C…	CWE-79 Cross-site Scripting	CVE-2016-2925	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273308	5.4	MEDIUM Network	ibm	rational_publishing_engine	Unrestricted file upload vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to execute arbitrary code by specif…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-2914	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273309	5.4	MEDIUM Network	ibm	rational_publishing_engine	Cross-site scripting (XSS) vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to inject arbitrary web script or…	CWE-79 Cross-site Scripting	CVE-2016-2912	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

273310	9.8	CRITICAL Network	php	php	Double free vulnerability in the SplDoublyLinkedList::offsetSet function in ext/spl/spl_dllist.c in PHP 7.x before 7.0.6 allows remote attackers to execute arbitrary code via a crafted index.	CWE-415 Double Free	CVE-2016-3132	2024-11-21 11:49	2016-08-7	Show	GitHub Exploit DB Packet Storm