Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
221591 9.3 危険 ソフォス - Sophos Cyberoam アプライアンスの CyberoamOS の診断サービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2014-5501 2014-10-9 18:18 2014-09-15 Show GitHub Exploit DB Packet Storm
221592 7.5 危険 PhpCompta - PHPCompta/NOALYSS の backup.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-6389 2014-10-9 17:54 2014-10-1 Show GitHub Exploit DB Packet Storm
221593 6.8 警告 Charles Cazabon - getmail の IMAP-over-SSL の実装において IMAP サーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2014-7273 2014-10-9 17:48 2014-10-7 Show GitHub Exploit DB Packet Storm
221594 7.5 危険 アルバネットワークス株式会社 - Aruba コントローラ上で稼動する ArubaOS の管理インタフェースにおける認証を回避される脆弱性 CWE-noinfo
情報不足
CVE-2014-7299 2014-10-9 17:44 2014-10-7 Show GitHub Exploit DB Packet Storm
221595 4.3 警告 Debian - apt-cacher-ng の job.cc におけるクロスサイトスクリプティングの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2014-4510 2014-10-9 17:38 2014-06-21 Show GitHub Exploit DB Packet Storm
221596 3.5 注意 MediaWiki - MediaWiki の Special:Preferences および Special:UserLogin のページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-7295 2014-10-9 17:29 2014-09-11 Show GitHub Exploit DB Packet Storm
221597 3.6 注意 David Golden - Perl 用 Capture::Tiny モジュールにおける任意のファイルに書き込まれる脆弱性 CWE-59
リンク解釈の問題
CVE-2014-1875 2014-10-9 16:51 2014-02-6 Show GitHub Exploit DB Packet Storm
221598 7.5 危険 Google - Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2014-7967 2014-10-9 16:19 2014-10-7 Show GitHub Exploit DB Packet Storm
221599 7.5 危険 Google - Windows 上で稼動する Google Chrome の base/memory/shared_memory_win.cc におけるサンドボックス保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-3196 2014-10-9 16:19 2014-10-7 Show GitHub Exploit DB Packet Storm
221600 6.8 警告 アップル
Google
- iOS 上で稼働する Google Chrome におけるデバイスからビデオおよびオーディオデータを取得される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-3187 2014-10-9 16:19 2014-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273281 6.5 MEDIUM
Adjacent
ibm bigfix_platform IBM BigFix Platform could allow an attacker on the local network to crash the BES server using a specially crafted XMLSchema request. CWE-20
 Improper Input Validation 
CVE-2016-6084 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273282 10.0 CRITICAL
Network
ibm bigfix_platform IBM BigFix Platform could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary… CWE-416
 Use After Free
CVE-2016-6082 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273283 5.3 MEDIUM
Network
ibm websphere_message_broker The WebAdmin context for WebSphere Message Broker allows directory listings which could disclose sensitive information to the attacker. CWE-200
Information Exposure
CVE-2016-6080 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273284 5.4 MEDIUM
Network
ibm maximo_for_transportation
maximo_for_life_sciences
maximo_for_aviation
tivoli_asset_management_for_it
smartcloud_control_desk
tivoli_change_and_configuration_management_database
tiv…
IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall… CWE-79
Cross-site Scripting
CVE-2016-6072 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273285 7.8 HIGH
Local
ibm security_guardium IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject commands that would be executed as root. CWE-78
OS Command 
CVE-2016-6065 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273286 5.4 MEDIUM
Network
ibm rational_collaborative_lifecycle_management IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin… CWE-79
Cross-site Scripting
CVE-2016-6061 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273287 8.1 HIGH
Network
ibm infosphere_information_server
infosphere_datastage
infosphere_information_server_on_cloud
IBM InfoSphere Information Server is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerabi… CWE-611
XXE
CVE-2016-6059 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273288 5.4 MEDIUM
Network
ibm jazz_reporting_service IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin… CWE-79
Cross-site Scripting
CVE-2016-6054 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273289 5.4 MEDIUM
Network
ibm jazz_reporting_service IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten… CWE-79
Cross-site Scripting
CVE-2016-6047 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273290 5.4 MEDIUM
Network
ibm tivoli_storage_manager IBM Tivoli Storage Manager Operations Center is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio… CWE-79
Cross-site Scripting
CVE-2016-6046 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm