Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222351	4.3	警告	IBM	-	IBM WebSphere Portal の WCM UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0828	2014-04-3 18:29	2014-03-31	Show	GitHub Exploit DB Packet Storm

222352	4.3	警告	シスコシステムズ	-	Cisco Security Manager の Web フレームワークにおける CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2014-2138	2014-04-3 18:22	2014-04-1	Show	GitHub Exploit DB Packet Storm

222353	4.3	警告	シスコシステムズ	-	Cisco Web セキュリティアプライアンスの Web フレームワークにおける CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2014-2137	2014-04-3 18:18	2014-04-1	Show	GitHub Exploit DB Packet Storm

222354	4.3	警告	シスコシステムズ	-	Cisco Unity Connection の Web Inbox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2125	2014-04-3 18:17	2014-04-1	Show	GitHub Exploit DB Packet Storm

222355	5	警告	Posh portal project	-	POSH の portal/scr_authentif.php の Remember Me 機能における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-2212	2014-04-3 18:14	2014-02-20	Show	GitHub Exploit DB Packet Storm

222356	7.5	危険	Horde	-	Horde Application Framework の Util ライブラリにおけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-1691	2014-04-3 17:00	2014-01-28	Show	GitHub Exploit DB Packet Storm

222357	7.5	危険	Vtiger	-	Vtiger CRM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3213	2014-04-3 16:41	2013-03-26	Show	GitHub Exploit DB Packet Storm

222358	9.3	危険	オートデスク株式会社	-	複数の Autodesk SketchBook 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-5365	2014-04-3 16:34	2013-08-21	Show	GitHub Exploit DB Packet Storm

222359	4.3	警告	Ganglia	-	Ganglia Web の views_view.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1770	2014-04-3 15:54	2013-03-7	Show	GitHub Exploit DB Packet Storm

222360	4.9	警告	Xen プロジェクト	-	Xen の libvchan の io.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-1896	2014-04-3 15:49	2014-02-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268621	7.5	HIGH Network	f5	big-ip_application_acceleration_manager big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_policy_enforcement_manager big-ip_link_controller big-ip_application_securi…	Under some circumstances on BIG-IP 12.0.0-12.1.0, 11.6.0-11.6.1, or 11.4.0-11.5.4 HF1, the Traffic Management Microkernel (TMM) may not properly clean-up pool member network connections when using SP…	CWE-20 Improper Input Validation	CVE-2016-7475	2024-11-21 11:58	2018-10-9	Show	GitHub Exploit DB Packet Storm

268622	7.5	HIGH Network	f5	big-ip_application_security_manager	F5 BIG-IP ASM version 12.1.0 - 12.1.1 may allow remote attackers to cause a denial of service (DoS) via a crafted HTTP request.	CWE-20 Improper Input Validation	CVE-2016-7472	2024-11-21 11:58	2018-04-3	Show	GitHub Exploit DB Packet Storm

268623	9.8	CRITICAL Network	exponentcms	exponent_cms	Exponent CMS 2.3.0 through 2.3.9 allows remote attackers to have unspecified impact via vectors related to "uploading files to wrong location."	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-7443	2024-11-21 11:58	2018-03-7	Show	GitHub Exploit DB Packet Storm

268624	8.8	HIGH Network	artifex	ghostscript	The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams.	CWE-20 Improper Input Validation	CVE-2016-7976	2024-11-21 11:58	2017-08-8	Show	GitHub Exploit DB Packet Storm

268625	6.5	MEDIUM Network	gigaccsecure	gigacc_office	GigaCC OFFICE ver.2.3 and earlier allows remote attackers to upload arbitrary files as a user profile image, which may be exploited for unauthorized file sharing.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-7845	2024-11-21 11:58	2017-08-3	Show	GitHub Exploit DB Packet Storm

268626	5.5	MEDIUM Network	gigaccsecure	gigacc_office	GigaCC OFFICE ver.2.3 and earlier allows remote attackers to execute arbitrary OS commands via specially crafted mail template.	CWE-78 OS Command	CVE-2016-7844	2024-11-21 11:58	2017-08-3	Show	GitHub Exploit DB Packet Storm

268627	3.1	LOW Network	mufg	mitsubishi_ufj	The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android ver5.3.1, ver5.2.2 and earlier allow a man-in-the-middle attacker to downgrade the communication between the app and the server from TLS v1.2 to…	CWE-310 Cryptographic Issues	CVE-2016-7812	2024-11-21 11:58	2017-08-3	Show	GitHub Exploit DB Packet Storm

268628	7.5	HIGH Network	imagemagick	imagemagick	Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.	CWE-399 Resource Management Errors	CVE-2016-7539	2024-11-21 11:58	2017-07-25	Show	GitHub Exploit DB Packet Storm

268629	5.4	MEDIUM Network	glpi-project	glpi	Cross-site scripting (XSS) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to inject arbitrary web script or HTML by attaching a crafted HTML file to a ticket.	CWE-79 Cross-site Scripting	CVE-2016-7509	2024-11-21 11:58	2017-07-19	Show	GitHub Exploit DB Packet Storm

268630	8.0	HIGH Network	glpi-project	glpi	Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to submit a request that could lead to the creation of an admin account in the application.	CWE-352 Origin Validation Error	CVE-2016-7507	2024-11-21 11:58	2017-07-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed