Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231511 6.8 警告 phpmytourney - phpMyTourney の tourney/index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1128 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
231512 5 警告 podcast generator - Podcast Generator におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1125 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
231513 6.8 警告 podcast generator - Podcast Generator における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1124 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
231514 6.8 警告 sitebuilder - SiteBuilder Elite における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1123 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
231515 9.3 危険 rising antivirus international - Rising Antivirus Online Scanner の Web Scan Object ActiveX コントロール における任意のコードを強制的にダウンロードされる脆弱性 CWE-DesignError
CVE-2008-1116 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
231516 7.8 危険 Vocera - Cisco Unified Wireless IP Phone 7921 におけるハッシュされたパスワードを盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-1113 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
231517 6.8 警告 Xine - xine-lib の xineplug_dmx_asf.so プラグイン におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1110 2012-12-20 18:34 2008-02-29 Show GitHub Exploit DB Packet Storm
231518 6.8 警告 quantum game library - Quantum Game Library における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1069 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
231519 6.8 警告 portail web php - Portail Web Php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1068 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
231520 6.8 警告 phpqladmin - phpQLAdmin における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1067 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290841 - cisco unified_communications_manager SQL injection vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2014-0726 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
290842 - cisco unified_communications_manager Cisco Unified Communications Manager (UCM) does not require authentication for reading WAR files, which allows remote attackers to obtain sensitive information via unspecified access to a "file stora… CWE-287
Improper Authentication 		CVE-2014-0725 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
290843 - cisco unified_communications_manager The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified p… CWE-20
 Improper Input Validation  		CVE-2014-0724 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
290844 - cisco unified_communications_manager Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to inject arbitrary web script or HTML via … CWE-79
Cross-site Scripting 		CVE-2014-0723 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
290845 - cisco unified_communications_manager The log4jinit web application in Cisco Unified Communications Manager (UCM) does not properly validate authentication, which allows remote attackers to cause a denial of service (performance degradat… CWE-287
Improper Authentication 		CVE-2014-0722 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
290846 - adobe shockwave_player Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0501 2024-11-21 11:02 2014-02-12 Show GitHub Exploit DB Packet Storm
290847 - adobe shockwave_player Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0500 2024-11-21 11:02 2014-02-12 Show GitHub Exploit DB Packet Storm
290848 - ibm lotus_domino The IMAP server in IBM Domino 8.5.x before 8.5.3 FP6 IF1 and 9.0.x before 9.0.1 FP1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, aka SPR KLYH9F4S2Z. NVD-CWE-noinfo
CVE-2014-0822 2024-11-21 11:02 2014-02-7 Show GitHub Exploit DB Packet Storm
290849 - opera opera_browser The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies. CWE-200
Information Exposure 		CVE-2014-0815 2024-11-21 11:02 2014-02-7 Show GitHub Exploit DB Packet Storm
290850 - emc documentum_foundation_services The web service in EMC Documentum Foundation Services (DFS) 6.5 through 6.7 before 6.7 SP1 P22, 6.7 SP2 before P08, 7.0 before P12, and 7.1 before P01 does not properly implement content uploading, w… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0622 2024-11-21 11:02 2014-02-7 Show GitHub Exploit DB Packet Storm