Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233241 7.5 危険 tpvgames - MPCS の admin.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2293 2012-12-20 18:52 2008-05-18 Show GitHub Exploit DB Packet Storm
233242 7.5 危険 シマンテック - Symantec Altiris Deployment Solution の axengine.exe における暗号化されたドメイン資格情報を推測される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-2291 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233243 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の Agent ユーザインターフェースにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2290 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233244 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の tooltip 要素における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2289 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233245 3.6 注意 シマンテック - Symantec Altiris Deployment Solution におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2288 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233246 7.2 危険 シマンテック - Symantec Altiris Deployment Solution における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2287 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233247 7.5 危険 シマンテック - Symantec Altiris Deployment Solution の axengine.exe における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2286 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233248 5 警告 Canonical - Ubuntu Linux 上で稼動する ssh-vulnkey ツールにおける CVE-2008-0166 を悪用される脆弱性 CWE-310
暗号の問題 		CVE-2008-2285 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
233249 7.5 危険 thomas voecking - Internet Photoshow および Internet Photoshow SE の admin.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2282 2012-12-20 18:52 2008-05-18 Show GitHub Exploit DB Packet Storm
233250 4.3 警告 scriptphp - Script PHP PicEngine の admin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2280 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291491 - openx openx Open redirect vulnerability in the header function in adclick.php in OpenX 2.8.10 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL i… NVD-CWE-Other
CVE-2014-2230 2024-11-21 11:05 2014-10-23 Show GitHub Exploit DB Packet Storm
291492 - iii vtls-virtua Multiple SQL injection vulnerabilities in the login in web_reports/cgi-bin/InfoStation.cgi in Innovative vtls-Virtua before 2013.2.4 and 2014.x before 2014.1.1 allow remote attackers to execute arbit… CWE-89
SQL Injection 		CVE-2014-2081 2024-11-21 11:05 2014-10-21 Show GitHub Exploit DB Packet Storm
291493 - seeddms seeddms Multiple directory traversal vulnerabilities in SeedDMS (formerly LetoDMS and MyDMS) before 4.3.4 allow (1) remote authenticated users with access to the LogManagement functionality to read arbitrary… CWE-22
Path Traversal 		CVE-2014-2279 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291494 - seeddms seeddms Unrestricted file upload vulnerability in op/op.AddFile2.php in SeedDMS (formerly LetoDMS and MyDMS) before 4.3.4 allows remote attackers to execute arbitrary code by uploading a file with an executa… CWE-20
 Improper Input Validation  		CVE-2014-2278 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291495 - jenkins jenkins The doIndex function in hudson/util/RemotingDiagnostics.java in CloudBees Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users with the ADMINISTER permission to obtain sensit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2068 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291496 - jenkins jenkins Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies. CWE-287
Improper Authentication 		CVE-2014-2066 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291497 - jenkins jenkins Cross-site scripting (XSS) vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to inject arbitrary web script or HTML via the iconSize cookie. CWE-79
Cross-site Scripting 		CVE-2014-2065 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291498 - jenkins jenkins The loadUserByUsername function in hudson/security/HudsonPrivateSecurityRealm.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to determine whether a user exists via vector… CWE-200
Information Exposure 		CVE-2014-2064 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291499 - jenkins jenkins Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors. NVD-CWE-noinfo
CVE-2014-2063 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291500 - jenkins jenkins Jenkins before 1.551 and LTS before 1.532.2 does not invalidate the API token when a user is deleted, which allows remote authenticated users to retain access via the token. CWE-287
Improper Authentication 		CVE-2014-2062 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm