Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
233291 4.3 警告 phpauctions - PHPAuctions の profile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-0107 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
233292 7.5 危険 phpauctions - PHPAuctions の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-0106 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
233293 4.3 警告 se-ed - EZpack の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-0105 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
233294 7.5 危険 se-ed - EZpack の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-0104 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
233295 7.5 危険 playSMS - playSMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2009-0103 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
233296 10 危険 The phpMyAdmin Project - phpMyAdmin の libraries/File.class.php における脆弱性 CWE-310
暗号の問題
CVE-2008-7252 2012-12-20 19:10 2010-01-15 Show GitHub Exploit DB Packet Storm
233297 10 危険 The phpMyAdmin Project - phpMyAdmin の libraries/File.class.php における脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2008-7251 2012-12-20 19:10 2010-01-19 Show GitHub Exploit DB Packet Storm
233298 9 危険 シマンテック - Symantec Brightmail Gateway Appliance の Control Center における権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2009-0064 2012-12-20 19:10 2009-04-23 Show GitHub Exploit DB Packet Storm
233299 4.3 警告 シマンテック - Symantec Brightmail Gateway Appliance の Control Center におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-0063 2012-12-20 19:10 2009-04-23 Show GitHub Exploit DB Packet Storm
233300 5 警告 zxid - ZXID における証明書チェーンの検証を回避される脆弱性 CWE-287
不適切な認証
CVE-2009-0051 2012-12-20 19:10 2009-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293971 - linux linux_kernel The cma_req_handler function in drivers/infiniband/core/cma.c in the Linux kernel 3.14.x through 3.14.1 attempts to resolve an RDMA over Converged Ethernet (aka RoCE) address that is properly resolve… CWE-20
 Improper Input Validation 
CVE-2014-2739 2024-11-21 11:06 2014-04-15 Show GitHub Exploit DB Packet Storm
293972 - linux
oracle
suse
linux_kernel
linux
suse_linux_enterprise_server
linux_enterprise_high_availability_extension
suse_linux_enterprise_desktop
Race condition in the mac80211 subsystem in the Linux kernel before 3.13.7 allows remote attackers to cause a denial of service (system crash) via network traffic that improperly interacts with the W… CWE-362
Race Condition
CVE-2014-2706 2024-11-21 11:06 2014-04-15 Show GitHub Exploit DB Packet Storm
293973 - juniper junos The Enhanced Web Filtering (EWF) in Juniper Junos before 10.4R15, 11.4 before 11.4R9, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D10, and 12.1X46 before 12.1X46-D10, as us… CWE-20
 Improper Input Validation 
CVE-2014-2714 2024-11-21 11:06 2014-04-15 Show GitHub Exploit DB Packet Storm
293974 - juniper junos Juniper Junos before 11.4R11, 12.1 before 12.1R9, 12.2 before 12.2R7, 12.3R4 before 12.3R4-S3, 13.1 before 13.1R4, 13.2 before 13.2R2, and 13.3 before 13.3R1, as used in MX Series and T4000 routers, … NVD-CWE-noinfo
CVE-2014-2713 2024-11-21 11:06 2014-04-15 Show GitHub Exploit DB Packet Storm
293975 - juniper junos Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 before 10.4R10, 11.4 before 11.4R11, 12.1 before 12.1R9, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20… CWE-79
Cross-site Scripting
CVE-2014-2712 2024-11-21 11:06 2014-04-15 Show GitHub Exploit DB Packet Storm
293976 - juniper junos Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 11.4R11, 11.4X27 before 11.4X27.62 (BBE), 12.1 before 12.1R9, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46… CWE-79
Cross-site Scripting
CVE-2014-2711 2024-11-21 11:06 2014-04-15 Show GitHub Exploit DB Packet Storm
293977 - blackberry blackberry_os
blackberry_z10
Stack-based buffer overflow in a certain decryption function in qconnDoor on BlackBerry Z10 devices with software 10.1.0.2312, when developer-mode has been previously enabled, allows remote attackers… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-2389 2024-11-21 11:06 2014-04-12 Show GitHub Exploit DB Packet Storm
293978 - orbitscripts orbit_open_ad_server SQL injection vulnerability in OrbitScripts Orbit Open Ad Server before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the site_directory_sort_field parameter to guest/site_direc… CWE-89
SQL Injection
CVE-2014-2540 2024-11-21 11:06 2014-04-11 Show GitHub Exploit DB Packet Storm
293979 - marcel_brinkkemper lazyest-gallery Cross-site scripting (XSS) vulnerability in the Lazyest Gallery plugin before 1.1.21 for WordPress allows remote attackers to inject arbitrary web script or HTML via an EXIF tag. NOTE: some of these… CWE-79
Cross-site Scripting
CVE-2014-2333 2024-11-21 11:06 2014-04-11 Show GitHub Exploit DB Packet Storm
293980 - tigase tigase net/IOService.java in Tigase before 5.2.1 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resource consumption) via a… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-2746 2024-11-21 11:06 2014-04-11 Show GitHub Exploit DB Packet Storm