Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
238941	6.8	警告	Mutt	-	Mutt における信頼されたサーバになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2009-1390	2012-09-25 17:27	2009-06-16	Show	GitHub Exploit DB Packet Storm

238942	5	警告	mozilo	-	moziloCMS における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1369	2012-09-25 17:27	2009-04-22	Show	GitHub Exploit DB Packet Storm

238943	7.5	危険	mozilo	-	moziloCMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1368	2012-09-25 17:27	2009-04-22	Show	GitHub Exploit DB Packet Storm

238944	4.3	警告	mozilo	-	moziloCMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1367	2012-09-25 17:27	2009-04-22	Show	GitHub Exploit DB Packet Storm

238945	7.1	危険	Linux	-	Linux kernel の net/ipv6/inet6_hashtables.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-1360	2012-09-25 17:27	2009-02-26	Show	GitHub Exploit DB Packet Storm

238946	9.3	危険	heikki ylinen	-	Apollo におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1351	2012-09-25 17:27	2009-04-21	Show	GitHub Exploit DB Packet Storm

238947	10	危険	Novell	-	Novell NetIdentity Client の xtagent.exe における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1350	2012-09-25 17:27	2009-04-3	Show	GitHub Exploit DB Packet Storm

238948	7.6	危険	マカフィー	-	McAfee VirusScan などの製品で使用される AV エンジンにおける検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1348	2012-09-25 17:27	2009-04-30	Show	GitHub Exploit DB Packet Storm

238949	7.5	危険	interguias	-	NetHoteles の publico/ficha.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1346	2012-09-25 17:27	2009-04-20	Show	GitHub Exploit DB Packet Storm

238950	4.6	警告	Linux	-	Linux kernel の kernel/signal.c における名前空間の全プロセスへ任意の信号を送信される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1338	2012-09-25 17:27	2009-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285951	7.5	HIGH Network	lexmark	markvision_enterprise	Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2014-8742	2024-11-21 11:19	2020-01-28	Show	GitHub Exploit DB Packet Storm

285952	9.8	CRITICAL Network	lexmark	markvision_enterprise	Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2014-8741	2024-11-21 11:19	2020-01-28	Show	GitHub Exploit DB Packet Storm

285953	9.8	CRITICAL Network	soplanning	soplanning	Multiple SQL vulnerabilities exist in planning.php, user_list.php, projets.php, user_groupes.php, and groupe_list.php in Simple Online Planning (SOPPlanning)before 1.33.	CWE-89 SQL Injection	CVE-2014-8673	2024-11-21 11:19	2020-01-8	Show	GitHub Exploit DB Packet Storm

285954	5.4	MEDIUM Network	soplanning	soplanning	Multiple Cross-Site Scripting (XSS) vulnerabilities exist in Simple Online Planning (SOPlanning) before 1.33 via the document.cookie in nb_mois and mb_ligness and the debug GET parameter to export.ph…	CWE-79 Cross-site Scripting	CVE-2014-8674	2024-11-21 11:19	2020-01-7	Show	GitHub Exploit DB Packet Storm

285955	9.8	CRITICAL Network	cloudfastpath	netcharts_server	Unrestricted file upload vulnerability in Visual Mining NetCharts Server allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via unsp…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2014-8516	2024-11-21 11:19	2020-01-4	Show	GitHub Exploit DB Packet Storm

285956	9.8	CRITICAL Network	requests-kerberos_project debian	requests-kerberos debian_linux	python-requests-Kerberos through 0.5 does not handle mutual authentication	CWE-287 Improper Authentication	CVE-2014-8650	2024-11-21 11:19	2019-12-16	Show	GitHub Exploit DB Packet Storm

285957	6.5	MEDIUM Network	imagemagick debian	imagemagick debian_linux	imagemagick 6.8.9.6 has remote DOS via infinite loop	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2014-8561	2024-11-21 11:19	2019-12-16	Show	GitHub Exploit DB Packet Storm

285958	9.8	CRITICAL Network	dlink	dir-815_firmware	The remote administration interface in D-Link DIR-815 devices with firmware before 2.03.B02 allows remote attackers to execute arbitrary commands via vectors related to an "HTTP command injection iss…	CWE-77 Command Injection	CVE-2014-8888	2024-11-21 11:19	2018-04-13	Show	GitHub Exploit DB Packet Storm

285959	8.1	HIGH Network	unify	openstage_sip openscape_desk_phone_ip_sip	The web-based management (WBM) interface in Unify (former Siemens) OpenStage SIP and OpenScape Desk Phone IP V3 devices before R3.32.0 generates session cookies with insufficient entropy, which makes…	CWE-331 Insufficient Entropy	CVE-2014-8422	2024-11-21 11:19	2018-04-13	Show	GitHub Exploit DB Packet Storm

285960	7.5	HIGH Network	unify	openstage_sip openscape_desk_phone_ip_sip	Unify (former Siemens) OpenStage SIP and OpenScape Desk Phone IP V3 devices before R3.32.0 allow remote attackers to gain super-user privileges by leveraging SSH access and incorrect ownership of (1)…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-8421	2024-11-21 11:19	2018-04-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed