Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239251 7.5 危険 nukevietcms - Nukeviet における管理者アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-5945 2012-09-25 17:26 2009-01-22 Show GitHub Exploit DB Packet Storm
239252 2.6 注意 navboard - NavBoard の modules.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5944 2012-09-25 17:26 2009-01-22 Show GitHub Exploit DB Packet Storm
239253 7.5 危険 navboard - NavBoard におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5943 2012-09-25 17:26 2009-01-22 Show GitHub Exploit DB Packet Storm
239254 4.3 警告 MODX - MODx CMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5939 2012-09-25 17:26 2009-01-22 Show GitHub Exploit DB Packet Storm
239255 6.8 警告 MODX - MODx CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5938 2012-09-25 17:26 2009-01-22 Show GitHub Exploit DB Packet Storm
239256 5 警告 mini-pub - mini-pub の front-end/edit.php における PHP のソースコードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-5936 2012-09-25 17:26 2009-01-21 Show GitHub Exploit DB Packet Storm
239257 3.5 注意 link3 - Drupal の Simplenews モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5996 2012-09-25 17:26 2008-09-24 Show GitHub Exploit DB Packet Storm
239258 7.5 危険 iyziforum - iyzi Forum におけるパスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5901 2012-09-25 17:26 2009-01-12 Show GitHub Exploit DB Packet Storm
239259 7.5 危険 mediatheka - Mediatheka の connection.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5895 2012-09-25 17:26 2009-01-12 Show GitHub Exploit DB Packet Storm
239260 6.8 警告 mediatheka - Mediatheka の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5894 2012-09-25 17:26 2009-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285271 - schneider_electric proclima Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9188 2024-11-21 11:20 2014-12-28 Show GitHub Exploit DB Packet Storm
285272 - linux linux_kernel The rock_continue function in fs/isofs/rock.c in the Linux kernel through 3.18.1 does not restrict the number of Rock Ridge continuation entries, which allows local users to cause a denial of service… CWE-399
 Resource Management Errors 		CVE-2014-9420 2024-11-21 11:20 2014-12-26 Show GitHub Exploit DB Packet Storm
285273 - linux linux_kernel The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, … CWE-200
Information Exposure 		CVE-2014-9419 2024-11-21 11:20 2014-12-26 Show GitHub Exploit DB Packet Storm
285274 - huawei espace_desktop The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9418 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm
285275 - huawei espace_desktop The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted image. CWE-20
 Improper Input Validation  		CVE-2014-9417 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm
285276 - huawei espace_desktop Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71en… NVD-CWE-Other
CVE-2014-9416 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm
285277 - huawei espace_desktop Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES file. CWE-20
 Improper Input Validation  		CVE-2014-9415 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm
285278 - boldgrid w3_total_cache The W3 Total Cache plugin before 0.9.4.1 for WordPress does not properly handle empty nonces, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and hijack the authent… CWE-352
 Origin Validation Error 		CVE-2014-9414 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm
285279 - ip_ban_project ip_ban Multiple cross-site request forgery (CSRF) vulnerabilities in the IP Ban (simple-ip-ban) plugin 1.2.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests … CWE-352
 Origin Validation Error 		CVE-2014-9413 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm
285280 - bird_feeder_project bird_feeder Multiple cross-site request forgery (CSRF) vulnerabilities in the Bird Feeder plugin 1.2.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduc… CWE-352
 Origin Validation Error 		CVE-2014-9334 2024-11-21 11:20 2014-12-25 Show GitHub Exploit DB Packet Storm