Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239651 6.8 警告 maian - Maian Gallery の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2076 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
239652 7.5 危険 ivan gallery script - Ivan Gallery Script の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2073 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
239653 7.5 危険 openmairie - openMairie の scr/soustab.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2069 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
239654 6.8 警告 Mambo Foundation - Mambo 用の calendar モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2049 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
239655 7.5 危険 Openads - Openads の www/delivery/ck.php における CRLF インジェクションの脆弱性 - CVE-2007-2047 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
239656 7.5 危険 Openads - Openads における CRLF インジェクションの脆弱性 - CVE-2007-2046 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
239657 7.5 危険 mynews - MyNews の include/blocks/week_events.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2014 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
239658 4.3 警告 jex-treme - JEx-Treme Einfacher Passworschutz の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2013 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
239659 5.8 警告 mimarsinan - MimarSinan CompreXX におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2012 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
239660 6.8 警告 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Takhopper コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2005 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286701 - ibm global_console_manager_32_firmware
global_console_manager_16_firmware 		Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2014-3080 2024-11-21 11:07 2014-08-18 Show GitHub Exploit DB Packet Storm
286702 - ibm infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management 		IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1-FP11 and 11.x before 11.0-FP5 and InfoSphere Master Data Management Server for Product Information Management 9.x before… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3063 2024-11-21 11:07 2014-08-18 Show GitHub Exploit DB Packet Storm
286703 - cobham aviator_700d
aviator_700e 		Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate attackers to gain privileges… NVD-CWE-Other
CVE-2014-2964 2024-11-21 11:07 2014-08-15 Show GitHub Exploit DB Packet Storm
286704 - cobham ailor_6110_mini-c_gmdss
sailor_6006_message_terminal
sailor_6222_vhf
sailor_6300_mf_\/_hf 		Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obtain access via a TBUS2 command. NOTE: the vendor reportedly states "there is no possibil… NVD-CWE-Other
CVE-2014-2941 2024-11-21 11:07 2014-08-15 Show GitHub Exploit DB Packet Storm
286705 - cobham sailor_900_firmware
sailor_6000_series_firmware 		Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control b… NVD-CWE-Other
CVE-2014-2940 2024-11-21 11:07 2014-08-15 Show GitHub Exploit DB Packet Storm
286706 - google
debian 		chrome
debian_linux 		Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985.143 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2014-3167 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm
286707 - google
debian 		chrome
debian_linux 		The Public Key Pinning (PKP) implementation in Google Chrome before 36.0.1985.143 on Windows, OS X, and Linux, and before 36.0.1985.135 on Android, does not correctly consider the properties of SPDY … NVD-CWE-noinfo
CVE-2014-3166 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm
286708 - debian
google 		debian_linux
chrome 		Use-after-free vulnerability in modules/websockets/WorkerThreadableWebSocketChannel.cpp in the Web Sockets implementation in Blink, as used in Google Chrome before 36.0.1985.143, allows remote attack… NVD-CWE-Other
CVE-2014-3165 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm
286709 - cisco unified_communications_domain_manager
unified_presence_server 		Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communications Manager (CM) and Cisco Unified Presence Server (CUPS) allow remote authenticated users to ex… CWE-89
SQL Injection 		CVE-2014-3339 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm
286710 - cisco unified_communications_manager The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to … CWE-20
 Improper Input Validation  		CVE-2014-3338 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm