Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239671 4.3 警告 holacms - holaCMS の index_cms.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1977 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
239672 6.9 警告 マイクロソフト - Microsoft Windows NT 4.0 の Windows Kernel における権限を取得される脆弱性 - CVE-2007-1973 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
239673 5 警告 Mozilla Foundation - Mozilla Firefox におけるフィッシング攻撃を実行される脆弱性 - CVE-2007-1970 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
239674 6 警告 MyBB Group
mybulletinboard		 - MyBB の member.php における任意のアカウントのパスワードを変更される脆弱性 - CVE-2007-1964 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
239675 5.1 警告 mywebland - myWebland myBloggie における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1899 2012-09-25 16:47 2008-07-8 Show GitHub Exploit DB Packet Storm
239676 7.5 危険 MyBB Group
mybulletinboard		 - MyBB の class_session.php における SQL インジェクションの脆弱性 - CVE-2007-1963 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
239677 7.5 危険 onelook - onelook courts on-line におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1953 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239678 7.5 危険 onelook - onelook onebyone CMS におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1952 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239679 7.5 危険 onelook - onelook obo Shop におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1951 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239680 9.3 危険 Irfan Skiljan - IrfanView におけるバッファオーバーフローの脆弱性 - CVE-2007-1948 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285891 - ulli_horlacher fex Multiple cross-site scripting (XSS) vulnerabilities in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the (1) akey par… CWE-79
Cross-site Scripting 		CVE-2014-3876 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285892 - dell bsafe_share The TLS implementation in EMC RSA BSAFE-Java Toolkits (aka Share for Java) supports the Extended Random extension during use of the Dual_EC_DRBG algorithm, which makes it easier for remote attackers … CWE-310
Cryptographic Issues 		CVE-2014-4193 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285893 - dell bsafe_share The Dual_EC_DRBG implementation in EMC RSA BSAFE-C Toolkits (aka Share for C and C++) processes certain requests for output bytes by considering only the requested byte count and not the use of cache… CWE-310
Cryptographic Issues 		CVE-2014-4192 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285894 - dell bsafe_share The TLS implementation in EMC RSA BSAFE-C Toolkits (aka Share for C and C++) sends a long series of random bytes during use of the Dual_EC_DRBG algorithm, which makes it easier for remote attackers t… CWE-310
Cryptographic Issues 		CVE-2014-4191 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285895 - powerpc-utils_project powerpc-utils snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot.conf files potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passw… CWE-310
Cryptographic Issues 		CVE-2014-4040 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285896 - redhat
ppc64-diag_project
suse 		enterprise_linux_server
ppc64-diag
linux_enterprise_server 		ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensitive information by rea… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4039 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285897 - suse
ppc64-diag_project
redhat 		linux_enterprise_server
ppc64-diag
enterprise_linux_server 		ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2) scripts/ppc64_diag_mkrsrc and /tmp/diagSEsnap/… CWE-59
Link Following 		CVE-2014-4038 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285898 - huawei campus_series_switch_software
campus_lsw_s9700
campus_s3300hi
campus_s3700hi
campus_s5300
campus_s5700
campus_s6300
campus_s6700
campus_s7700
campus_s9300
campus_s9300e<… 		Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-4190 2024-11-21 11:09 2014-06-17 Show GitHub Exploit DB Packet Storm
285899 - hitachi tuning_manager
jp1\/performance_management-manager_web_option 		Cross-site scripting (XSS) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote attack… CWE-79
Cross-site Scripting 		CVE-2014-4189 2024-11-21 11:09 2014-06-17 Show GitHub Exploit DB Packet Storm
285900 - hitachi tuning_manager
jp1\/performance_management-manager_web_option 		Cross-site request forgery (CSRF) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote… CWE-352
 Origin Validation Error 		CVE-2014-4188 2024-11-21 11:09 2014-06-17 Show GitHub Exploit DB Packet Storm