Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239851	7.8	危険	マイクロソフト	-	Microsoft Internet Explorer におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3075	2012-09-25 16:47	2007-06-6	Show	GitHub Exploit DB Packet Storm

239852	4.3	警告	Mozilla Foundation	-	Mozilla Firefox におけるローカル Firefox インストールディレクトリのファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2007-3074	2012-09-25 16:47	2007-01-18	Show	GitHub Exploit DB Packet Storm

239853	7.5	危険	mealex	-	My Databook の diary.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-3063	2012-09-25 16:47	2007-06-5	Show	GitHub Exploit DB Packet Storm

239854	4.3	警告	osi codes inc.	-	PHP Live! におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3060	2012-09-25 16:47	2007-06-5	Show	GitHub Exploit DB Packet Storm

239855	6.8	警告	madirish webmail	-	Madirish Webmail における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3058	2012-09-25 16:47	2007-06-5	Show	GitHub Exploit DB Packet Storm

239856	5	警告	日立	-	Hitachi TP1/NET/OSI-TP-Extended におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3045	2012-09-25 16:47	2007-06-1	Show	GitHub Exploit DB Packet Storm

239857	5	警告	日立	-	Hitachi XP/W におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3044	2012-09-25 16:47	2007-06-1	Show	GitHub Exploit DB Packet Storm

239858	4.3	警告	日立	-	Hitachi Groupmax Collaboration Portal などにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3043	2012-09-25 16:47	2007-06-1	Show	GitHub Exploit DB Packet Storm

239859	9.3	危険	Panda Security	-	Panda Software AdminSecure における整数オーバーフローの脆弱性	-	CVE-2007-3026	2012-09-25 16:47	2007-07-25	Show	GitHub Exploit DB Packet Storm

239860	4.3	警告	Embedthis Software, LLC	-	Mbedthis AppWeb の MprLogToFile::logEvent 関数におけるフォーマットストリングの脆弱性	-	CVE-2007-3009	2012-09-25 16:47	2007-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285061	-	fedoraproject debian xen opensuse	fedora debian_linux xen opensuse	Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a d…	CWE-362 Race Condition	CVE-2014-7154	2024-11-21 11:16	2014-10-2	Show	GitHub Exploit DB Packet Storm

285062	-	openstack	keystonemiddleware python-keystoneclient	OpenStack keystonemiddleware (formerly python-keystoneclient) 0.x before 0.11.0 and 1.x before 1.2.0 disables certification verification when the "insecure" option is set in a paste configuration (pa…	CWE-310 Cryptographic Issues	CVE-2014-7144	2024-11-21 11:16	2014-10-2	Show	GitHub Exploit DB Packet Storm

285063	-	openfiler	openfiler	Multiple cross-site request forgery (CSRF) vulnerabilities in Openfiler 2.99.1 allow remote attackers to hijack the authentication of administrators for requests that (1) shutdown or (2) reboot the s…	CWE-352 Origin Validation Error	CVE-2014-7190	2024-11-21 11:16	2014-10-1	Show	GitHub Exploit DB Packet Storm

285064	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.19, 1.22.x before 1.22.11, and 1.23.x before 1.23.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG …	CWE-79 Cross-site Scripting	CVE-2014-7199	2024-11-21 11:16	2014-09-30	Show	GitHub Exploit DB Packet Storm

285065	-	gnu	bash	Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-7187	2024-11-21 11:16	2014-09-29	Show	GitHub Exploit DB Packet Storm

285066	-	gnu	bash	The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have u…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-7186	2024-11-21 11:16	2014-09-29	Show	GitHub Exploit DB Packet Storm

285067	-	redhat linux canonical	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node linux_kernel ubuntu_linux	The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly ha…	CWE-399 Resource Management Errors	CVE-2014-7145	2024-11-21 11:16	2014-09-28	Show	GitHub Exploit DB Packet Storm

285068	-	mailchimp	easy_mailchimp_forms_plugin	Cross-site scripting (XSS) vulnerability in the Easy MailChimp Forms plugin 3.0 through 5.0.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the update_options actio…	CWE-79 Cross-site Scripting	CVE-2014-7152	2024-11-21 11:16	2014-09-27	Show	GitHub Exploit DB Packet Storm

285069	-	huge-it	image_gallery	SQL injection vulnerability in the editgallery function in admin/gallery_func.php in the Huge-IT Image Gallery plugin 1.0.1 for WordPress allows remote authenticated users to execute arbitrary SQL co…	CWE-89 SQL Injection	CVE-2014-7153	2024-11-21 11:16	2014-09-22	Show	GitHub Exploit DB Packet Storm

285070	-	jogoeusei	questoes_oab	The Questoes OAB (aka com.pedefeijao.questoesoab) application oab_android_1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server…	CWE-310 Cryptographic Issues	CVE-2014-6999	2024-11-21 11:15	2014-10-17	Show	GitHub Exploit DB Packet Storm