Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239961 7.1 危険 Mozilla Foundation - Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2671 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239962 7.6 危険 Don Ho
scintilla		 - notepad++ で使用される Scintilla の LexRuby.cxx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2666 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239963 7.5 危険 php firstpost - PhpFirstPost の block.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2665 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239964 3.5 注意 MySQL AB - MySQL におけるパーティションで区切られたテーブルから重要な情報を取得される脆弱性 - CVE-2007-2693 2012-09-25 16:47 2006-10-26 Show GitHub Exploit DB Packet Storm
239965 7.8 危険 idautomation - IDAutomationLinear6.dll の ID Automation Linear Barcode ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2658 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239966 7.8 危険 ヒューレット・パッカード - hpqvwocx.dll におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2656 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239967 7.5 危険 Netwin Ltd - SurgeMail の NetWin Webmail におけるリモートコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2007-2655 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239968 6.5 警告 monalbum - Monalbum の admin/admin_configuration.php における PHP コードを挿入される脆弱性 - CVE-2007-2647 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239969 9.4 危険 morovia - Morovia Barcode ActiveX Professional における任意のファイルを上書きされる脆弱性 - CVE-2007-2644 2012-09-25 16:47 2007-05-13 Show GitHub Exploit DB Packet Storm
239970 7.8 危険 heiko stamer - LibTMCG におけるプライベートカードに関する重要な情報を取得される脆弱性 - CVE-2007-2640 2012-09-25 16:47 2007-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285091 7.2 HIGH
Network 		phpmyfaq phpmyfaq SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function. CWE-89
SQL Injection 		CVE-2014-6045 2024-11-21 11:13 2018-08-29 Show GitHub Exploit DB Packet Storm
285092 5.9 MEDIUM
Network 		ibm security_identity_manager
tivoli_identity_manager 		IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity Manager 6.0.x before 6.0.0.4-ISS-SIM-IF0001 and 7.0.x before 7.0.0.0-ISS-SIM-IF0003 make it easier for remote at… CWE-200
Information Exposure 		CVE-2014-6112 2024-11-21 11:13 2018-04-21 Show GitHub Exploit DB Packet Storm
285093 7.8 HIGH
Local 		ibm security_identity_manager
tivoli_identity_manager 		IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity Manager 6.0.x before 6.0.0.4-ISS-SIM-IF0001 and 7.0.x before 7.0.0.0-ISS-SIM-IF0003 store encrypted user credent… CWE-255
Credentials Management 		CVE-2014-6111 2024-11-21 11:13 2018-04-21 Show GitHub Exploit DB Packet Storm
285094 5.3 MEDIUM
Network 		ibm security_identity_manager
tivoli_identity_manager 		IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity Manager 6.0.x before 6.0.0.4-ISS-SIM-IF0001 and 7.0.x before 7.0.0.0-ISS-SIM-IF0003 allow remote authenticated u… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2014-6109 2024-11-21 11:13 2018-04-21 Show GitHub Exploit DB Packet Storm
285095 5.9 MEDIUM
Network 		ibm security_identity_manager
tivoli_identity_manager 		IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity Manager 6.0.x before 6.0.0.4-ISS-SIM-IF0001 and 7.0.x before 7.0.0.0-ISS-SIM-IF0003 might allow man-in-the-middl… CWE-200
Information Exposure 		CVE-2014-6108 2024-11-21 11:13 2018-04-21 Show GitHub Exploit DB Packet Storm
285096 5.4 MEDIUM
Network 		ibm forms_experience_builder Cross-site scripting (XSS) vulnerability in IBM Forms Experience Builder 8.5.0 and 8.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 97777. CWE-79
Cross-site Scripting 		CVE-2014-6169 2024-11-21 11:13 2018-04-13 Show GitHub Exploit DB Packet Storm
285097 9.8 CRITICAL
Network 		ibm rational_appscan_source
security_appscan_source 		IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attacker… CWE-77
Command Injection 		CVE-2014-6120 2024-11-21 11:13 2018-04-13 Show GitHub Exploit DB Packet Storm
285098 6.1 MEDIUM
Network 		jquery jquery jQuery 1.4.2 allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to use of the text method inside after. CWE-79
Cross-site Scripting 		CVE-2014-6071 2024-11-21 11:13 2018-01-17 Show GitHub Exploit DB Packet Storm
285099 6.1 MEDIUM
Network 		torrentflux_project torrentflux Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.4 allow (1) remote attackers to inject arbitrary web script or HTML by leveraging failure to encode file contents when downloading… CWE-79
Cross-site Scripting 		CVE-2014-6027 2024-11-21 11:13 2018-01-17 Show GitHub Exploit DB Packet Storm
285100 5.4 MEDIUM
Network 		ibm curam_social_program_management Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0 SP2, 6.0.4, and 6.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X… CWE-79
Cross-site Scripting 		CVE-2014-6191 2024-11-21 11:13 2017-09-20 Show GitHub Exploit DB Packet Storm