Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239991 4.3 警告 innovate portal - Innovate Portal の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4915 2012-09-25 15:35 2006-09-20 Show GitHub Exploit DB Packet Storm
239992 7.5 危険 php docwriter - PHP DocWriter における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4912 2012-09-25 15:35 2006-09-20 Show GitHub Exploit DB Packet Storm
239993 5 警告 ohio state university - OSU における重要な情報を取得される脆弱性 - CVE-2006-4908 2012-09-25 15:35 2006-09-20 Show GitHub Exploit DB Packet Storm
239994 5 警告 ohio state university - OSU における重要な情報を取得される脆弱性 - CVE-2006-4907 2012-09-25 15:35 2006-09-20 Show GitHub Exploit DB Packet Storm
239995 7.5 危険 marc logemann - More.groupware の modules/calendar/week.php における SQL インジェクションの脆弱性 - CVE-2006-4906 2012-09-25 15:35 2006-09-20 Show GitHub Exploit DB Packet Storm
239996 7.5 危険 idevSpot - IDevSpot NexieAffiliate における任意のアフィリエイトを削除される脆弱性 - CVE-2006-4895 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
239997 4.3 警告 idevSpot - iDevSpot NixieAffiliate の forms/lostpassword.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4894 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
239998 5 警告 マイクロソフト - Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4888 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
239999 3.7 注意 マカフィー - McAfee VirusScan Enterprise などの製品におけるセキュリティ制限を回避される脆弱性 - CVE-2006-4886 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240000 4.3 警告 idevSpot - IDevSpot iSupport におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4884 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286231 - adobe adobe_air_sdk
adobe_air
flash_player 		Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK &… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0535 2024-11-21 11:02 2014-06-11 Show GitHub Exploit DB Packet Storm
286232 - adobe flash_player
adobe_air
adobe_air_sdk 		Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK &… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0534 2024-11-21 11:02 2014-06-11 Show GitHub Exploit DB Packet Storm
286233 - adobe flash_player
adobe_air_sdk
adobe_air 		Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AI… CWE-79
Cross-site Scripting 		CVE-2014-0533 2024-11-21 11:02 2014-06-11 Show GitHub Exploit DB Packet Storm
286234 - adobe adobe_air_sdk
adobe_air
flash_player 		Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AI… CWE-79
Cross-site Scripting 		CVE-2014-0532 2024-11-21 11:02 2014-06-11 Show GitHub Exploit DB Packet Storm
286235 - adobe adobe_air
flash_player
adobe_air_sdk 		Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AI… CWE-79
Cross-site Scripting 		CVE-2014-0531 2024-11-21 11:02 2014-06-11 Show GitHub Exploit DB Packet Storm
286236 - ibm java_sdk The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6, 6 before Service Refresh 16, 6.0.1 before… CWE-310
Cryptographic Issues 		CVE-2014-0878 2024-11-21 11:02 2014-05-27 Show GitHub Exploit DB Packet Storm
286237 - ibm maximo_asset_management
smartcloud_control_desk 		Cross-site scripting (XSS) vulnerability in customreport.jsp in IBM Maximo Asset Management 7.5.x before 7.5.0.5 IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allo… CWE-79
Cross-site Scripting 		CVE-2014-0893 2024-11-21 11:02 2014-05-27 Show GitHub Exploit DB Packet Storm
286238 - ibm maximo_asset_management
smartcloud_control_desk 		IBM Maximo Asset Management 7.x before 7.5.0.3 IFIX027 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to gain privileges by leveraging memb… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0849 2024-11-21 11:02 2014-05-27 Show GitHub Exploit DB Packet Storm
286239 - ibm change_and_configuration_management_database
maximo_service_desk
tivoli_service_request_manager
tivoli_it_asset_management_for_it
smartcloud_control_desk
maximo_asset_management 		Cross-site scripting (XSS) vulnerability in openreport.jsp in IBM Maximo Asset Management 7.x before 7.1.1.12 IFIX.20140321-1336 and 7.5.x before 7.5.0.5 IFIX006; SmartCloud Control Desk 7.x before 7… CWE-79
Cross-site Scripting 		CVE-2014-0825 2024-11-21 11:02 2014-05-27 Show GitHub Exploit DB Packet Storm
286240 - ibm tivoli_service_request_manager
change_and_configuration_management_database
maximo_service_desk
tivoli_it_asset_management_for_it
maximo_asset_management 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.x before 7.1.1.8 LAFIX.20140319-0839 and 7.1.1.12 before IFIX.20140321-1336 and Tivoli IT Asset Management for IT, Tivoli Ser… CWE-79
Cross-site Scripting 		CVE-2014-0824 2024-11-21 11:02 2014-05-27 Show GitHub Exploit DB Packet Storm