Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240001	7.5	危険	nivisec	-	Nivisec Hacks List の admin_hacks_list.php における SQL インジェクションの脆弱性	-	CVE-2006-6216	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240002	7.5	危険	pegames	-	PEGames の index.php における PHP リモートファイルインクルージョン攻撃を実行される脆弱性	-	CVE-2006-6213	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240003	7.5	危険	iisworks	-	ASP ListPics の listpics.asp における SQL インジェクションの脆弱性	-	CVE-2006-6210	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240004	7.5	危険	midicart software	-	MidiCart ASP Shopping Cart などにおける SQL インジェクションの脆弱性	-	CVE-2006-6209	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240005	5	警告	krishan	-	Mambo の flyspray コンポーネントにおけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6203	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240006	7.5	危険	nukeai	-	NukeAI モジュールの modules/NukeAI/util.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6202	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240007	7.5	危険	Neocrome	-	Neocrome Seditio の system/core/users/users.profile.inc.php における SQL インジェクションの脆弱性	-	CVE-2006-6177	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240008	7.5	危険	Horde	-	Horde Kronolith の lib/FBView.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6175	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240009	7.5	危険	MPlayer project Xine	-	xine/xine-lib などの Real Media 入力プラグインにおけるバッファオーバーフローの脆弱性	-	CVE-2006-6172	2012-09-25 15:36	2006-11-30	Show	GitHub Exploit DB Packet Storm

240010	7.2	危険	OpenBSD	-	OpenBSD の ELF ld.so における LD_PRELOAD などの危険な変数を受け渡される脆弱性	-	CVE-2006-6164	2012-09-25 15:36	2006-11-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285701	-	mozilla	network_security_services firefox_esr thunderbird firefox	Use-after-free vulnerability in the CERT_DestroyCertificate function in libnss3.so in Mozilla Network Security Services (NSS) 3.x, as used in Firefox before 31.0, Firefox ESR 24.x before 24.7, and Th…	NVD-CWE-Other	CVE-2014-1544	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

285702	-	bestpractical email\	rt \	Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string withou…	CWE-189 Numeric Errors	CVE-2014-1474	2024-11-21 11:04	2014-07-15	Show	GitHub Exploit DB Packet Storm

285703	-	microsoft	windows_server_2012 windows_rt windows_7 windows_8.1 windows_server_2008 windows_server_2003 windows_rt_8.1 windows_vista windows_8	Double free vulnerability in the Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Win…	CWE-415 Double Free	CVE-2014-1767	2024-11-21 11:04	2014-07-9	Show	GitHub Exploit DB Packet Storm

285704	-	apple	tvos	Apple TV before 6.1.2 allows remote authenticated users to bypass an intended password requirement for iTunes Store purchase transactions via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1383	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285705	-	apple	safari tvos iphone_os	WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (m…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1382	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285706	-	apple	mac_os_x	Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1381	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285707	-	apple	mac_os_x	The Security - Keychain component in Apple OS X before 10.9.4 does not properly implement keystroke observers, which allows physically proximate attackers to bypass the screen-lock protection mechani…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1380	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285708	-	apple	mac_os_x	Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a 32-bit executable file for a crafted ap…	NVD-CWE-Other	CVE-2014-1379	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285709	-	apple	mac_os_x	IOGraphicsFamily in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1378	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

285710	-	apple	mac_os_x	Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application.	NVD-CWE-Other	CVE-2014-1377	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm