Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240131 7.5 危険 openwbem - Web Based Enterprise Management の乱数のジェネレータにおける権限を取得される脆弱性 - CVE-2006-5639 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240132 5 警告 Mozilla Foundation - Firefox などにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5633 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
240133 6.8 警告 ig shop - iG Shop の change_pass.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5632 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240134 6.8 警告 ig shop - iG Shop の change_pass.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5631 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240135 7.5 危険 hosting controller - Hosting Controller におけるサイトの仮想ディレクトリを削除される脆弱性 - CVE-2006-5630 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240136 7.5 危険 hosting controller - Hosting Controller における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-5629 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240137 5.1 警告 nx - N/X 2002 Professional Edition WCMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5625 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240138 7.5 危険 mpcs - MPCS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5624 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240139 7.5 危険 minibill - MiniBILL の include/menu_builder.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5620 2012-09-25 15:36 2006-10-31 Show GitHub Exploit DB Packet Storm
240140 5 警告 netref - Netref の script/cat_for_aff.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5618 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285781 - apple safari
itunes 		WebKit, as used in Apple Safari before 6.1.3 and 7.x before 7.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1301 2024-11-21 11:04 2014-04-3 Show GitHub Exploit DB Packet Storm
285782 - apple safari WebKit, as used in Apple Safari before 6.1.3 and 7.x before 7.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1299 2024-11-21 11:04 2014-04-3 Show GitHub Exploit DB Packet Storm
285783 - apple safari WebKit, as used in Apple Safari before 6.1.3 and 7.x before 7.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1298 2024-11-21 11:04 2014-04-3 Show GitHub Exploit DB Packet Storm
285784 - apple safari WebKit, as used in Apple Safari before 6.1.3 and 7.x before 7.0.3, does not properly validate WebProcess IPC messages, which allows remote attackers to bypass a sandbox protection mechanism and read … CWE-20
 Improper Input Validation  		CVE-2014-1297 2024-11-21 11:04 2014-04-3 Show GitHub Exploit DB Packet Storm
285785 - horde horde_application_framework The framework/Util/lib/Horde/Variables.php script in the Util library in Horde before 5.1.1 allows remote attackers to conduct object injection attacks and execute arbitrary PHP code via a crafted se… CWE-94
Code Injection 		CVE-2014-1691 2024-11-21 11:04 2014-04-2 Show GitHub Exploit DB Packet Storm
285786 - mozilla firefox The saltProfileName function in base/GeckoProfileDirectories.java in Mozilla Firefox through 28.0.1 on Android relies on Android's weak approach to seeding the Math.random function, which makes it ea… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1516 2024-11-21 11:04 2014-03-30 Show GitHub Exploit DB Packet Storm
285787 - symantec liveupdate_administrator SQL injection vulnerability in forcepasswd.do in the management GUI in Symantec LiveUpdate Administrator (LUA) 2.x before 2.3.2.110 allows remote attackers to execute arbitrary SQL commands via unspe… CWE-89
SQL Injection 		CVE-2014-1645 2024-11-21 11:04 2014-03-29 Show GitHub Exploit DB Packet Storm
285788 - symantec liveupdate_administrator The forgotten-password feature in forcepasswd.do in the management GUI in Symantec LiveUpdate Administrator (LUA) 2.x before 2.3.2.110 allows remote attackers to reset arbitrary passwords by providin… CWE-255
Credentials Management 		CVE-2014-1644 2024-11-21 11:04 2014-03-29 Show GitHub Exploit DB Packet Storm
285789 - apple safari Heap-based buffer overflow in Apple Safari 7.0.2 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors, as demonstrated by Liang Chen dur… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1303 2024-11-21 11:04 2014-03-26 Show GitHub Exploit DB Packet Storm
285790 - apple safari Unspecified vulnerability in Apple Safari 7.0.2 on OS X allows remote attackers to execute arbitrary code with root privileges via unknown vectors, as demonstrated by Google during a Pwn4Fun competit… NVD-CWE-noinfo
CVE-2014-1300 2024-11-21 11:04 2014-03-26 Show GitHub Exploit DB Packet Storm