Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240151 5 警告 マイクロソフト - Microsoft Internet Explorer 6.0 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6311 2012-09-25 15:36 2006-12-6 Show GitHub Exploit DB Packet Storm
240152 5 警告 マイクロソフト - Microsoft Internet Explorer 6.0 SP1 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6310 2012-09-25 15:36 2006-12-6 Show GitHub Exploit DB Packet Storm
240153 7.5 危険 IBM - IBM TSM における任意のメモリ領域を読まれる脆弱性 - CVE-2006-6309 2012-09-25 15:36 2006-12-6 Show GitHub Exploit DB Packet Storm
240154 5 警告 Novell - Windows 用の Novell Client の srvloc.sys におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6307 2012-09-25 15:36 2006-12-5 Show GitHub Exploit DB Packet Storm
240155 1.2 注意 Novell - Novell Client の NMAS におけるフォーマットストリングの脆弱性 - CVE-2006-6306 2012-09-25 15:36 2006-12-5 Show GitHub Exploit DB Packet Storm
240156 7.5 危険 Net-SNMP - Net-SNMP における読み込みアクセスのみのユーザなどに書き込み権限を付与する脆弱性 CWE-noinfo
情報不足 		CVE-2006-6305 2012-09-25 15:36 2006-12-6 Show GitHub Exploit DB Packet Storm
240157 10 危険 Novell - Novell ZAM などの Msg.dll における整数オーバーフローの脆弱性 - CVE-2006-6299 2012-09-25 15:36 2006-12-5 Show GitHub Exploit DB Packet Storm
240158 7.5 危険 maxiasp - Metyus Okul Yonetim Sistemi の uye_giris_islem.asp における SQL インジェクションの脆弱性 - CVE-2006-6298 2012-09-25 15:36 2006-12-5 Show GitHub Exploit DB Packet Storm
240159 5 警告 KDE project - KDE イメージブラウザで使用される KFILE JPEG プラグインにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-6297 2012-09-25 15:36 2006-11-29 Show GitHub Exploit DB Packet Storm
240160 6.1 警告 マイクロソフト - Microsoft Windows 2000 SP4 などの Print Spooler サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-6296 2012-09-25 15:36 2006-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286871 - jordy_meow media_file_renamer Multiple cross-site scripting (XSS) vulnerabilities in the (1) callback_multicheck, (2) callback_radio, and (3) callback_wysiwygin functions in mfrh_class.settings-api.php in the Media File Renamer p… CWE-79
Cross-site Scripting 		CVE-2014-2040 2024-11-21 11:05 2014-03-4 Show GitHub Exploit DB Packet Storm
286872 - posh_project posh SQL injection vulnerability in portal/addtoapplication.php in POSH (aka Posh portal or Portaneo) 3.0 before 3.3.0 allows remote attackers to execute arbitrary SQL commands via the rssurl parameter. CWE-89
SQL Injection 		CVE-2014-2211 2024-11-21 11:05 2014-03-4 Show GitHub Exploit DB Packet Storm
286873 - artifex mupdf Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and earlier allows remote attackers to execute arbitrary code via a large number of entries in the Context… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-2013 2024-11-21 11:05 2014-03-4 Show GitHub Exploit DB Packet Storm
286874 - mybb mybb Cross-site scripting (XSS) vulnerability in Upload/search.php in MyBB 1.6.12 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a do_search actio… CWE-79
Cross-site Scripting 		CVE-2014-1840 2024-11-21 11:05 2014-03-4 Show GitHub Exploit DB Packet Storm
286875 - google
lenovo 		android
shareit 		java/android/webkit/BrowserFrame.java in Android before 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows attackers to execute ar… CWE-94
Code Injection 		CVE-2014-1939 2024-11-21 11:05 2014-03-3 Show GitHub Exploit DB Packet Storm
286876 - drinkedin drinkedin_barfinder The DrinkedIn BarFinder application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain sensitive fine-geo… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1887 2024-11-21 11:05 2014-03-3 Show GitHub Exploit DB Packet Storm
286877 - edinburghtour edinburgh_by_bus The Edinburgh by Bus application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently access external-storage reso… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1886 2024-11-21 11:05 2014-03-3 Show GitHub Exploit DB Packet Storm
286878 - hsgroup forzearmate The ForzeArmate application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain write access to external-s… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1885 2024-11-21 11:05 2014-03-3 Show GitHub Exploit DB Packet Storm
286879 - apache
adobe 		cordova
phonegap 		Apache Cordova 3.3.0 and earlier and Adobe PhoneGap 2.9.0 and earlier on Windows Phone 7 and 8 do not properly restrict navigation events, which allows remote attackers to bypass intended device-reso… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1884 2024-11-21 11:05 2014-03-3 Show GitHub Exploit DB Packet Storm
286880 - adobe phonegap Adobe PhoneGap before 2.6.0 on Android uses the shouldOverrideUrlLoading callback instead of the proper shouldInterceptRequest callback, which allows remote attackers to bypass intended device-resour… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1883 2024-11-21 11:05 2014-03-3 Show GitHub Exploit DB Packet Storm