Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240161	7.8	危険	phaseout	-	PhaseOut における他のドメインから制限情報にアクセスされる脆弱性	-	CVE-2006-6986	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

240162	5	警告	Maxthon	-	Maxthon における制限された情報に他のドメインからアクセスされる脆弱性	-	CVE-2006-6985	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

240163	5	警告	More Quick Tools	-	GreenBrowser における他ドメインから制限された情報にアクセスされる脆弱性	-	CVE-2006-6984	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

240164	5	警告	myweb4net	-	MYweb4net Browser における他のドメインから制限された情報にアクセスされる脆弱性	-	CVE-2006-6983	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

240165	2.6	注意	magnatune.com	-	Amarok の magnatune.com アルバムブラウザにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6980	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

240166	7.5	危険	headstart solutions	-	Headstart Solutions の DeskPRO におけるディレクトリ内のファイルを一覧される脆弱性	-	CVE-2006-6974	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

240167	7.5	危険	headstart solutions	-	Headstart Solutions の DeskPRO におけるアプリケーションを再インストールされる脆弱性	-	CVE-2006-6973	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

240168	5	警告	Opera Software ASA	-	Opera における不正行為の保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-6970	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

240169	6.8	警告	jetty	-	Jetty におけるセッション識別子を推測される脆弱性	-	CVE-2006-6969	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

240170	5.8	警告	Phorum	-	Phorum の group moderation control center page におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6968	2012-09-25 15:36	2007-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286921	-		siemens	ruggedcom_rugged_operating_system	The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage)…	NVD-CWE-noinfo	CVE-2014-1966	2024-11-21 11:05	2014-02-24	Show	GitHub Exploit DB Packet Storm

286922	-		citrix	sharefile_mobile_for_tablets sharefile_mobile	Citrix ShareFile Mobile and ShareFile Mobile for Tablets before 2.4.4 for Android do not verify X.509 certificates from SSL servers, which allow man-in-the-middle attackers to spoof servers and obtai…	CWE-310 Cryptographic Issues	CVE-2014-1910	2024-11-21 11:05	2014-02-22	Show	GitHub Exploit DB Packet Storm

286923	-		phpmyadmin	phpmyadmin	Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.	CWE-79 Cross-site Scripting	CVE-2014-1879	2024-11-21 11:05	2014-02-21	Show	GitHub Exploit DB Packet Storm

286924	-		fine_free_file_project php canonical debian	fine_free_file php ubuntu_linux debian_linux	Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2014-1943	2024-11-21 11:05	2014-02-19	Show	GitHub Exploit DB Packet Storm

286925	-		php	php	ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data types, which might allow remote attackers to obtain sensitive information by using a (1) string or (2) array data type in place of a numeric …	CWE-189 Numeric Errors	CVE-2014-2020	2024-11-21 11:05	2014-02-18	Show	GitHub Exploit DB Packet Storm

286926	4.6	MEDIUM Physics	apple	iphone_os	The iCloud subsystem in Apple iOS before 7.1 allows physically proximate attackers to bypass an intended password requirement, and turn off the Find My iPhone service or complete a Delete Account act…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2019	2024-11-21 11:05	2014-02-18	Show	GitHub Exploit DB Packet Storm

286927	-		freepbx sangoma	freepbx	admin/libraries/view.functions.php in FreePBX 2.9 before 2.9.0.14, 2.10 before 2.10.1.15, 2.11 before 2.11.0.23, and 12 before 12.0.1alpha22 does not restrict the set of functions accessible to the A…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1903	2024-11-21 11:05	2014-02-18	Show	GitHub Exploit DB Packet Storm

286928	-		jetroplatforms	jetro_cockpit_secure_browsing	The client in Jetro COCKPIT Secure Browsing (JCSB) 4.3.1 and 4.3.3 does not validate the FileName element in an RDP_FILE_TRANSFER document, which allows remote JCSB servers to execute arbitrary progr…	CWE-20 Improper Input Validation	CVE-2014-1861	2024-11-21 11:05	2014-02-18	Show	GitHub Exploit DB Packet Storm

286929	-		mozilla	thunderbird_esr thunderbird seamonkey	Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8, Thunderbird ESR 17.x through 17.0.10, and SeaMonkey before 2.20 allows user-assisted remote attackers to inject ar…	CWE-79 Cross-site Scripting	CVE-2014-2018	2024-11-21 11:05	2014-02-18	Show	GitHub Exploit DB Packet Storm

286930	-		sap	netweaver	Cross-site scripting (XSS) vulnerability in ISpeakAdapter in the Integration Repository in the SAP Exchange Infrastructure (BC-XI) component 3.0, 7.00 through 7.02, and 7.10 through 7.11 for SAP NetW…	CWE-79 Cross-site Scripting	CVE-2014-1965	2024-11-21 11:05	2014-02-15	Show	GitHub Exploit DB Packet Storm