Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240241 4.3 警告 opentools - Opentools Attachment Mod におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7073 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
240242 7.5 危険 Invision Power Services, Inc - IPB の classes/class_session.php における SQL インジェクションの脆弱性 - CVE-2006-7071 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
240243 6 警告 オラクル - Oracle における内部エラーを誘発される脆弱性 - CVE-2006-7067 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
240244 5 警告 マイクロソフト
キヤノン		 - Microsoft Internet Explorer 6 および 7 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7065 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
240245 9.3 危険 Invision Power Services, Inc - IPB の forum/admin.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7064 2012-09-25 15:36 2007-02-23 Show GitHub Exploit DB Packet Storm
240246 7.8 危険 KDE project - kmail の calendar.php におけるサーバのフルパスを取得される脆弱性 - CVE-2006-7062 2012-09-25 15:36 2007-02-23 Show GitHub Exploit DB Packet Storm
240247 10 危険 keith reichley - DotWidget For Articles における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7052 2012-09-25 15:36 2007-02-23 Show GitHub Exploit DB Packet Storm
240248 4.9 警告 Linux - Linux kernel の posix-timers.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7051 2012-09-25 15:36 2007-02-23 Show GitHub Exploit DB Packet Storm
240249 4.4 警告 mathsoft - Mathcad におけるセキュリティ機能を回避される脆弱性 - CVE-2006-7037 2012-09-25 15:36 2007-02-22 Show GitHub Exploit DB Packet Storm
240250 5 警告 マイクロソフト - Microsoft Internet Explorer 6.0 SP2 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7031 2012-09-25 15:36 2007-02-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285231 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 allow remote authenticated users to inject ar… CWE-79
Cross-site Scripting 		CVE-2014-4986 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
285232 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList function in libraries/rte/rte_list.lib.php in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 all… CWE-79
Cross-site Scripting 		CVE-2014-4955 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
285233 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLinks function in libraries/structure.lib.php in phpMyAdmin 4.2.x before 4.2.6 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2014-4954 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
285234 - linux
suse
opensuse
redhat
debian 		linux_kernel
linux_enterprise_desktop
linux_enterprise_server
opensuse
enterprise_linux_server_aus
debian_linux 		The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket. CWE-269
 Improper Privilege Management 		CVE-2014-4943 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
285235 - sonicwall scrutinizer Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new … CWE-89
SQL Injection 		CVE-2014-4977 2024-11-21 11:11 2014-07-16 Show GitHub Exploit DB Packet Storm
285236 - sonicwall scrutinizer Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4976 2024-11-21 11:11 2014-07-16 Show GitHub Exploit DB Packet Storm
285237 - shopizer shopizer Multiple cross-site scripting (XSS) vulnerabilities in Shopizer 1.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) customername parameter to central/orders/se… CWE-79
Cross-site Scripting 		CVE-2014-4965 2024-11-21 11:11 2014-07-15 Show GitHub Exploit DB Packet Storm
285238 - shopizer shopizer Multiple cross-site request forgery (CSRF) vulnerabilities in Shopizer 1.1.5 and earlier allow remote attackers to hijack the authentication of users for requests that (1) modify customer settings or… CWE-352
 Origin Validation Error 		CVE-2014-4964 2024-11-21 11:11 2014-07-15 Show GitHub Exploit DB Packet Storm
285239 - shopizer shopizer Shopizer 1.1.5 and earlier allows remote attackers to modify the account settings of arbitrary users via the customer.customerId parameter to shop/profile/register.action. NVD-CWE-noinfo
CVE-2014-4963 2024-11-21 11:11 2014-07-15 Show GitHub Exploit DB Packet Storm
285240 - shopizer shopizer Shopizer 1.1.5 and earlier allows remote attackers to reduce the total cost of their shopping cart via a negative number in the productQuantity parameter, which causes the price of the item to be sub… CWE-189
Numeric Errors 		CVE-2014-4962 2024-11-21 11:11 2014-07-15 Show GitHub Exploit DB Packet Storm