Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240281 4.6 警告 linux-ftpd-ssl - linux-ftpd の ftpd におけるアクセス制限を回避される脆弱性 - CVE-2006-5778 2012-09-25 15:36 2006-08-24 Show GitHub Exploit DB Packet Storm
240282 7.5 危険 レッドハット - jbossas の DeploymentFileRepository クラスにおけるディレクトリトラバーサルの脆弱性 - CVE-2006-5750 2012-09-25 15:36 2006-11-27 Show GitHub Exploit DB Packet Storm
240283 1.7 注意 Linux - Linux kernel の drivers/isdn/isdn_ppp.c における脆弱性 - CVE-2006-5749 2012-09-25 15:36 2006-12-19 Show GitHub Exploit DB Packet Storm
240284 7.5 危険 mobilesecure inc - Highwall Enterprise などで使用される管理インターフェースにおける SQL インジェクションの脆弱性 - CVE-2006-5744 2012-09-25 15:36 2006-11-6 Show GitHub Exploit DB Packet Storm
240285 4.3 警告 mobilesecure - Highwall Enterprise などの管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5743 2012-09-25 15:36 2006-11-6 Show GitHub Exploit DB Packet Storm
240286 7.5 危険 leicestershire - Leicestershire communityPortals の cpadmin/cpa_index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5739 2012-09-25 15:36 2006-11-6 Show GitHub Exploit DB Packet Storm
240287 6.4 警告 lithium cms - Lithium CMS の classes/index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5731 2012-09-25 15:36 2006-11-6 Show GitHub Exploit DB Packet Storm
240288 5.1 警告 MODX - Modx CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5730 2012-09-25 15:36 2006-11-6 Show GitHub Exploit DB Packet Storm
240289 2.1 注意 mirabilis - ICQ の "Answering Service" 関数におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-5724 2012-09-25 15:36 2006-11-3 Show GitHub Exploit DB Packet Storm
240290 5.1 警告 middlebury college - Segue CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5722 2012-09-25 15:36 2006-11-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285461 - xen xen Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETBOOL suboperations in the flask hypercall in Xen 4.1.x, 3.3.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause… CWE-189
Numeric Errors 		CVE-2014-1893 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
285462 - xen xen Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause a denial of service via vectors related to a "large memory allocation," a different vulnerability than CVE-2014-1891, CVE-2014-18… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1892 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
285463 - xen xen Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL, (3) FLASK_USER, and (4) FLASK_CONTEXT_TO_SID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlie… CWE-189
Numeric Errors 		CVE-2014-1891 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
285464 - sonatype nexus Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path." NVD-CWE-noinfo
CVE-2014-2034 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
285465 - alliedtelesis img646bd_firmware
img646bd
at-rg634a_firmware
at-rg634a
img624a_firmware
img624a
img616lh_firmware
img616lh 		The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges … CWE-287
CWE-78
Improper Authentication
OS Command  		CVE-2014-1982 2024-11-21 11:05 2014-03-31 Show GitHub Exploit DB Packet Storm
285466 - cisco ios The packet driver in Cisco IOS allows remote attackers to cause a denial of service (device reload) via a series of (1) Virtual Switching Systems (VSS) or (2) Bidirectional Forwarding Detection (BFD)… CWE-399
 Resource Management Errors 		CVE-2014-2131 2024-11-21 11:05 2014-03-29 Show GitHub Exploit DB Packet Storm
285467 - cisco prime_security_manager Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web… CWE-79
Cross-site Scripting 		CVE-2014-2118 2024-11-21 11:05 2014-03-28 Show GitHub Exploit DB Packet Storm
285468 - cisco ios_xe
ios 		Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and 3.8, 3.9, and 3.10 before 3.10.2S allow remote attackers to cause a denial of service (I/O memory consumption … CWE-20
 Improper Input Validation  		CVE-2014-2113 2024-11-21 11:05 2014-03-28 Show GitHub Exploit DB Packet Storm
285469 - cisco ios The SSL VPN (aka WebVPN) feature in Cisco IOS 15.1 through 15.4 allows remote attackers to cause a denial of service (memory consumption) via crafted HTTP requests, aka Bug ID CSCuf51357. CWE-20
 Improper Input Validation  		CVE-2014-2112 2024-11-21 11:05 2014-03-28 Show GitHub Exploit DB Packet Storm
285470 - cisco ios The Application Layer Gateway (ALG) module in Cisco IOS 12.2 through 12.4 and 15.0 through 15.4, when NAT is used, allows remote attackers to cause a denial of service (device reload) via crafted DNS… CWE-20
 Improper Input Validation  		CVE-2014-2111 2024-11-21 11:05 2014-03-28 Show GitHub Exploit DB Packet Storm