Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240371 7.5 危険 mobilesecure inc - Highwall Enterprise 用などのワイヤレス IDS 管理インターフェースにおける SQL インジェクションの脆弱性 - CVE-2006-5409 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240372 5.1 警告 mobilesecure inc - Highwall Enterprise 用などのワイヤレス IDS 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5408 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240373 7.5 危険 osTicket - osTicket の open_form.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5407 2012-09-25 15:36 2006-10-18 Show GitHub Exploit DB Packet Storm
240374 3.6 注意 passgo - Passgo Defender における重要なファイルを変更される脆弱性 - CVE-2006-5406 2012-09-25 15:36 2006-10-18 Show GitHub Exploit DB Packet Storm
240375 7.5 危険 マイクロソフト - Microsoft Class Package Export Tool におけるバッファオーバーフローの脆弱性 - CVE-2006-5395 2012-09-25 15:36 2006-10-18 Show GitHub Exploit DB Packet Storm
240376 7.5 危険 opendoc - OpenDock FullCore における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5392 2012-09-25 15:36 2006-10-18 Show GitHub Exploit DB Packet Storm
240377 7.5 危険 nuralstorm - NuralStorm Webmail の process.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5386 2012-09-25 15:36 2006-10-18 Show GitHub Exploit DB Packet Storm
240378 9 危険 オラクル - JD Edwards EnterpriseOne の JD Edwards HTML Server における脆弱性 - CVE-2006-5378 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
240379 9 危険 オラクル - Oracle PeopleSoft Enterprise の PeopleSoft コンポーネントにおける脆弱性 - CVE-2006-5377 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
240380 9 危険 オラクル - Oracle PeopleSoft Enterprise の PeopleTools コンポーネントにおける脆弱性 - CVE-2006-5376 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285181 - ibm spss_modeler IBM SPSS Modeler 16.0 before 16.0.0.1 on UNIX does not properly drop group privileges, which allows local users to bypass intended file-access restrictions by leveraging (1) gid 0 or (2) root's group… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3038 2024-11-21 11:07 2014-06-9 Show GitHub Exploit DB Packet Storm
285182 - ibm api_management Unspecified vulnerability in IBM API Management 3.0.0.0, when basic authentication is used for APIs, allows remote attackers to bypass intended restrictions on topology access, and obtain sensitive i… NVD-CWE-noinfo
CVE-2014-3036 2024-11-21 11:07 2014-06-9 Show GitHub Exploit DB Packet Storm
285183 - cisco wireless_lan_controller Cisco Wireless LAN Controller (WLC) devices allow remote attackers to cause a denial of service (NULL pointer dereference and device restart) via a zero value in Cisco Discovery Protocol packet data … CWE-20
 Improper Input Validation  		CVE-2014-3291 2024-11-21 11:07 2014-06-9 Show GitHub Exploit DB Packet Storm
285184 - cisco webex_meetings_server The web framework in Cisco WebEx Meeting Server does not properly restrict the content of reply messages, which allows remote attackers to obtain sensitive information via a crafted URL, aka Bug IDs … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3286 2024-11-21 11:07 2014-06-9 Show GitHub Exploit DB Packet Storm
285185 - cisco unified_communications_domain_manager The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to obtain potentially sensitive user informati… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3281 2024-11-21 11:07 2014-06-9 Show GitHub Exploit DB Packet Storm
285186 - cisco unified_communications_domain_manager The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to enumerate accounts by visiting an unspecifi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3278 2024-11-21 11:07 2014-06-9 Show GitHub Exploit DB Packet Storm
285187 - cisco unified_communications_domain_manager The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain potent… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3280 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm
285188 - dell
quantum 		powervault_ml6000_firmware
powervault_ml6000
scalar_i500_firmware
scalar_i500 		logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote … CWE-78
OS Command  		CVE-2014-2959 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm
285189 - huawei webui
e303_modem_firmware
e303_modem 		Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote attackers to hijack the authentic… CWE-352
 Origin Validation Error 		CVE-2014-2946 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm
285190 - alfresco alfresco Multiple cross-site scripting (XSS) vulnerabilities in Alfresco Enterprise before 4.1.6.13 allow remote attackers to inject arbitrary web script or HTML via (1) an XHTML document, (2) a <% tag, or (3… CWE-79
Cross-site Scripting 		CVE-2014-2939 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm