Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240711 6.8 警告 hilgraeve - HyperAccess における任意の vbscript およびコマンドを実行される脆弱性 - CVE-2006-6597 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240712 6.8 警告 hilgraeve - HyperAccess における任意の vbscript およびコマンドを実行される脆弱性 - CVE-2006-6596 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240713 7.5 危険 The PHP Group - Bloq における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6592 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240714 7.5 危険 The PHP Group - AR Memberscript の usercp_menu.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6590 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240715 6.4 警告 Mozilla Foundation - Mozilla Firefox の拡張マネージャにおける自身を非表示にする拡張を構成される脆弱性 CWE-Other
その他 		CVE-2006-6585 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240716 10 危険 italkplus - Italk+ におけるバッファオーバーフローの脆弱性 - CVE-2006-6584 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240717 4.4 警告 マイクロソフト - Microsoft Windows XP におけるファイルを読み書きされる脆弱性 - CVE-2006-6579 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240718 7.5 危険 マイクロソフト - Microsoft IIS 5.1 における任意のコマンドを実行される脆弱性 - CVE-2006-6578 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240719 6.8 警告 Neocrome - Neocrome LDU の polls.php における SQL インジェクションの脆弱性 - CVE-2006-6577 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
240720 7.5 危険 kmint21 - goldenftpd におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-6576 2012-09-25 15:36 2006-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287411 - owncloud owncloud ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not check permissions to the files_external application, which allows remote authenticated users to add external storage via unspecified vect… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3835 2024-11-21 11:08 2014-06-4 Show GitHub Exploit DB Packet Storm
287412 - owncloud owncloud ownCloud Server before 6.0.3 does not properly check permissions, which allows remote authenticated users to (1) access the contacts of other users via the address book or (2) rename files via unspec… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3834 2024-11-21 11:08 2014-06-4 Show GitHub Exploit DB Packet Storm
287413 - owncloud owncloud Multiple cross-site scripting (XSS) vulnerabilities in the (1) Gallery and (2) core components in ownCloud Server before 5.016 and 6.0.x before 6.0.3 allow remote attackers to inject arbitrary web sc… CWE-79
Cross-site Scripting 		CVE-2014-3833 2024-11-21 11:08 2014-06-4 Show GitHub Exploit DB Packet Storm
287414 - owncloud owncloud Cross-site scripting (XSS) vulnerability in the Documents component in ownCloud Server 6.0.x before 6.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possi… CWE-79
Cross-site Scripting 		CVE-2014-3832 2024-11-21 11:08 2014-06-4 Show GitHub Exploit DB Packet Storm
287415 - lucidcrew pixie Multiple cross-site scripting (XSS) vulnerabilities in the contact module (admin/modules/contact.php) in Pixie CMS 1.04 allow remote attackers to inject arbitrary web script or HTML via the (1) uemai… CWE-79
Cross-site Scripting 		CVE-2014-3786 2024-11-21 11:08 2014-06-4 Show GitHub Exploit DB Packet Storm
287416 - gnu gnutls Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows remote servers to cause a denial of service (me… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3466 2024-11-21 11:08 2014-06-3 Show GitHub Exploit DB Packet Storm
287417 - vmware vcenter_server_appliance Ruby vSphere Console (RVC) in VMware vCenter Server Appliance allows remote authenticated users to execute arbitrary commands as root by escaping from a chroot jail. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3790 2024-11-21 11:08 2014-06-1 Show GitHub Exploit DB Packet Storm
287418 - vmware player
esxi
fusion
workstation 		VMware Tools in VMware Workstation 10.x before 10.0.2, VMware Player 6.x before 6.0.2, VMware Fusion 6.x before 6.0.3, and VMware ESXi 5.0 through 5.5, when a Windows 8.1 guest OS is used, allows gue… NVD-CWE-Other
CVE-2014-3793 2024-11-21 11:08 2014-05-31 Show GitHub Exploit DB Packet Storm
287419 - citrix vdi-in-a-box Unspecified vulnerability in Citrix VDI-In-A-Box 5.3.x before 5.3.8 and 5.4.x before 5.4.4 allows remote attackers to bypass authentication via unspecified vectors, related to a Java servlet. CWE-287
Improper Authentication 		CVE-2014-3780 2024-11-21 11:08 2014-05-30 Show GitHub Exploit DB Packet Storm
287420 - jasig uportal uPortal before 4.0.13.1 does not properly check the CONFIG permission, which allows remote authenticated users to configure portlets by leveraging the SUBSCRIBE permission for a portlet. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3417 2024-11-21 11:08 2014-05-29 Show GitHub Exploit DB Packet Storm