Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242071	10	危険	オラクル	-	Oracle E-Business Suite の Oracle Exchange コンポーネントにおける脆弱性	-	CVE-2006-5368	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242072	9	危険	オラクル	-	Oracle E-Business Suite における脆弱性	-	CVE-2006-5367	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242073	10	危険	オラクル	-	Oracle Collaboration Suite における脆弱性	-	CVE-2006-5366	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242074	10	危険	オラクル	-	Oracle Application Express における脆弱性	-	CVE-2006-5352	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242075	9	危険	オラクル	-	Oracle Application Express における脆弱性	CWE-noinfo 情報不足	CVE-2006-5351	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242076	10	危険	オラクル	-	Oracle HTTP Server における脆弱性	-	CVE-2006-5349	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242077	5	警告	morian	-	Album Photo Sans Nom の getimg.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5320	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

242078	7.6	危険	マカフィー	-	McAfee ePolicy Orchestrator における整数オーバーフローの脆弱性	-	CVE-2006-5274	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

242079	7.6	危険	マカフィー	-	McAfee ePolicy Orchestrator などにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-5273	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

242080	7.5	危険	マカフィー	-	McAfee ePolicy Orchestrator などにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-5272	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286591	9.8	CRITICAL Network	aztech	adsl_dsl5018en_\(1t1r\)_firmware dsl705e_firmware dsl705eu_firmware	Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary com…	CWE-287 Improper Authentication	CVE-2014-6436	2024-11-21 11:14	2018-01-13	Show	GitHub Exploit DB Packet Storm

286592	7.5	HIGH Network	aztech	adsl_dsl5018en_\(1t1r\)_firmware dsl705e_firmware dsl705eu_firmware	cgi-bin/AZ_Retrain.cgi in Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices does not check for authentication, which allows remote attackers to cause a denial of service (WAN connectivity r…	CWE-287 Improper Authentication	CVE-2014-6435	2024-11-21 11:14	2018-01-13	Show	GitHub Exploit DB Packet Storm

286593	7.5	HIGH Network	ruby-lang	ruby	The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or applica…	CWE-399 Resource Management Errors	CVE-2014-6438	2024-11-21 11:14	2017-09-7	Show	GitHub Exploit DB Packet Storm

286594	6.1	MEDIUM Network	openjsf	express	The Express web framework before 3.11 and 4.x before 4.5 for Node.js does not provide a charset field in HTTP Content-Type headers in 400 level responses, which might allow remote attackers to conduc…	CWE-79 Cross-site Scripting	CVE-2014-6393	2024-11-21 11:14	2017-08-10	Show	GitHub Exploit DB Packet Storm

286595	7.5	HIGH Network	microsoft	internet_explorer	Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, Internet Explorer 9, Internet Explorer 10, and Internet Explorer 11 allows remote attackers to execute arbitrary code.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-6354	2024-11-21 11:14	2017-06-28	Show	GitHub Exploit DB Packet Storm

286596	9.8	CRITICAL Network	videolan	vlc	VideoLAN VLC media player before 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-6440	2024-11-21 11:14	2017-03-29	Show	GitHub Exploit DB Packet Storm

286597	4.3	MEDIUM Network	roundup-tracker debian	roundup debian_linux	schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-6276	2024-11-21 11:14	2016-04-13	Show	GitHub Exploit DB Packet Storm

286598	6.1	MEDIUM Network	titan_framework_project	titan_framework	Multiple cross-site scripting (XSS) vulnerabilities in the Titan Framework plugin before 1.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) t parameter to ifr…	CWE-79 Cross-site Scripting	CVE-2014-6444	2024-11-21 11:14	2016-01-9	Show	GitHub Exploit DB Packet Storm

286599	-		juniper	junos	J-Web in Juniper vSRX virtual firewalls with Junos OS before 15.1X49-D20 allows remote attackers to cause a denial of service (system reboot) via unspecified vectors.	NVD-CWE-noinfo	CVE-2014-6451	2024-11-21 11:14	2015-10-17	Show	GitHub Exploit DB Packet Storm

286600	-		juniper	junos	Juniper Junos OS before 11.4R12-S4, 12.1X44 before 12.1X44-D41, 12.1X46 before 12.1X46-D26, 12.1X47 before 12.1X47-D11/D15, 12.2 before 12.2R9, 12.2X50 before 12.2X50-D70, 12.3 before 12.3R8, 12.3X48…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-6450	2024-11-21 11:14	2015-10-17	Show	GitHub Exploit DB Packet Storm