Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242141 5.1 警告 MediaWiki - MediaWiki の AJAX モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0177 2012-09-25 15:36 2007-01-10 Show GitHub Exploit DB Packet Storm
242142 6.8 警告 l2j - L2J Statistik Script の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0173 2012-09-25 15:36 2007-01-10 Show GitHub Exploit DB Packet Storm
242143 7.5 危険 locazo - LocazoList の main.asp における SQL インジェクションの脆弱性 - CVE-2007-0129 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
242144 9.3 危険 Opera Software ASA - Opera の Javascript SVG サポートにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-0127 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
242145 9.3 危険 Opera Software ASA - Opera におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0126 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
242146 5 警告 カスペルスキー - Kaspersky Lab Antivurus Engine におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0125 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
242147 6.8 警告 michael romedahl - RI Blog の search.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0121 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
242148 6.8 警告 packeteer - Packeteer PacketShaper PacketWise におけるバッファオーバーフローの脆弱性 - CVE-2007-0113 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
242149 6.8 警告 Novell - Novell Access Manager Identity Server の nidp/idff/sso におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0110 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
242150 6 警告 Novell - Windows 2000/XP/2003 用の Novell Client における別のユーザプロファイルを呼び出される脆弱性 - CVE-2007-0108 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285301 - technicolor td5130_router_firmware Cross-site scripting (XSS) vulnerability in Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to inject arbitrary web script or HTML via the failrefer parameter. CWE-79
Cross-site Scripting 		CVE-2014-9142 2024-11-21 11:20 2014-12-6 Show GitHub Exploit DB Packet Storm
285302 - cminds cm_download_manager Cross-site request forgery (CSRF) vulnerability in the CreativeMinds CM Downloads Manager plugin before 2.0.7 for WordPress allows remote attackers to hijack the authentication of administrators for … CWE-352
 Origin Validation Error 		CVE-2014-9129 2024-11-21 11:20 2014-12-6 Show GitHub Exploit DB Packet Storm
285303 - websitebaker websitebaker Multiple cross-site scripting (XSS) vulnerabilities in WebsiteBaker 2.8.3 allow remote attackers to inject arbitrary web script or HTML via the (1) QUERY_STRING to wb/admin/admintools/tool.php or (2)… CWE-79
Cross-site Scripting 		CVE-2014-9243 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285304 - websitebaker websitebaker SQL injection vulnerability in admin/pages/modify.php in WebsiteBaker 2.8.3 allows remote attackers to execute arbitrary SQL commands via the page_id parameter. CWE-89
SQL Injection 		CVE-2014-9242 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285305 - mybb mybb Multiple cross-site scripting (XSS) vulnerabilities in MyBB (aka MyBulletinBoard) 1.8.x before 1.8.2 allow remote attackers to inject arbitrary web script or HTML via the (1) type parameter to report… CWE-79
Cross-site Scripting 		CVE-2014-9241 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285306 - mybb mybb SQL injection vulnerability in member.php in MyBB (aka MyBulletinBoard) 1.8.x before 1.8.2 allows remote attackers to execute arbitrary SQL commands via the question_id parameter in a do_register act… CWE-89
SQL Injection 		CVE-2014-9240 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285307 - invisionpower
invisioncommunity 		invision_power_board SQL injection vulnerability in the IPS Connect service (interface/ipsconnect/ipsconnect.php) in Invision Power Board (aka IPB or IP.Board) 3.3.x and 3.4.x through 3.4.7 before 20141114 allows remote … CWE-89
SQL Injection 		CVE-2014-9239 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285308 - d-link dcs-2103_hd_cube_network_camera_firmware D-link IP camera DCS-2103 with firmware 1.0.0 allows remote attackers to obtain the installation path via the file parameter to cgi-bin/sddownload.cgi, as demonstrated by a / (forward slash) characte… CWE-22
Path Traversal 		CVE-2014-9238 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285309 - proticaret proticaret SQL injection vulnerability in Proticaret E-Commerce 3.0 allows remote attackers to execute arbitrary SQL commands via a tem:Code element in a SOAP request. CWE-89
SQL Injection 		CVE-2014-9237 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm
285310 - zoph zoph Cross-site scripting (XSS) vulnerability in php/edit_photos.php in Zoph (aka Zoph Organizes Photos) 0.9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) photog… CWE-79
Cross-site Scripting 		CVE-2014-9236 2024-11-21 11:20 2014-12-4 Show GitHub Exploit DB Packet Storm