Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242181	5	警告	jasmine technologies	-	LetterGrade における重要な情報 (インストールパスまたはアカウントの存在) を取得される脆弱性	CWE-noinfo 情報不足	CVE-2007-4946	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242182	4.3	警告	jasmine technologies	-	LetterGrade におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4945	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242183	5	警告	Opera Software ASA	-	Opera の canvas.createPattern 関数における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2007-4944	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242184	7.1	危険	KDE project	-	KMPlayer におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-4941	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242185	9.3	危険	guliverkli mympc verycd	-	MPC における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2007-4940	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242186	9.3	危険	guliverkli mympc verycd	-	MPC の mplayerc.exe におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4939	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242187	7.6	危険	MPlayer project SGI	-	MPlayer の libmpdemux/aviheader.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4938	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242188	7.5	危険	office efficiencies	-	Office Efficiencies SafeSquid における脆弱性	CWE-noinfo 情報不足	CVE-2007-4936	2012-09-25 16:59	2007-09-18	Show	GitHub Exploit DB Packet Storm

242189	2.1	注意	ヒューレット・パッカード	-	Windows 用の HP SMH における脆弱性	CWE-DesignError	CVE-2007-4931	2012-09-25 16:59	2007-09-10	Show	GitHub Exploit DB Packet Storm

242190	6.8	警告	Joomla!	-	Joomla! の Joomla Radio 5 コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4923	2012-09-25 16:59	2007-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285781	-	meta_tags_quick_project	meta_tags_quick	Open redirect vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated users to redirect users to arbitrary we…	NVD-CWE-Other	CVE-2014-9363	2024-11-21 11:20	2014-12-11	Show	GitHub Exploit DB Packet Storm

285782	-	meta_tags_quick_project	meta_tags_quick	Cross-site scripting (XSS) vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated users with the "Edit path …	CWE-79 Cross-site Scripting	CVE-2014-9362	2024-11-21 11:20	2014-12-11	Show	GitHub Exploit DB Packet Storm

285783	-	logintoboggan_project	logintoboggan	The LoginToboggan module 7.x-1.x before 7.x-1.4 for Drupal does not properly unset the authorized user role for certain users, which allows remote attackers with the pre-authorized role to gain privi…	CWE-200 Information Exposure	CVE-2014-9361	2024-11-21 11:20	2014-12-11	Show	GitHub Exploit DB Packet Storm

285784	-	scalix	web_access	XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377 and 12.2.0.14697 allows remote attackers to read arbitrary files and trigger requests to intranet servers via a crafted reque…	NVD-CWE-Other	CVE-2014-9360	2024-11-21 11:20	2014-12-11	Show	GitHub Exploit DB Packet Storm

285785	-	intelliants	subrion	Cross-site scripting (XSS) vulnerability in Subrion CMS before 3.2.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to subrion/search/.	CWE-79 Cross-site Scripting	CVE-2014-9120	2024-11-21 11:20	2014-12-11	Show	GitHub Exploit DB Packet Storm

285786	-	icecast	icecast	Icecast before 2.4.0 does not change the supplementary group privileges when <changeowner> is configured, which allows local users to gain privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9091	2024-11-21 11:20	2014-12-11	Show	GitHub Exploit DB Packet Storm

285787	-	scalix	web_access	Cross-site scripting (XSS) vulnerability in the mail administration login panel in Scalix Web Access 11.4.6.12377 allows remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2014-9352	2024-11-21 11:20	2014-12-10	Show	GitHub Exploit DB Packet Storm

285788	-	teeworlds	teeworlds	engine/server/server.cpp in Teeworlds 0.6.x before 0.6.3 allows remote attackers to read memory and cause a denial of service (crash) via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2014-9351	2024-11-21 11:20	2014-12-10	Show	GitHub Exploit DB Packet Storm

285789	-	ffmpeg	ffmpeg	The ff_hevc_decode_nal_sps function in libavcodec/hevc_ps.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds acc…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9319	2024-11-21 11:20	2014-12-10	Show	GitHub Exploit DB Packet Storm

285790	-	ffmpeg	ffmpeg	The raw_decode function in libavcodec/rawdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds heap access) and…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9318	2024-11-21 11:20	2014-12-10	Show	GitHub Exploit DB Packet Storm