Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242271 10 危険 pancake.org - Zina における脆弱性 - CVE-2007-0303 2012-09-25 16:47 2007-01-17 Show GitHub Exploit DB Packet Storm
242272 6.8 警告 InstantASP Ltd. - InstantASP におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0302 2012-09-25 16:47 2007-01-17 Show GitHub Exploit DB Packet Storm
242273 4 警告 オラクル - Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性 - CVE-2007-0297 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242274 2.1 注意 オラクル - Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性 - CVE-2007-0296 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242275 7.8 危険 オラクル - Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性 - CVE-2007-0295 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242276 1.7 注意 オラクル - Oracle Enterprise Manager における脆弱性 - CVE-2007-0294 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242277 6.4 警告 オラクル - Oracle Enterprise Manager における脆弱性 CWE-noinfo
情報不足 		CVE-2007-0293 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242278 7.5 危険 オラクル - Oracle Enterprise Manager における脆弱性 CWE-noinfo
情報不足 		CVE-2007-0292 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242279 4 警告 オラクル - Oracle E-Business Suite and Applications における脆弱性 - CVE-2007-0291 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242280 5.5 警告 オラクル - Oracle E-Business Suite and Applications における脆弱性 - CVE-2007-0290 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286471 - qpr portal QPR Portal before 2012.2.1 allows remote attackers to modify or delete notes via a direct request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8268 2024-11-21 11:18 2015-02-1 Show GitHub Exploit DB Packet Storm
286472 - qpr portal Cross-site scripting (XSS) vulnerability in QPR Portal 2014.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the RID parameter. CWE-79
Cross-site Scripting 		CVE-2014-8267 2024-11-21 11:18 2015-02-1 Show GitHub Exploit DB Packet Storm
286473 - qpr portal Multiple cross-site scripting (XSS) vulnerabilities in the note-creation page in QPR Portal 2014.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2)… CWE-79
Cross-site Scripting 		CVE-2014-8266 2024-11-21 11:18 2015-02-1 Show GitHub Exploit DB Packet Storm
286474 - vmware player
fusion
workstation
esxi 		VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8370 2024-11-21 11:18 2015-01-30 Show GitHub Exploit DB Packet Storm
286475 - gnome
opensuse 		vala
opensuse 		The Gst.MapInfo function in Vala 0.26.0 and 0.26.1 uses an incorrect buffer length declaration for the Gstreamer bindings, which allows context-dependent attackers to cause a denial of service (crash… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-8154 2024-11-21 11:18 2015-01-28 Show GitHub Exploit DB Packet Storm
286476 - jasper_project
debian
redhat
opensuse 		jasper
debian_linux
enterprise_linux
opensuse 		Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 200… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-8158 2024-11-21 11:18 2015-01-27 Show GitHub Exploit DB Packet Storm
286477 - opensuse
debian
redhat
jasper_project 		opensuse
debian_linux
enterprise_linux
jasper 		Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2… CWE-189
Numeric Errors 		CVE-2014-8157 2024-11-21 11:18 2015-01-27 Show GitHub Exploit DB Packet Storm
286478 - opensuse
midgard-project 		opensuse
midgard2 		The default D-Bus access control rule in Midgard2 10.05.7.1 allows local users to send arbitrary method calls or signals to any process on the system bus and possibly execute arbitrary code with root… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8148 2024-11-21 11:18 2015-01-27 Show GitHub Exploit DB Packet Storm
286479 - google chrome The AppCacheUpdateJob::URLFetcher::OnResponseStarted function in content/browser/appcache/appcache_update_job.cc in Google Chrome before 40.0.2214.91 proceeds with AppCache caching for SSL sessions e… CWE-310
Cryptographic Issues 		CVE-2014-7948 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
286480 - google chrome OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-7947 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm