Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
242611 4.3 警告 neuron news - neuron news におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6541 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242612 7.5 危険 neuron - neuron news における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6540 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242613 6.8 警告 idevSpot - IDevspot iSupport の index.php における PHP ローカルファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-6539 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242614 7.5 危険 MRBS - Moodle 用の MRBS プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6538 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242615 6.8 警告 マイクロソフト - Microsoft Office Publisher におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2007-6534 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242616 7.5 危険 Inmatrix - Zoom Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6533 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242617 10 危険 IBM - IBM DB2 CM Toolkit の eClient における脆弱性 CWE-noinfo
情報不足
CVE-2007-6525 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242618 7.8 危険 Opera Software ASA - Opera における重要なメモリコンテンツを取得される脆弱性 CWE-200
情報漏えい
CVE-2007-6524 2012-09-25 16:59 2007-12-24 Show GitHub Exploit DB Packet Storm
242619 7.8 危険 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
CWE-399
CVE-2007-6523 2012-09-25 16:59 2007-12-24 Show GitHub Exploit DB Packet Storm
242620 4.3 警告 Opera Software ASA - Opera のリッチテキストフォーマットの編集機能におけるクロスドメインスクリプティング攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6522 2012-09-25 16:59 2007-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285781 - ibm websphere_mq_light IBM MQ Light before 1.0.0.2 allows remote attackers to cause a denial of service (disk consumption) via a crafted byte sequence in authentication data, a different vulnerability than CVE-2015-1958 an… CWE-399
 Resource Management Errors
CVE-2015-1956 2024-11-21 11:26 2015-08-4 Show GitHub Exploit DB Packet Storm
285782 - ibm websphere_mq_light IBM MQ Light before 1.0.0.2 allows remote attackers to cause a denial of service (CPU consumption) via a crafted byte sequence in authentication data. CWE-399
 Resource Management Errors
CVE-2015-1955 2024-11-21 11:26 2015-08-4 Show GitHub Exploit DB Packet Storm
285783 - ibm business_process_manager IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 through 8.5.6.0, when external Enterprise Content Management (ECM) integration is ena… CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-1904 2024-11-21 11:26 2015-08-1 Show GitHub Exploit DB Packet Storm
285784 - canonical
ffmpeg
ubuntu_linux
ffmpeg
The ff_mjpeg_decode_sof function in libavcodec/mjpegdec.c in FFmpeg before 2.5.4 does not validate the number of components in a JPEG-LS Start Of Frame segment, which allows remote attackers to cause… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-1872 2024-11-21 11:26 2015-07-27 Show GitHub Exploit DB Packet Storm
285785 - fedoraproject
rubyonrails
opensuse
fedora
jquery-rails
jquery-ujs
opensuse
jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Polic… CWE-200
Information Exposure
CVE-2015-1840 2024-11-21 11:26 2015-07-27 Show GitHub Exploit DB Packet Storm
285786 - hp system_management_homepage Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown v… CWE-352
 Origin Validation Error
CVE-2015-2134 2024-11-21 11:26 2015-07-22 Show GitHub Exploit DB Packet Storm
285787 - ibm business_process_manager Cross-site scripting (XSS) vulnerability in the REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 th… CWE-79
Cross-site Scripting
CVE-2015-1906 2024-11-21 11:26 2015-07-22 Show GitHub Exploit DB Packet Storm
285788 - ibm business_process_manager The REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 through 8.5.6.0 allows remote authenticated us… CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-1905 2024-11-21 11:26 2015-07-22 Show GitHub Exploit DB Packet Storm
285789 - ibm infosphere_master_data_management IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to bypass intended access restrictions and read arbitrary pro… CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure
CVE-2015-1984 2024-11-21 11:26 2015-07-20 Show GitHub Exploit DB Packet Storm
285790 - ibm infosphere_master_data_management IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to obtain sensitive information via a crafted request, which … CWE-200
Information Exposure
CVE-2015-1982 2024-11-21 11:26 2015-07-20 Show GitHub Exploit DB Packet Storm