Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
242751 4.3 警告 OpenAFS - OpenAFS の fileserver におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態
CVE-2007-6599 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
242752 4.3 警告 iportalx - IPortalX におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6597 2012-09-25 16:59 2007-12-31 Show GitHub Exploit DB Packet Storm
242753 4.3 警告 KDE project - KDE における偽造 Web サイトの無効な証明書をユーザが受領する脆弱性 CWE-DesignError
CVE-2007-6591 2012-09-25 16:59 2007-12-28 Show GitHub Exploit DB Packet Storm
242754 4.3 警告 Mozilla Foundation - Mozilla Firefox などの jar プロトコルハンドラにおける XSS 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6589 2012-09-25 16:59 2007-11-26 Show GitHub Exploit DB Packet Storm
242755 7.5 危険 niclor - nicLOR-CMS の sezione_news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6586 2012-09-25 16:59 2007-12-28 Show GitHub Exploit DB Packet Storm
242756 6.8 警告 nmnnewsletter - NmnNewsletter の confirmUnsubscription.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-6585 2012-09-25 16:59 2007-12-28 Show GitHub Exploit DB Packet Storm
242757 7.5 危険 ip reg - Ip Reg における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6579 2012-09-25 16:59 2007-12-28 Show GitHub Exploit DB Packet Storm
242758 4.3 警告 limbo cms - Limbo CMS の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6564 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242759 5.7 警告 pdflib - PDFLib におけるスタックベースのバッファーオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6561 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
242760 4.3 警告 logaholic - Logaholic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6560 2012-09-25 16:59 2007-12-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285681 6.1 MEDIUM
Network
emberjs ember.js Cross-site scripting (XSS) vulnerability in Ember.js 1.10.x before 1.10.1 and 1.11.x before 1.11.2. CWE-79
Cross-site Scripting
CVE-2015-1866 2024-11-21 11:26 2017-09-21 Show GitHub Exploit DB Packet Storm
285682 4.7 MEDIUM
Local
gnu coreutils fts.c in coreutils 8.4 allows local users to delete arbitrary files. CWE-362
Race Condition
CVE-2015-1865 2024-11-21 11:26 2017-09-21 Show GitHub Exploit DB Packet Storm
285683 5.9 MEDIUM
Network
redhat jboss_enterprise_application_platform AdvancedLdapLodinMogule in Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.1 allows attackers to obtain sensitive information via vectors involving logging the LDAP bind credential pas… CWE-200
Information Exposure
CVE-2015-1849 2024-11-21 11:26 2017-09-20 Show GitHub Exploit DB Packet Storm
285684 5.4 MEDIUM
Network
kallithea-scm kallithea Multiple cross-site scripting (XSS) vulnerabilities in the administration pages in Kallithea before 0.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) first name or (2) l… CWE-79
Cross-site Scripting
CVE-2015-1864 2024-11-21 11:26 2017-09-20 Show GitHub Exploit DB Packet Storm
285685 7.5 HIGH
Network
fedoraproject
debian
389_directory_server
fedora
debian_linux
389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call. CWE-284
Improper Access Control
CVE-2015-1854 2024-11-21 11:26 2017-09-20 Show GitHub Exploit DB Packet Storm
285686 6.1 MEDIUM
Network
mantisbt mantisbt Cross-site scripting (XSS) vulnerability in MantisBT 1.2.13 and later before 1.2.20. CWE-79
Cross-site Scripting
CVE-2015-2046 2024-11-21 11:26 2017-08-29 Show GitHub Exploit DB Packet Storm
285687 7.5 HIGH
Network
estrongs es_file_explorer Directory traversal vulnerability in ES File Explorer 3.2.4.1. CWE-22
Path Traversal
CVE-2015-1876 2024-11-21 11:26 2017-08-29 Show GitHub Exploit DB Packet Storm
285688 9.8 CRITICAL
Network
samsung galaxy_s4_firmware The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to cause a denial of service (memory corruption) or gain privileges. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-1801 2024-11-21 11:26 2017-08-25 Show GitHub Exploit DB Packet Storm
285689 7.5 HIGH
Network
samsung galaxy_s4_firmware The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to potentially obtain sensitive information. CWE-200
Information Exposure
CVE-2015-1800 2024-11-21 11:26 2017-08-25 Show GitHub Exploit DB Packet Storm
285690 6.8 MEDIUM
Physics
thalesesecurity nshield_connect_firmware Thales nShield Connect hardware models 500, 1500, 6000, 500+, 1500+, and 6000+ before 11.72 allows physically proximate attackers to sign arbitrary data with previously loaded signing keys, extract t… CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-1878 2024-11-21 11:26 2017-08-19 Show GitHub Exploit DB Packet Storm