Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250101 6.8 警告 aflog - aflog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-0397 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
250102 7.8 危険 BitDefender - 複数の BitDefender 製品で使用される BitDefender Update Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-0396 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
250103 7.5 危険 citadel - Citadel SMTP サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-0394 2012-06-26 15:54 2008-01-23 Show GitHub Exploit DB Packet Storm
250104 5.8 警告 gradman - GradMan の info.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-0393 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
250105 7.5 危険 alilg - aliTalk の inc/elementz.php における任意のユーザアカウントを追加される脆弱性 CWE-287
不適切な認証
CVE-2008-0391 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
250106 7.5 危険 AuraCMS - AuraCMS のstat.php における online.db.txt へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション
CVE-2008-0390 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
250107 7.8 危険 Firebird Project - Firebird SQL における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2008-0387 2012-06-26 15:54 2008-01-28 Show GitHub Exploit DB Packet Storm
250108 10 危険 digital data communications - RtspVapgDecoder.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-0380 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
250109 9.3 危険 マイクロソフト
ビジネスオブジェクツ
- Crystal Reports XI の EnterpriseControls.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2008-0379 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
250110 5 警告 8e6 Technologies - 8e6 R3000 Internet Filter におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2008-0372 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295021 7.5 HIGH
Network
hapi inert The inert directory handler in inert node module before 1.1.1 always allows files in hidden directories to be served, even when `showHidden` is false. CWE-22
Path Traversal
CVE-2014-10068 2024-11-21 11:03 2018-05-30 Show GitHub Exploit DB Packet Storm
295022 5.9 MEDIUM
Network
paypal-ipn_project paypal-ipn paypal-ipn before 3.0.0 uses the `test_ipn` parameter (which is set by the PayPal IPN simulator) to determine if it should use the production PayPal site or the sandbox. With a bit of time, an attack… CWE-287
Improper Authentication
CVE-2014-10067 2024-11-21 11:03 2018-05-30 Show GitHub Exploit DB Packet Storm
295023 7.1 HIGH
Network
ibm rational_clearquest Multiple XML external entity (XXE) vulnerabilities in (1) CQWeb / CM Server, (2) ClearQuest Native client, (3) ClearQuest Eclipse client, and (4) ClearQuest Eclipse Designer components in IBM Rationa… CWE-611
XXE
CVE-2014-0950 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295024 9.1 CRITICAL
Network
ibm rational_clearcase Multiple XML external entity (XXE) vulnerabilities in the (1) CCRC WAN Server / CM Server, (2) Perl CC/CQ integration trigger scripts, (3) CMAPI Java interface, (4) ClearCase remote client, and (5) C… CWE-611
XXE
CVE-2014-0931 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295025 8.1 HIGH
Network
ibm sterling_b2b_integrator
sterling_file_gateway
The ActiveMQ admin user interface in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to bypass authentication by leveraging knowledge of the port… CWE-287
Improper Authentication
CVE-2014-0927 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295026 5.3 MEDIUM
Network
ibm sterling_b2b_integrator
sterling_file_gateway
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote attackers to obtain sensitive product information via vectors related to an error page. IBM X-Force ID: 9207… CWE-200
Information Exposure
CVE-2014-0912 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295027 8.8 HIGH
Network
google android The Device Administrator code in Android before 4.4.1_r1 might allow attackers to spoof device administrators and consequently bypass MDM restrictions by leveraging failure to update the mAdminMap da… CWE-20
 Improper Input Validation 
CVE-2014-0900 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295028 7.5 HIGH
Network
wpitchoune
debian
psensor
debian_linux
The create_response function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory. CWE-22
Path Traversal
CVE-2014-10073 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
295029 7.5 HIGH
Network
qualcomm mdm9625_firmware
sd_800_firmware
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625 and SD 800, a fuse is not correctly blown on a secure device. CWE-254
 7PK - Security Features
CVE-2014-10063 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm
295030 9.8 CRITICAL
Network
qualcomm mdm9615_firmware
mdm9625_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_400_firmware
sd_800_firmware
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, SD 210/SD 212/SD 205, SD 400, and SD 800, improper access control on ATCMD service allows … CWE-284
Improper Access Control
CVE-2014-10059 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm