Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250471 5 警告 シスコシステムズ - Cisco IOS CME におけるSession Initiation Protocol (SIP) ユーザディレクトリから重要な情報を取得される脆弱性 - CVE-2006-4032 2012-06-26 15:37 2006-08-9 Show GitHub Exploit DB Packet Storm
250472 4.3 警告 3com - 3Com OfficeConnect Secure Router の cgi-bin/admin におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3974 2012-06-26 15:37 2007-06-11 Show GitHub Exploit DB Packet Storm
250473 5 警告 Bharat Mediratta - Gallery の stats モジュールにおける重要な情報を取得される脆弱性 - CVE-2006-4030 2012-06-26 15:37 2006-08-9 Show GitHub Exploit DB Packet Storm
250474 7.5 危険 ageet - AGEphone の sipd.dll におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-4029 2012-06-26 15:37 2006-08-9 Show GitHub Exploit DB Packet Storm
250475 7.5 危険 festalon - Festalon の FESTAHES_Load 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4024 2012-06-26 15:37 2006-08-8 Show GitHub Exploit DB Packet Storm
250476 7.5 危険 ClamAV - ClamAV の pefromupx 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-4018 2012-06-26 15:37 2006-08-8 Show GitHub Exploit DB Packet Storm
250477 5 警告 bomberclone - BomberClone の do_gameinfo などの関数におけるサーバメモリの一部を読み取られる脆弱性 CWE-200
情報漏えい 		CVE-2006-4006 2012-06-26 15:37 2006-08-7 Show GitHub Exploit DB Packet Storm
250478 5 警告 bomberclone - BomberClone におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4005 2012-06-26 15:37 2006-08-7 Show GitHub Exploit DB Packet Storm
250479 7.5 危険 バラクーダネットワークス - BSF の Login.pm における管理者パスワード等の重要な情報を取得される脆弱性 - CVE-2006-4001 2012-06-26 15:37 2006-08-4 Show GitHub Exploit DB Packet Storm
250480 4 警告 バラクーダネットワークス - BSF の cgi-bin/preview_email.cgi におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4000 2012-06-26 15:37 2006-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285631 - dukapress dukapress Directory traversal vulnerability in the dp_img_resize function in php/dp-functions.php in the DukaPress plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (do… CWE-22
Path Traversal 		CVE-2014-8799 2024-11-21 11:19 2014-11-29 Show GitHub Exploit DB Packet Storm
285632 - xavoc xepan_cms Cross-site request forgery (CSRF) vulnerability in Xavoc Technocrats xEpan CMS 1.0.4.1, 1.0.4, 1.0.1, and earlier allows remote attackers to hijack the authentication of administrators for requests t… CWE-352
 Origin Validation Error 		CVE-2014-8429 2024-11-21 11:19 2014-11-29 Show GitHub Exploit DB Packet Storm
285633 - arris vap2500_firmware The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain credentials by reading the configuration files. CWE-200
Information Exposure 		CVE-2014-8425 2024-11-21 11:19 2014-11-29 Show GitHub Exploit DB Packet Storm
285634 - arris vap2500_firmware ARRIS VAP2500 before FW08.41 does not properly validate passwords, which allows remote attackers to bypass authentication. CWE-287
Improper Authentication 		CVE-2014-8424 2024-11-21 11:19 2014-11-29 Show GitHub Exploit DB Packet Storm
285635 - arris vap2500_firmware Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors. CWE-74
Injection 		CVE-2014-8423 2024-11-21 11:19 2014-11-29 Show GitHub Exploit DB Packet Storm
285636 - wibu codemeter_runtime Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions (read and write access for all users) for codemeter.exe, which allows local users to gain privileges via a Trojan horse file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8419 2024-11-21 11:19 2014-11-27 Show GitHub Exploit DB Packet Storm
285637 - siemens simatic_tiaportal
simatic_wincc
simatic_pcs7
simatic_pcs_7 		The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 all… CWE-200
Information Exposure 		CVE-2014-8552 2024-11-21 11:19 2014-11-26 Show GitHub Exploit DB Packet Storm
285638 - siemens simatic_tiaportal
simatic_wincc
simatic_pcs7
simatic_pcs_7 		The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 all… CWE-94
Code Injection 		CVE-2014-8551 2024-11-21 11:19 2014-11-26 Show GitHub Exploit DB Packet Storm
285639 - manageengine oputils The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile." CWE-200
Information Exposure 		CVE-2014-8678 2024-11-21 11:19 2014-11-26 Show GitHub Exploit DB Packet Storm
285640 - jexperts channel_platform JExperts Channel Platform 5.0.33_CCB allows remote authenticated users to bypass access restrictions via crafted action and key parameters. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8558 2024-11-21 11:19 2014-11-26 Show GitHub Exploit DB Packet Storm