Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250501 4.3 警告 AfterLogic - 複数の MailBee WebMail 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5290 2012-06-26 15:54 2007-10-9 Show GitHub Exploit DB Packet Storm
250502 4.3 警告 appfuse - AppFuse の messages.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5280 2012-06-26 15:54 2007-09-12 Show GitHub Exploit DB Packet Storm
250503 7.5 危険 furkan tastan blog - Furkan Tastan Blog の kategori.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5272 2012-06-26 15:54 2007-10-8 Show GitHub Exploit DB Packet Storm
250504 7.5 危険 bendiken - Drupal の Boost モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-noinfo
情報不足
CVE-2007-5270 2012-06-26 15:54 2007-10-3 Show GitHub Exploit DB Packet Storm
250505 7.5 危険 dawnoftime - Dawn of Time の websrv.cpp におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題
CVE-2007-5265 2012-06-26 15:54 2007-10-1 Show GitHub Exploit DB Packet Storm
250506 5 警告 battlefront - Battlefront Dropteam におけるアカウント情報を盗まれる脆弱性 CWE-200
情報漏えい
CVE-2007-5264 2012-06-26 15:54 2007-10-8 Show GitHub Exploit DB Packet Storm
250507 7.5 危険 battlefront - Battlefront Dropteam におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-5263 2012-06-26 15:54 2007-10-8 Show GitHub Exploit DB Packet Storm
250508 7.5 危険 ActivePDF, Inc. - activePDF Server の activePDF Server サービスにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-5397 2012-06-26 15:54 2008-02-28 Show GitHub Exploit DB Packet Storm
250509 6.8 警告 cplinks - cpDynaLinks の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5408 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
250510 10 危険 AbiWord
link grammar
- AbiWord Link Grammar で使用される Link Grammar の separate_word 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-5395 2012-06-26 15:54 2007-11-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285241 - microsoft exchange_server Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative Update 8 and 9 allows remote attackers to inject arbitrary web script or HTML via a c… CWE-79
Cross-site Scripting
CVE-2015-2543 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285242 - microsoft internet_explorer
edge
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corrupti… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-2542 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285243 - microsoft internet_explorer Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerabilit… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-2541 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285244 - microsoft lync_server
skype_for_business_server
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype … CWE-79
Cross-site Scripting
CVE-2015-2536 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285245 - microsoft windows_server_2008
windows_server_2012
Active Directory in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allows remote authenticated users to cause a denial of service (service outage) by creating multiple machi… CWE-17
Code
CVE-2015-2535 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285246 - microsoft windows_10
windows_server_2012
windows_8.1
Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 improperly processes ACL settings, which allows local users to bypass intended network-traffic restrictions via a crafted appl… CWE-284
Improper Access Control
CVE-2015-2534 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285247 - microsoft lync_server Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Lync Server XSS Information Disclosure Vu… CWE-79
Cross-site Scripting
CVE-2015-2532 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285248 - microsoft lync_server
skype_for_business_server
Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a cra… CWE-79
Cross-site Scripting
CVE-2015-2531 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285249 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_10
Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 all… CWE-20
 Improper Input Validation 
CVE-2015-2530 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
285250 - microsoft windows_server_2012
windows_8.1
windows_rt_8.1
windows_10
The kernel in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10 allows local users to bypass the ASLR protection mechanism via a crafted application, aka "Kernel ASLR Bypa… CWE-254
 7PK - Security Features
CVE-2015-2529 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm