Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250621	5	警告	OTRS プロジェクト	-	OTRS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4767	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250622	4.3	警告	OTRS プロジェクト	-	OTRS の AgentTicketForward 機能における重要な画像情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4766	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250623	4.9	警告	OTRS プロジェクト	-	OTRS の Kernel::System::Main::FileWrite メソッドにおける icketCounter.log のデータを破損される脆弱性	CWE-362 競合状態	CVE-2010-4765	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250624	5	警告	OTRS プロジェクト	-	OTRS における電子メール通信をなりすまされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-4764	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250625	6.5	警告	OTRS プロジェクト	-	OTRS の ACL 顧客ステータスチケットタイプ設定における ACL 制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4763	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250626	3.5	注意	OTRS プロジェクト	-	OTRS のリッチテキストエディタコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4762	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250627	4	警告	OTRS プロジェクト	-	OTRS の顧客インターフェースチケット印刷ダイアログにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4761	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250628	3.5	注意	OTRS プロジェクト	-	OTRS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4760	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250629	4	警告	OTRS プロジェクト	-	OTRS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4759	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250630	1.9	注意	OTRS プロジェクト	-	OTRS の installer.pl におけるパスワード取得される脆弱性	CWE-310 暗号の問題	CVE-2010-4758	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285771	-	oracle	oracle_and_sun_systems_product_suite	Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.1 allows remote authenticated users to affect confidentiality, integrity, and availability vi…	NVD-CWE-noinfo	CVE-2014-4259	2024-11-21 11:09	2015-01-21	Show	GitHub Exploit DB Packet Storm

285772	-	mongodb	mongodb	The CmdAuthenticate::_authenticateX509 function in db/commands/authentication_commands.cpp in mongod in MongoDB 2.6.x before 2.6.2 allows remote attackers to cause a denial of service (daemon crash) …	CWE-20 Improper Input Validation	CVE-2014-3971	2024-11-21 11:09	2014-12-25	Show	GitHub Exploit DB Packet Storm

285773	-	linux	linux_kernel	drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain…	CWE-787 Out-of-bounds Write	CVE-2014-4322	2024-11-21 11:09	2014-12-25	Show	GitHub Exploit DB Packet Storm

285774	-	linux	linux_kernel	The mdp_lut_hw_update function in drivers/video/msm/mdp.c in the MDP display driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and ot…	CWE-20 Improper Input Validation	CVE-2014-4323	2024-11-21 11:09	2014-12-12	Show	GitHub Exploit DB Packet Storm

285775	-	zohocorp	manageengine_password_manager_pro manageengine_it360	SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition 5 through 7 build 7003, IT360 an…	CWE-89 SQL Injection	CVE-2014-3997	2024-11-21 11:09	2014-12-6	Show	GitHub Exploit DB Packet Storm

285776	-	manageengine	it360 password_manager_pro desktop_central	SQL injection vulnerability in the LinkViewFetchServlet servlet in ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition before 9 build 90043, Password Manager…	CWE-89 SQL Injection	CVE-2014-3996	2024-11-21 11:09	2014-12-6	Show	GitHub Exploit DB Packet Storm

285777	-	sunhater	kcfinder	Cross-site scripting (XSS) vulnerability in index.php in SunHater KCFinder 3.11 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) file or (2) directory (folder) name …	CWE-79 Cross-site Scripting	CVE-2014-3988	2024-11-21 11:09	2014-12-3	Show	GitHub Exploit DB Packet Storm

285778	-	rubyonrails	rails	The str_buf_cat function in string.c in Ruby 1.9.3, 2.0.0, and 2.1 allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string.	CWE-19 Data Processing Errors	CVE-2014-3916	2024-11-21 11:09	2014-11-17	Show	GitHub Exploit DB Packet Storm

285779	-	microsoft	.net_framework	Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 does not properly perform TypeFilterLevel checks, which allows remote attackers to execute arbitrary code via crafted d…	CWE-20 Improper Input Validation	CVE-2014-4149	2024-11-21 11:09	2014-11-12	Show	GitHub Exploit DB Packet Storm

285780	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…	CWE-399 Resource Management Errors	CVE-2014-4143	2024-11-21 11:09	2014-11-12	Show	GitHub Exploit DB Packet Storm