Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252041	7.5	危険	The PHP Group	-	PHP の iconv_mime_decode_headers 関数におけるスパムの検出を回避される脆弱性	CWE-189 数値処理の問題	CVE-2010-4699	2011-02-18 14:40	2010-09-28	Show	GitHub Exploit DB Packet Storm

252042	5	警告	The PHP Group	-	PHP の GD 拡張モジュールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4698	2011-02-18 14:38	2010-12-7	Show	GitHub Exploit DB Packet Storm

252043	6.8	警告	The PHP Group	-	PHP の Zend Engine におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4697	2011-02-18 14:35	2010-09-18	Show	GitHub Exploit DB Packet Storm

252044	1	注意	サン・マイクロシステムズ	-	Oracle Sun Java System Portal Server のプロキシにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4431	2011-02-18 14:30	2011-01-18	Show	GitHub Exploit DB Packet Storm

252045	3.6	注意	オラクル	-	Oracle Solaris 9 の XScreenSaver における脆弱性	CWE-noinfo 情報不足	CVE-2010-3586	2011-02-18 14:28	2011-01-18	Show	GitHub Exploit DB Packet Storm

252046	3.6	注意	オラクル	-	Oracle Solaris 10 の Fault Manager Daemon における脆弱性	CWE-noinfo 情報不足	CVE-2010-4460	2011-02-18 14:11	2011-01-18	Show	GitHub Exploit DB Packet Storm

252047	4.1	警告	オラクル	-	Oracle Solaris 11 Express の ZFS における脆弱性	CWE-noinfo 情報不足	CVE-2010-4458	2011-02-18 14:08	2011-01-18	Show	GitHub Exploit DB Packet Storm

252048	4.1	警告	オラクル	-	Oracle Solaris の libc における脆弱性	CWE-noinfo 情報不足	CVE-2010-4415	2011-02-18 14:06	2011-01-18	Show	GitHub Exploit DB Packet Storm

252049	4.3	警告	サン・マイクロシステムズ	-	Oracle Sun Java System Communications Express の Web メールにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4456	2011-02-18 14:03	2011-01-18	Show	GitHub Exploit DB Packet Storm

252050	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Communications Express におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1227	2011-02-18 14:00	2010-04-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278361	-	zohocorp	manageengine_opmanager	Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11.4, 11.3, and earlier allows remote attackers to write and execute arbitrary files via a .. (dot dot) i…	CWE-22 Path Traversal	CVE-2014-6035	2024-11-21 11:13	2014-12-5	Show	GitHub Exploit DB Packet Storm

278362	-	zohocorp	manageengine_social_it_plus manageengine_it360 manageengine_opmanager	Directory traversal vulnerability in the com.me.opmanager.extranet.remote.communication.fw.fe.FileCollector servlet in ZOHO ManageEngine OpManager 8.8 through 11.3, Social IT Plus 11.0, and IT360 10.…	CWE-22 Path Traversal	CVE-2014-6034	2024-11-21 11:13	2014-12-5	Show	GitHub Exploit DB Packet Storm

278363	-	ibm	qradar_risk_manager qradar_vulnerability_manager qradar_security_information_and_event_manager	IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, place credentials in URLs, which allow…	CWE-200 Information Exposure	CVE-2014-6075	2024-11-21 11:13	2014-11-28	Show	GitHub Exploit DB Packet Storm

278364	-	ibm	web_experience_factory	Cross-site scripting (XSS) vulnerability in IBM Web Experience Factory (WEF) 6.1.5 through 8.5.0.1, as used in WebSphere Dashboard Framework (WDF) and Lotus Widget Factory (LWF), allows remote attack…	CWE-79 Cross-site Scripting	CVE-2014-6196	2024-11-21 11:13	2014-11-26	Show	GitHub Exploit DB Packet Storm

278365	-	ibm	websphere_portal	Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.0.x before 7.0.0.2 CF29, 8.0.x through 8.0.0.1 CF14, and 8.5.x before 8.5.0 CF02 allows remote authenticated users to inject arbitra…	CWE-79 Cross-site Scripting	CVE-2014-6093	2024-11-21 11:13	2014-11-26	Show	GitHub Exploit DB Packet Storm

278366	-	ibm	security_network_protection_firmware security_network_protection_xgs_5000 security_network_protection_xgs_5100	IBM Security Network Protection 5.1 before 5.1.0.0 FP13, 5.1.1 before 5.1.1.0 FP8, 5.1.2 before 5.1.2.0 FP9, 5.1.2.1 before FP5, 5.2 before 5.2.0.0 FP5, and 5.3 before 5.3.0.0 FP1 on XGS devices allo…	CWE-399 Resource Management Errors	CVE-2014-6183	2024-11-21 11:13	2014-11-23	Show	GitHub Exploit DB Packet Storm

278367	-	ibm	security_identity_manager	IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions, which allows remote attackers to access sessions by leveraging an unattended workstation.	CWE-284 Improper Access Control	CVE-2014-6110	2024-11-21 11:13	2014-11-18	Show	GitHub Exploit DB Packet Storm

278368	-	ibm	security_identity_manager	IBM Security Identity Manager 6.x before 6.0.0.3 IF14 allows remote attackers to obtain sensitive cookie information by sniffing the network during an HTTP session.	CWE-200 Information Exposure	CVE-2014-6107	2024-11-21 11:13	2014-11-18	Show	GitHub Exploit DB Packet Storm

278369	-	ibm	security_identity_manager	IBM Security Identity Manager 6.x before 6.0.0.3 IF14 allows remote attackers to conduct clickjacking attacks via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2014-6105	2024-11-21 11:13	2014-11-18	Show	GitHub Exploit DB Packet Storm

278370	-	ibm	security_identity_manager	IBM Security Identity Manager 6.x before 6.0.0.3 IF14 allows remote attackers to discover cleartext passwords via a crafted request.	CWE-255 Credentials Management	CVE-2014-6098	2024-11-21 11:13	2014-11-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed