Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252711	4.3	警告	Google	-	Google Chrome の net/base/escape.cc における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-6995	2010-10-19 14:53	2009-08-19	Show	GitHub Exploit DB Packet Storm

252712	9.3	危険	Google	-	Google Chrome の SaveAs 機能におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6994	2010-10-19 14:52	2009-08-19	Show	GitHub Exploit DB Packet Storm

252713	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-2578	2010-10-19 14:51	2009-07-22	Show	GitHub Exploit DB Packet Storm

252714	9.3	危険	Google	-	Google Chrome における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2556	2010-10-19 14:51	2009-07-16	Show	GitHub Exploit DB Packet Storm

252715	9.3	危険	Google	-	Google Chrome の src/jsregexp.cc におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2555	2010-10-19 14:50	2009-07-16	Show	GitHub Exploit DB Packet Storm

252716	4.3	警告	Google	-	Google Chrome における javascript: URI をブロックしない脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2352	2010-10-19 14:50	2009-02-3	Show	GitHub Exploit DB Packet Storm

252717	9.3	危険	Google	-	Google Chrome の browser kernel におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2121	2010-10-19 14:50	2009-06-22	Show	GitHub Exploit DB Packet Storm

252718	6.8	警告	Google	-	Google Chrome における任意の https サイトになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2009-2071	2010-10-19 14:49	2009-03-23	Show	GitHub Exploit DB Packet Storm

252719	6.4	警告	The PHP Group	-	PHP の zend_ini.c 内にある zend_restore_ini_entry_cb 関数における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2009-2626	2010-10-18 15:22	2009-12-1	Show	GitHub Exploit DB Packet Storm

252720	4	警告	オラクル	-	Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3544	2010-10-18 12:03	2010-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278421	-	phpmyadmin	phpmyadmin	Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.2, 4.1.x before 4.1.14.3, and 4.2.x before 4.2.7.1 allow remote authenticated users to inject arbitrary web scrip…	CWE-79 Cross-site Scripting	CVE-2014-5273	2024-11-21 11:11	2014-08-22	Show	GitHub Exploit DB Packet Storm

278422	-	shopizer	shopizer	com/salesmanager/central/profile/ProfileAction.java in Shopizer 1.1.5 and earlier does not restrict the number of authentication attempts, which makes it easier for remote attackers to guess password…	CWE-287 Improper Authentication	CVE-2014-5385	2024-11-21 11:11	2014-08-22	Show	GitHub Exploit DB Packet Storm

278423	-	freebsd netbsd	freebsd netbsd	The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-5384	2024-11-21 11:11	2014-08-22	Show	GitHub Exploit DB Packet Storm

278424	-	alienvault	open_source_security_information_management	SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2014-5383	2024-11-21 11:11	2014-08-21	Show	GitHub Exploit DB Packet Storm

278425	-	alienvault	open_source_security_information_management	The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability …	CWE-94 Code Injection	CVE-2014-5210	2024-11-21 11:11	2014-08-21	Show	GitHub Exploit DB Packet Storm

278426	-	alienvault	open_source_security_information_management	SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary SQL commands via the ws_data parameter.	CWE-89 SQL Injection	CVE-2014-5159	2024-11-21 11:11	2014-08-21	Show	GitHub Exploit DB Packet Storm

278427	-	alienvault	open_source_security_information_management	The (1) av-centerd SOAP service and (2) backup command in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary commands via unspecified vectors.	CWE-94 Code Injection	CVE-2014-5158	2024-11-21 11:11	2014-08-21	Show	GitHub Exploit DB Packet Storm

278428	-	schrack	technik_microcontrol_firmware technik_microcontrol	Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Schrack Technik microControl with firmware 1.7.0 (937) allow remote attackers to inject arbitrary web script or HTML via th…	CWE-79 Cross-site Scripting	CVE-2014-5382	2024-11-21 11:11	2014-08-20	Show	GitHub Exploit DB Packet Storm

278429	-	owncloud	owncloud	Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. (dot d…	CWE-22 Path Traversal	CVE-2014-4929	2024-11-21 11:11	2014-08-20	Show	GitHub Exploit DB Packet Storm

278430	-	bitdefender	gravityzone	Multiple directory traversal vulnerabilities in Bitdefender GravityZone before 5.1.11.432 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the id parameter to webservice/CORE/…	CWE-22 Path Traversal	CVE-2014-5350	2024-11-21 11:11	2014-08-20	Show	GitHub Exploit DB Packet Storm