Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252931 4.3 警告 My Kazaam - My Kazaam Notes Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4985 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
252932 7.5 危険 Cafuego - Simple Document Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4986 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
252933 7.5 危険 KMSoft - KMSoft Guestbook の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4987 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
252934 7.5 危険 FamilyCMS - Family Connections Who is Chatting における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4988 2011-12-9 14:33 2011-11-1 Show GitHub Exploit DB Packet Storm
252935 7.5 危険 Farsi CMS - Ziggurat Farsi CMS の main.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4989 2011-12-9 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
252936 7.5 危険 B-Elektro - Joomla! 用 Front-edit Address Book コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4990 2011-12-9 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
252937 7.5 危険 Ninja Forge - Joomla! 用 NinjaMonials コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4991 2011-12-9 14:27 2011-11-1 Show GitHub Exploit DB Packet Storm
252938 7.5 危険 Payments Plus - Joomla! 用 Payments Plus コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4992 2011-12-9 14:26 2011-11-1 Show GitHub Exploit DB Packet Storm
252939 7.5 危険 Kay Messerschmidt - Joomla! 用 eventcal コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4993 2011-12-9 14:26 2011-11-1 Show GitHub Exploit DB Packet Storm
252940 7.5 危険 Instant Php - Joomla! 用 Jobs Pro コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4994 2011-12-9 14:25 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259461 5.4 MEDIUM
Network 		telaxius epesi In EPESI 1.8.2 rev20170830, there is Stored XSS in the Phonecalls Subject parameter. CWE-79
Cross-site Scripting 		CVE-2017-14714 2024-11-21 12:13 2017-09-23 Show GitHub Exploit DB Packet Storm
259462 5.4 MEDIUM
Network 		telaxius epesi In EPESI 1.8.2 rev20170830, there is Stored XSS in the Phonecalls Description parameter. CWE-79
Cross-site Scripting 		CVE-2017-14713 2024-11-21 12:13 2017-09-23 Show GitHub Exploit DB Packet Storm
259463 5.4 MEDIUM
Network 		telaxius epesi In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Phonecall Notes Title parameter. CWE-79
Cross-site Scripting 		CVE-2017-14712 2024-11-21 12:13 2017-09-23 Show GitHub Exploit DB Packet Storm
259464 7.8 HIGH
Local 		foxitsoftware foxit_reader Foxit Reader 8.3.2.25013 and earlier and Foxit PhantomPDF 8.3.2.25013 and earlier, when running in single instance mode, allows attackers to execute arbitrary code or cause a denial of service via a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14694 2024-11-21 12:13 2017-09-23 Show GitHub Exploit DB Packet Storm
259465 9.8 CRITICAL
Network 		denyall web_application_firewall
i-suite 		DenyAll WAF before 6.4.1 allows unauthenticated remote attackers to obtain authentication information by making a typeOf=debug request to /webservices/download/index.php, and then reading the iToken … CWE-287
Improper Authentication 		CVE-2017-14706 2024-11-21 12:13 2017-09-23 Show GitHub Exploit DB Packet Storm
259466 8.1 HIGH
Network 		denyall web_application_firewall
i-suite 		DenyAll WAF before 6.4.1 allows unauthenticated remote command execution via TCP port 3001 because shell metacharacters can be inserted into the type parameter to the tailDateFile function in /webser… CWE-78
OS Command  		CVE-2017-14705 2024-11-21 12:13 2017-09-23 Show GitHub Exploit DB Packet Storm
259467 7.8 HIGH
Local 		irfanview irfanview IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to "Data from Faulting Address controls Branch Selecti… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14693 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
259468 7.8 HIGH
Local 		stdutility stdu_viewer STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at STDUJBIG2File!DllGetClassObject+0x000… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14692 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
259469 7.8 HIGH
Local 		stdutility stdu_viewer STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to "Data from Faulting Address controls Branch Selection s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14691 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
259470 7.8 HIGH
Local 		stdutility stdu_viewer STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent Write Address starting … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14690 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm