Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
256731 2.1 注意 IBM - IBM WebSphere Application Server の Default Messaging コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-5066 2012-01-17 16:42 2011-04-11 Show GitHub Exploit DB Packet Storm
256732 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5065 2012-01-17 16:41 2011-10-11 Show GitHub Exploit DB Packet Storm
256733 7.5 危険 WHMCS Limited - WHMCompleteSolution の functions.php における任意のコード実行を誘発される脆弱性 CWE-94
コード・インジェクション
CVE-2011-5061 2012-01-17 16:40 2012-01-11 Show GitHub Exploit DB Packet Storm
256734 7.1 危険 ISC, Inc. - ISC DHCP の dhcpd のロギング機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-4868 2012-01-17 16:39 2012-01-12 Show GitHub Exploit DB Packet Storm
256735 2.1 注意 Roderich Schupp - Perl 用 PAR モジュールの par_mktmpdir 関数におけるファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-5060 2012-01-17 16:33 2012-01-13 Show GitHub Exploit DB Packet Storm
256736 3.3 注意 Roderich Schupp - Perl 用 PAR::Packer モジュールの par_mktmpdir 関数におけるファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4114 2012-01-17 16:32 2012-01-13 Show GitHub Exploit DB Packet Storm
256737 4.4 警告 Super - Super の super.c のエラー関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-2776 2012-01-17 16:31 2012-01-8 Show GitHub Exploit DB Packet Storm
256738 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1362 2012-01-17 16:29 2012-01-15 Show GitHub Exploit DB Packet Storm
256739 9.3 危険 NTRglobal - NTR ActiveX コントロールの StopModule メソッドにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2012-0267 2012-01-17 16:07 2012-01-15 Show GitHub Exploit DB Packet Storm
256740 9.3 危険 NTRglobal - NTR ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-0266 2012-01-17 16:04 2012-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 2, 2026, 4:03 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289331 - samsung findmymobile
mobile
The Remote Controls feature on Samsung mobile devices does not validate the source of lock-code data received over a network, which makes it easier for remote attackers to cause a denial of service (… CWE-94
Code Injection
CVE-2014-8346 2024-11-21 11:18 2014-10-24 Show GitHub Exploit DB Packet Storm
289332 - openmrs openmrs Cross-site request forgery (CSRF) vulnerability in OpenMRS 2.1 Standalone Edition allows remote attackers to hijack the authentication of administrators for requests that add a new user via a Save Us… CWE-352
 Origin Validation Error
CVE-2014-8073 2024-11-21 11:18 2014-10-23 Show GitHub Exploit DB Packet Storm
289333 - openmrs openmrs The administration module in OpenMRS 2.1 Standalone Edition allows remote authenticated users to obtain read access via a direct request to /admin. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-8072 2024-11-21 11:18 2014-10-23 Show GitHub Exploit DB Packet Storm
289334 - openmrs openmrs Multiple cross-site scripting (XSS) vulnerabilities in OpenMRS 2.1 Standalone Edition allow remote attackers to inject arbitrary web script or HTML via the (1) givenName, (2) familyName, (3) address1… CWE-79
Cross-site Scripting
CVE-2014-8071 2024-11-21 11:18 2014-10-23 Show GitHub Exploit DB Packet Storm
289335 - megapolis megapolis.portal_manager Multiple cross-site scripting (XSS) vulnerabilities in Megapolis.Portal Manager allow remote attackers to inject arbitrary web script or HTML via the (1) dateFrom or (2) dateTo parameter. CWE-79
Cross-site Scripting
CVE-2014-8381 2024-11-21 11:18 2014-10-22 Show GitHub Exploit DB Packet Storm
289336 - calender_base_project calender_base The Calendar Base (cal) extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service (resource consumption) via vectors related to the PHP PCRE library. CWE-399
 Resource Management Errors
CVE-2014-8325 2024-11-21 11:18 2014-10-22 Show GitHub Exploit DB Packet Storm
289337 - zend zend_framework The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a password starting with… CWE-287
Improper Authentication
CVE-2014-8088 2024-11-21 11:18 2014-10-22 Show GitHub Exploit DB Packet Storm
289338 - redhat virtual_desktop_service_manager VDSM allows remote attackers to cause a denial of service (connection blocking) by keeping an SSL connection open. CWE-310
Cryptographic Issues
CVE-2014-7968 2024-11-21 11:18 2014-10-22 Show GitHub Exploit DB Packet Storm
289339 - splunk splunk Cross-site scripting (XSS) vulnerability in Splunk 6.1.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer Header in a "404 Not Found" response. NOTE: this vulnerab… CWE-79
Cross-site Scripting
CVE-2014-8380 2024-11-21 11:18 2014-10-22 Show GitHub Exploit DB Packet Storm
289340 - marketo_ma_project marketo_ma Multiple cross-site scripting (XSS) vulnerabilities in the Marketo MA module before 7.x-1.5 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting
CVE-2014-8379 2024-11-21 11:18 2014-10-22 Show GitHub Exploit DB Packet Storm