Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189431 7.8 重要
Local 		Google - Android におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-14896 2017-12-27 09:55 2017-12-4 Show GitHub Exploit DB Packet Storm
189432 8.8 重要
Network 		日立ヴァンタラ - Hitachi Vantara Pentaho BA プラットフォームにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-10701 2017-12-26 17:50 2016-04-5 Show GitHub Exploit DB Packet Storm
189433 5.5 警告
Local 		KMPlayer's Forums - KMPlayer における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-16952 2017-12-26 17:43 2017-11-22 Show GitHub Exploit DB Packet Storm
189434 5.5 警告
Local 		Radionomy Group - Winamp Pro における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-16951 2017-12-26 17:43 2017-11-22 Show GitHub Exploit DB Packet Storm
189435 6.5 警告
Network 		TP-LINK Technologies - 複数の TP-Link デバイスにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-16959 2017-12-26 17:22 2017-11-28 Show GitHub Exploit DB Packet Storm
189436 8.8 重要
Network 		TP-LINK Technologies - 複数の TP-Link デバイスにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2017-16958 2017-12-26 17:22 2017-11-28 Show GitHub Exploit DB Packet Storm
189437 8.8 重要
Network 		TP-LINK Technologies - 複数の TP-Link デバイスにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2017-16957 2017-12-26 17:22 2017-11-28 Show GitHub Exploit DB Packet Storm
189438 7.5 重要
Network 		X.Org Foundation
Debian
Canonical		 - libXcursor における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-16612 2017-12-26 17:16 2017-11-25 Show GitHub Exploit DB Packet Storm
189439 7.5 重要
Network 		Fiyo CMS - Fiyo CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17102 2017-12-26 17:09 2017-12-3 Show GitHub Exploit DB Packet Storm
189440 8.8 重要
Network 		Squiz - Squiz Matrix におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-14198 2017-12-26 16:44 2017-09-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355141 - 3com 3cp4144 3Com OfficeConnect Remote 812 ADSL Router, firmware 1.1.9 and 1.1.7, allows remote attackers to bypass port access restrictions by connecting to an approved port and quickly connecting to the desired… NVD-CWE-Other
CVE-2002-0888 2012-05-12 10:16 2002-10-4 Show GitHub Exploit DB Packet Storm
355142 - apple iphone_os Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a MARQUEE element. CWE-20
 Improper Input Validation  		CVE-2010-1181 2012-03-30 13:00 2010-03-30 Show GitHub Exploit DB Packet Storm
355143 - emc networker EMC NetWorker (formerly Legato NetWorker) before 7.0 stores log files in the /nsr/logs/ directory with world-readable permissions, which allows local users to read sensitive information and possibly … NVD-CWE-Other
CVE-2002-0113 2012-03-30 10:14 2002-03-25 Show GitHub Exploit DB Packet Storm
355144 - emc networker EMC NetWorker (formerly Legato NetWorker) before 7.0 stores passwords in plaintext in the daemon.log file, which allows local users to gain privileges by reading the password from the file. NOTE: th… NVD-CWE-Other
CVE-2002-0114 2012-03-30 10:14 2002-03-25 Show GitHub Exploit DB Packet Storm
355145 - linux linux_kernel The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a de… CWE-399
 Resource Management Errors 		CVE-2007-6733 2012-03-19 13:00 2010-03-17 Show GitHub Exploit DB Packet Storm
355146 - cacti cacti SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rra_id parameter in a GET request in conjunction with a va… CWE-89
SQL Injection 		CVE-2010-2092 2012-02-16 13:04 2010-05-28 Show GitHub Exploit DB Packet Storm
355147 - cacti cacti SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter. CWE-89
SQL Injection 		CVE-2010-1431 2012-02-16 13:02 2010-05-5 Show GitHub Exploit DB Packet Storm
355148 - hp power_manager Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-3999 2012-02-14 12:49 2010-01-21 Show GitHub Exploit DB Packet Storm
355149 - cafuego simple_document_management_system Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list… CWE-89
SQL Injection 		CVE-2005-3877 2012-02-7 14:00 2005-11-29 Show GitHub Exploit DB Packet Storm
355150 - plume-cms plume_cms Multiple PHP remote file inclusion vulnerabilities in Plume CMS 1.0.6 and earlier allow remote attackers to execute arbitrary PHP code via the _PX_config[manager_path] parameter to (1) articles.php, … CWE-94
Code Injection 		CVE-2006-4533 2011-11-10 14:00 2006-09-2 Show GitHub Exploit DB Packet Storm