Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200081 7 重要
Local 		Google
Linux		 - Android kernel の Qualcomm SPCom ドライバの Drivers/soc/qcom/spcom.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-5856 2017-05-16 18:44 2016-12-6 Show GitHub Exploit DB Packet Storm
200082 9.8 緊急
Network 		Ktools.net LLC. - Ktools.net Photostore の mgr.login.php ファイルにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-4337 2017-05-16 18:44 2016-06-2 Show GitHub Exploit DB Packet Storm
200083 7.5 重要
Network 		Fabrice Bellard - QEMU の Human Monitor インターフェースサポートにおけるサービス運用妨害 (DoS) の脆弱性 CWE-787
境界外書き込み 		CVE-2015-8619 2017-05-16 18:24 2015-12-17 Show GitHub Exploit DB Packet Storm
200084 6.5 警告
Local 		Fabrice Bellard - QEMU qemu-kvm blank の eepro100 エミュレータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8345 2017-05-16 18:24 2015-10-16 Show GitHub Exploit DB Packet Storm
200085 6.1 警告
Network 		レッドハット - Red Hat Satellite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2104 2017-05-16 18:04 2016-04-4 Show GitHub Exploit DB Packet Storm
200086 6.1 警告
Network 		openSUSE project
Roundcube.net		 - Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-8864 2017-05-16 18:02 2015-12-29 Show GitHub Exploit DB Packet Storm
200087 7.5 重要
Network 		GNU Project - GNU oSIP におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2016-10326 2017-05-16 17:57 2016-09-2 Show GitHub Exploit DB Packet Storm
200088 7.5 重要
Network 		GNU Project - GNU oSIP におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2016-10325 2017-05-16 17:57 2016-09-2 Show GitHub Exploit DB Packet Storm
200089 9.8 緊急
Network 		GNU Project - GNU oSIP におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2016-10324 2017-05-16 17:57 2016-09-2 Show GitHub Exploit DB Packet Storm
200090 9.8 緊急
Network 		ATutor - ATutor の include/lib/mysql_connect.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-2555 2017-05-16 17:56 2016-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290341 - wireshark wireshark The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshark 1.12.x before 1.12.1 allow remote attackers to cause a denial of se… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-6425 2024-11-21 11:14 2014-09-20 Show GitHub Exploit DB Packet Storm
290342 - wireshark wireshark The dissect_v9_v10_pdu_data function in epan/dissectors/packet-netflow.c in the Netflow dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 refers to incorrect offset and start vari… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-6424 2024-11-21 11:14 2014-09-20 Show GitHub Exploit DB Packet Storm
290343 - wireshark wireshark The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of servi… CWE-399
 Resource Management Errors 		CVE-2014-6423 2024-11-21 11:14 2014-09-20 Show GitHub Exploit DB Packet Storm
290344 - wireshark wireshark The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attackers to cause a denial of service (application crash) via a crafted pac… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-6422 2024-11-21 11:14 2014-09-20 Show GitHub Exploit DB Packet Storm
290345 - wireshark wireshark Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service (application crash) via a crafted packet that leverages split… NVD-CWE-Other
CVE-2014-6421 2024-11-21 11:14 2014-09-20 Show GitHub Exploit DB Packet Storm
290346 - facebook facebook
facebook_messenger 		Cross-site scripting (XSS) vulnerability in the Facebook app 14.0 and the Facebook Messenger app 10.0 for iOS allows remote attackers to inject arbitrary web script or HTML via a crafted filename ext… CWE-79
Cross-site Scripting 		CVE-2014-6392 2024-11-21 11:14 2014-09-15 Show GitHub Exploit DB Packet Storm
290347 - squid-cache
oracle 		squid
solaris 		Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service (crash) or possibly execute … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-6270 2024-11-21 11:14 2014-09-12 Show GitHub Exploit DB Packet Storm
290348 - wt_directory_project wt_directory SQL injection vulnerability in the wt_directory extension before 1.4.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2014-6241 2024-11-21 11:14 2014-09-11 Show GitHub Exploit DB Packet Storm
290349 - google_sitemap_project google_sitemap Cross-site scripting (XSS) vulnerability in the Google Sitemap (weeaar_googlesitemap) extension 0.4.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecif… CWE-79
Cross-site Scripting 		CVE-2014-6240 2024-11-21 11:14 2014-09-11 Show GitHub Exploit DB Packet Storm
290350 - address_visualization_with_google_maps_project address_visualization_with_google_maps SQL injection vulnerability in the Address visualization with Google Maps (st_address_map) extension before 0.3.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2014-6239 2024-11-21 11:14 2014-09-11 Show GitHub Exploit DB Packet Storm