Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
200291 6.1 警告
Network
Mozilla Foundation - Bugzilla の依存グラフにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-2803 2017-05-18 10:38 2016-05-16 Show GitHub Exploit DB Packet Storm
200292 8.8 重要
Network
シマンテック - Symantec Web Gateway における任意の OS コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2016-5313 2017-05-18 10:20 2016-10-5 Show GitHub Exploit DB Packet Storm
200293 7.5 重要
Network
OpenStack
Canonical
- OpenStack Nova-LXD におけるセキュリティ制限を回避される脆弱性 CWE-254
セキュリティ機能
CVE-2017-5936 2017-05-18 10:18 2017-02-9 Show GitHub Exploit DB Packet Storm
200294 6.1 警告
Network
Tilde Inc. - Ember.js におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-7565 2017-05-18 10:08 2015-09-29 Show GitHub Exploit DB Packet Storm
200295 7.5 重要
Network
Ping Identity - Apache 用 Ping Identity OpenID Connect 認証モジュールの Mod_auth_openidc.c におけるページのコンテンツを偽装される脆弱性 CWE-20
不適切な入力確認
CVE-2017-6059 2017-05-18 10:06 2017-01-26 Show GitHub Exploit DB Packet Storm
200296 7.3 重要
Network
Apache Software Foundation - Apache FOP における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2017-5661 2017-05-18 10:01 2017-04-18 Show GitHub Exploit DB Packet Storm
200297 5.3 警告
Network
pulp project - Pulp における競合状態に関する脆弱性 CWE-362
競合状態
CVE-2016-3106 2017-05-17 18:46 2016-04-8 Show GitHub Exploit DB Packet Storm
200298 7.8 重要
Local
Palo Alto Networks - Palo Alto Networks PAN-OS の Management Web Interface における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-7218 2017-05-17 18:40 2017-04-10 Show GitHub Exploit DB Packet Storm
200299 7.8 重要
Local
game-music-emu project
openSUSE project
SUSE
- game-music-emu における境界外読み取りに関する脆弱性 CWE-125
CWE-787
CVE-2016-9959 2017-05-17 18:31 2016-12-14 Show GitHub Exploit DB Packet Storm
200300 7.8 重要
Local
game-music-emu project
openSUSE project
SUSE
- game-music-emu におけるバッファエラーの脆弱性 CWE-119
バッファエラー
CVE-2016-9958 2017-05-17 18:31 2016-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290191 - foxitsoftware foxit_mobilepdf_-_pdf_reader The Foxit MobilePDF - PDF Reader (aka com.foxit.mobile.pdf.lite) application 2.2.0.0616 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to sp… CWE-310
Cryptographic Issues
CVE-2014-6853 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290192 - automon ledline.gr_official The LedLine.gr Official (aka com.automon.ledline.gr) application 1.4.0.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and… CWE-310
Cryptographic Issues
CVE-2014-6852 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290193 - nbcfc new_beginnings_cfc The New Beginnings CFC (aka com.goodbarber.nbcfc) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain… CWE-310
Cryptographic Issues
CVE-2014-6851 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290194 - starkvilleelectric sed_account The SED Account (aka com.starkville.smartapps) application 1.153.0034 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and ob… CWE-310
Cryptographic Issues
CVE-2014-6850 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290195 - synology ds_file The DS file (aka com.synology.DSfile) application 4.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive… CWE-310
Cryptographic Issues
CVE-2014-6848 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290196 - horoscopesanddreams horoscopes_and_dreams The Horoscopes and Dreams (aka com.horoscopesanddreams) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers an… CWE-310
Cryptographic Issues
CVE-2014-6847 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290197 - intelitycorp four_seasons_beverly_hills The Four Seasons Beverly Hills (aka com.intelitycorp.FourSeasons.android.ice) application @7F050007 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle att… CWE-310
Cryptographic Issues
CVE-2014-6846 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290198 - mediafire mediafire The MediaFire (aka com.mediafire.android) application 1.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensi… CWE-310
Cryptographic Issues
CVE-2014-6845 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290199 - tabtale abc_song The ABC Song (aka com.tabtale.abcsingalong) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sen… CWE-310
Cryptographic Issues
CVE-2014-6844 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290200 - orderingapps sweatshop The Sweatshop (aka com.orderingapps.sweatshop) application 2.96 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain s… CWE-310
Cryptographic Issues
CVE-2014-6843 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm