Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201041	9.8	緊急 Network	ImageMagick オラクル	-	ImageMagick の DCM リーダにおける脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2016-5689	2016-12-26 16:55	2016-05-30	Show	GitHub Exploit DB Packet Storm

201042	8.1	重要 Network	ImageMagick オラクル	-	ImageMagick の WPG パーサにおける脆弱性	CWE-119 バッファエラー	CVE-2016-5688	2016-12-26 16:55	2016-05-18	Show	GitHub Exploit DB Packet Storm

201043	9.8	緊急 Network	ImageMagick オラクル	-	ImageMagick の DDS コーダの VerticalFilter 関数における脆弱性	CWE-125 境界外読み取り	CVE-2016-5687	2016-12-26 16:55	2016-05-15	Show	GitHub Exploit DB Packet Storm

201044	7.8	重要 Local	Fedora Project 7-Zip オラクル	-	7-Zip および p7zip の NArchive::NHfs::CHandler::ExtractZlibFile メソッドにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-2334	2016-12-26 16:51	2016-07-20	Show	GitHub Exploit DB Packet Storm

201045	9.8	緊急 Network	X.Org Foundation Fedora Project	-	X.org libXv の XvQueryAdaptors および XvQueryEncodings 関数におけるメモリの境界外アクセス操作を誘発される脆弱性	CWE-119 CWE-125	CVE-2016-5407	2016-12-26 16:49	2016-10-4	Show	GitHub Exploit DB Packet Storm

201046	5.5	警告 Local	レッドハット	-	Red Hat Enterprise Virtualization Manager における重要な情報を取得される脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2016-4443	2016-12-26 16:46	2016-09-21	Show	GitHub Exploit DB Packet Storm

201047	6.5	警告 Network	Marcel Hellkamp	-	bottle の bottle.py の redirect() における CRLF 攻撃を引き起こされる脆弱性	CWE-93 CRLF インジェクション	CVE-2016-9964	2016-12-26 16:40	2016-12-10	Show	GitHub Exploit DB Packet Storm

201048	7.8	重要 Local	Nagios Enterprises, LLC	-	Nagios Core の base/logging.c における root 権限を取得される脆弱性	CWE-264 CWE-59	CVE-2016-9566	2016-12-26 14:32	2016-12-7	Show	GitHub Exploit DB Packet Storm

201049	9.8	緊急 Network	Nagios Enterprises, LLC	-	Nagios Core のフロントエンドコンポーネントで使用される MagpieRSS における任意のファイルを読まれる脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-9565	2016-12-26 14:32	2016-10-24	Show	GitHub Exploit DB Packet Storm

201050	5.3	警告 Network	Apache Software Foundation	-	Apache Tika の Apache Tika サーバにおける任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2015-3271	2016-12-26 14:05	2015-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290891	-	oracle mariadb redhat	mysql mariadb enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_eus	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to XML.	NVD-CWE-noinfo	CVE-2014-0384	2024-11-21 11:01	2014-04-16	Show	GitHub Exploit DB Packet Storm

290892	-	gopivotal	grails-resources grails	The default configuration of the Resources plugin 1.0.0 before 1.2.6 for Pivotal Grails 2.0.0 before 2.3.6 does not properly restrict access to files in the WEB-INF directory, which allows remote att…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0053	2024-11-21 11:01	2014-04-16	Show	GitHub Exploit DB Packet Storm

290893	-	apache oracle	xalan-java webcenter_sites	The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass exp…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0107	2024-11-21 11:01	2014-04-16	Show	GitHub Exploit DB Packet Storm

290894	-	openstack	compute icehouse	The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0167	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm

290895	-	openstack opensuse	horizon opensuse	Cross-site scripting (XSS) vulnerability in the Horizon Orchestration dashboard in OpenStack Dashboard (aka Horizon) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote attackers to…	CWE-79 Cross-site Scripting	CVE-2014-0157	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm

290896	-	haxx	curl libcurl	cURL and libcurl 7.1 before 7.36.0, when using the OpenSSL, axtls, qsossl or gskit libraries for TLS, recognize a wildcard IP address in the subject's Common Name (CN) field of an X.509 certificate, …	CWE-310 Cryptographic Issues	CVE-2014-0139	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm

290897	-	haxx debian	curl libcurl debian_linux	The default configuration in cURL and libcurl 7.10.6 before 7.36.0 re-uses (1) SCP, (2) SFTP, (3) POP3, (4) POP3S, (5) IMAP, (6) IMAPS, (7) SMTP, (8) SMTPS, (9) LDAP, and (10) LDAPS connections, whic…	CWE-287 Improper Authentication	CVE-2014-0138	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm

290898	-	openstack	python-keystoneclient	The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authen…	CWE-255 Credentials Management	CVE-2014-0105	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm

290899	-	xangati	xangati_software_release xangati_xnr	Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a gui_input_test.pl params parameter to servlet/Installer.	CWE-78 OS Command	CVE-2014-0359	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm

290900	-	xangati	xangati_software_release xangati_xnr	Multiple directory traversal vulnerabilities in Xangati XSR before 11 and XNR before 7 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the file parameter in a getUpgradeStatu…	CWE-22 Path Traversal	CVE-2014-0358	2024-11-21 11:01	2014-04-15	Show	GitHub Exploit DB Packet Storm