Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201281 4.7 警告
Local 		Linux - カメラドライバおよびビデオドライバを含む Qualcomm コンポーネントにおける情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2016-6756 2017-01-24 16:51 2016-12-5 Show GitHub Exploit DB Packet Storm
201282 7 重要
Local 		Linux - Qualcomm カメラドライバにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6755 2017-01-24 16:51 2016-12-5 Show GitHub Exploit DB Packet Storm
201283 8.8 重要
Network 		web2py - Web2py におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-4808 2017-01-24 16:21 2016-04-4 Show GitHub Exploit DB Packet Storm
201284 7.5 重要
Network 		web2py - Web2py におけるローカルファイルインクルージョンの脆弱性 CWE-200
情報漏えい 		CVE-2016-4806 2017-01-24 16:20 2016-04-4 Show GitHub Exploit DB Packet Storm
201285 9.1 緊急
Network 		libimobiledevice - libimobiledevice libplist の base64.c の base64decode 関数におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2017-5209 2017-01-24 15:58 2017-01-11 Show GitHub Exploit DB Packet Storm
201286 7.5 重要
Network 		NetApp - Clustered Data ONTAP 用 MetroCluster Tiebreaker における重要な情報を平文で開示される脆弱性 CWE-200
情報漏えい 		CVE-2016-6820 2017-01-24 15:22 2016-09-29 Show GitHub Exploit DB Packet Storm
201287 3.7
Network 		NetApp - Clustered Data ONTAP における情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2015-8020 2017-01-24 15:21 2015-10-28 Show GitHub Exploit DB Packet Storm
201288 3.7
Network 		Python Software Foundation - Python urllib3 ライブラリにおける特定の設定下で TLS 証明書を適切に検証しない脆弱性 CWE-295
不正な証明書検証 		CVE-2016-9015 2017-01-24 15:13 2016-10-27 Show GitHub Exploit DB Packet Storm
201289 7.8 重要
Local 		Linux - Qualcomm メディア コーデックにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6761 2017-01-24 14:57 2016-12-5 Show GitHub Exploit DB Packet Storm
201290 7.8 重要
Local 		Linux - Qualcomm メディア コーデックにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6760 2017-01-24 14:57 2016-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291481 - vicidial vicidial VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier has a hardcoded password of donotedit for the (1) VDAD and (2) VDCL users, which makes it easier for remote attackers to o… CWE-255
Credentials Management 		CVE-2013-7382 2024-11-21 11:00 2014-05-18 Show GitHub Exploit DB Packet Storm
291482 - ucdok tomato The admin API in the tomato module before 0.0.6 for Node.js does not properly check the access key when it is set to a string, which allows remote attackers to bypass authentication via a string in t… CWE-287
Improper Authentication 		CVE-2013-7379 2024-11-21 11:00 2014-05-17 Show GitHub Exploit DB Packet Storm
291483 - openx openx Multiple cross-site request forgery (CSRF) vulnerabilities in OpenX 2.8.10, possibly before revision 82710, allow remote attackers to hijack the authentication of administrators, as demonstrated by r… CWE-352
 Origin Validation Error 		CVE-2013-7376 2024-11-21 11:00 2014-05-15 Show GitHub Exploit DB Packet Storm
291484 - cristian_gafton pam_userdb The pam_userdb module for Pam uses a case-insensitive method to compare hashed passwords, which makes it easier for attackers to guess the password via a brute force attack. CWE-310
Cryptographic Issues 		CVE-2013-7041 2024-11-21 11:00 2014-05-8 Show GitHub Exploit DB Packet Storm
291485 - redhat
opensuse 		libvirt
opensuse 		The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing seamless SPICE migration, which allows local users to cause a… NVD-CWE-Other
CVE-2013-7336 2024-11-21 11:00 2014-05-7 Show GitHub Exploit DB Packet Storm
291486 - libpng libpng Multiple integer overflows in libpng before 1.5.14rc03 allow remote attackers to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which tr… CWE-189
Numeric Errors 		CVE-2013-7354 2024-11-21 11:00 2014-05-6 Show GitHub Exploit DB Packet Storm
291487 - libpng libpng Integer overflow in the png_set_unknown_chunks function in libpng/pngset.c in libpng before 1.5.14beta08 allows context-dependent attackers to cause a denial of service (segmentation fault and crash)… CWE-189
Numeric Errors 		CVE-2013-7353 2024-11-21 11:00 2014-05-6 Show GitHub Exploit DB Packet Storm
291488 - php-fusion php-fusion SQL injection vulnerability in includes/classes/Authenticate.class.php in PHP-Fusion 7.02.01 through 7.02.05 allows remote attackers to execute arbitrary SQL commands via the user ID in a user cookie… CWE-89
SQL Injection 		CVE-2013-7375 2024-11-21 11:00 2014-05-6 Show GitHub Exploit DB Packet Storm
291489 - livezilla livezilla The setCookieValue function in _lib/functions.global.inc.php in LiveZilla before 5.1.2.1 allows remote attackers to execute arbitrary PHP code via a serialized PHP object in a cookie. CWE-94
Code Injection 		CVE-2013-7034 2024-11-21 11:00 2014-05-6 Show GitHub Exploit DB Packet Storm
291490 - livezilla livezilla Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla before 5.1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) full name field, (2) company field, or (3) fi… CWE-79
Cross-site Scripting 		CVE-2013-7003 2024-11-21 11:00 2014-05-6 Show GitHub Exploit DB Packet Storm