Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201481 7.5 重要
Network 		openSUSE project
GraphicsMagick		 - GraphicsMagick の coders/tiff.c の TIFFGetField 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-7449 2017-02-23 13:56 2016-08-18 Show GitHub Exploit DB Packet Storm
201482 9.8 緊急
Network 		openSUSE project
GraphicsMagick		 - GraphicsMagick の EscapeParenthesis 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7447 2017-02-23 13:56 2016-09-8 Show GitHub Exploit DB Packet Storm
201483 9.8 緊急
Network 		openSUSE project
GraphicsMagick		 - GraphicsMagick の MVG および SVG レンダリングコードにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7446 2017-02-23 13:56 2016-09-8 Show GitHub Exploit DB Packet Storm
201484 9.8 緊急
Network 		DNN - DotNetNuke のインストールウィザードにおけるアプリケーションを再インストールされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-2794 2017-02-23 11:39 2015-05-26 Show GitHub Exploit DB Packet Storm
201485 6.1 警告
Network 		ZoneMinder - ZoneMinder における反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5367 2017-02-23 11:12 2017-02-5 Show GitHub Exploit DB Packet Storm
201486 6.1 警告
Network 		dotCMS - dotCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5877 2017-02-23 10:55 2017-02-6 Show GitHub Exploit DB Packet Storm
201487 5.4 警告
Network 		dotCMS - dotCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5875 2017-02-23 10:55 2017-02-6 Show GitHub Exploit DB Packet Storm
201488 5.5 警告
Local 		LibTIFF - LibTIFF の gif2tiff ツールの gif2tiff.c の readgifimage 関数におけるバッファオーバーフローの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5102 2017-02-23 10:49 2016-09-5 Show GitHub Exploit DB Packet Storm
201489 6.2 警告
Local 		TalariaX Pte Ltd - SendQuick Entera および Avera デバイスにおける認証されていない SMS ログを要求される脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2017-5137 2017-02-22 18:12 2017-02-5 Show GitHub Exploit DB Packet Storm
201490 9.8 緊急
Network 		TalariaX Pte Ltd - SendQuick Entera および Avera デバイスにおける複数のコマンドを挿入される脆弱性 CWE-77
コマンドインジェクション 		CVE-2016-10098 2017-02-22 18:12 2017-01-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292381 5.9 MEDIUM
Network 		paypal-ipn_project paypal-ipn paypal-ipn before 3.0.0 uses the `test_ipn` parameter (which is set by the PayPal IPN simulator) to determine if it should use the production PayPal site or the sandbox. With a bit of time, an attack… CWE-287
Improper Authentication 		CVE-2014-10067 2024-11-21 11:03 2018-05-30 Show GitHub Exploit DB Packet Storm
292382 7.1 HIGH
Network 		ibm rational_clearquest Multiple XML external entity (XXE) vulnerabilities in (1) CQWeb / CM Server, (2) ClearQuest Native client, (3) ClearQuest Eclipse client, and (4) ClearQuest Eclipse Designer components in IBM Rationa… CWE-611
XXE 		CVE-2014-0950 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
292383 9.1 CRITICAL
Network 		ibm rational_clearcase Multiple XML external entity (XXE) vulnerabilities in the (1) CCRC WAN Server / CM Server, (2) Perl CC/CQ integration trigger scripts, (3) CMAPI Java interface, (4) ClearCase remote client, and (5) C… CWE-611
XXE 		CVE-2014-0931 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
292384 8.1 HIGH
Network 		ibm sterling_b2b_integrator
sterling_file_gateway 		The ActiveMQ admin user interface in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to bypass authentication by leveraging knowledge of the port… CWE-287
Improper Authentication 		CVE-2014-0927 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
292385 5.3 MEDIUM
Network 		ibm sterling_b2b_integrator
sterling_file_gateway 		IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote attackers to obtain sensitive product information via vectors related to an error page. IBM X-Force ID: 9207… CWE-200
Information Exposure 		CVE-2014-0912 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
292386 8.8 HIGH
Network 		google android The Device Administrator code in Android before 4.4.1_r1 might allow attackers to spoof device administrators and consequently bypass MDM restrictions by leveraging failure to update the mAdminMap da… CWE-20
 Improper Input Validation  		CVE-2014-0900 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
292387 7.5 HIGH
Network 		wpitchoune
debian 		psensor
debian_linux 		The create_response function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory. CWE-22
Path Traversal 		CVE-2014-10073 2024-11-21 11:03 2018-04-21 Show GitHub Exploit DB Packet Storm
292388 7.5 HIGH
Network 		qualcomm mdm9625_firmware
sd_800_firmware 		In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625 and SD 800, a fuse is not correctly blown on a secure device. CWE-254
 7PK - Security Features 		CVE-2014-10063 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm
292389 9.8 CRITICAL
Network 		qualcomm mdm9615_firmware
mdm9625_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_400_firmware
sd_800_firmware 		In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, SD 210/SD 212/SD 205, SD 400, and SD 800, improper access control on ATCMD service allows … CWE-284
Improper Access Control 		CVE-2014-10059 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm
292390 9.8 CRITICAL
Network 		qualcomm sd_210_firmware
sd_212_firmware
sd_205_firmware 		In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210/SD 212/SD 205, A buffer overflow can potentially occur in any OpenCL application that calls clBuildPr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-10056 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm