Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201501	9.8	緊急 Network	libxpm project	-	libXpm における整数オーバーフローの脆弱性	CWE-119 CWE-190 CWE-787	CVE-2016-10164	2017-03-9 11:29	2016-12-12	Show	GitHub Exploit DB Packet Storm

201502	5.9	警告 Network	ChatSecure Zom	-	ChatSecure および Zom の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5590	2017-03-8 19:10	2017-01-24	Show	GitHub Exploit DB Packet Storm

201503	6.1	警告 Network	Visonic	-	Visonic PowerLink2 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5811	2017-03-8 19:06	2016-12-13	Show	GitHub Exploit DB Packet Storm

201504	9.8	緊急 Network	OmniMetrix, LLC	-	OmniMetrix OmniView Web アプリケーションにおけるアクセス権を取得される脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-5801	2017-03-8 19:02	2016-12-15	Show	GitHub Exploit DB Packet Storm

201505	7.5	重要 Network	OmniMetrix, LLC	-	OmniMetrix OmniView Web アプリケーションにおけるアカウント認証情報が漏えいする脆弱性	CWE-200 情報漏えい	CVE-2016-5786	2017-03-8 19:02	2016-12-15	Show	GitHub Exploit DB Packet Storm

201506	9.8	緊急 Network	Lynxspring	-	Lynxspring JENEsys BAS Bridge におけるアプリケーションのデータベースにおいて認証情報の保護に十分なセーフガードが欠落している脆弱性	CWE-255 証明書・パスワード管理	CVE-2016-8378	2017-03-8 18:51	2016-11-15	Show	GitHub Exploit DB Packet Storm

201507	8.8	重要 Network	Lynxspring	-	Lynxspring JENEsys BAS Bridge におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-8369	2017-03-8 18:51	2016-11-15	Show	GitHub Exploit DB Packet Storm

201508	8.6	重要 Network	Lynxspring	-	Lynxspring JENEsys BAS Bridge における認証なしでシステム内に侵入される脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2016-8361	2017-03-8 18:51	2016-11-15	Show	GitHub Exploit DB Packet Storm

201509	7.1	重要 Network	Lynxspring	-	Lynxspring JENEsys BAS Bridge における読み取り専用アクセスでアプリケーション内にて任意の変更を許可される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-8357	2017-03-8 18:51	2016-11-15	Show	GitHub Exploit DB Packet Storm

201510	6.1	警告 Network	Moxa Inc.	-	複数の Moxa NPort 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9371	2017-03-8 18:37	2016-12-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292291	4.3	MEDIUM Network	reddit-on-rails_project	reddit-on-rails	A vulnerability classified as critical was found in koroket RedditOnRails. This vulnerability affects unknown code of the component Vote Handler. The manipulation leads to improper access controls. T…	-	CVE-2014-125054	2024-11-21 11:03	2023-01-7	Show	GitHub Exploit DB Packet Storm

292292	9.8	CRITICAL Network	piwigo	guestbook	A vulnerability was found in Piwigo-Guest-Book up to 1.3.0. It has been declared as critical. This vulnerability affects unknown code of the file include/guestbook.inc.php of the component Navigation…	-	CVE-2014-125053	2024-11-21 11:03	2023-01-7	Show	GitHub Exploit DB Packet Storm

292293	9.8	CRITICAL Network	sparql-identifiers_project	sparql-identifiers	A vulnerability was found in JervenBolleman sparql-identifiers and classified as critical. This issue affects some unknown processing of the file src/main/java/org/identifiers/db/RegistryDao.java. Th…	-	CVE-2014-125052	2024-11-21 11:03	2023-01-7	Show	GitHub Exploit DB Packet Storm

292294	9.8	CRITICAL Network	yii2-jqgrid-widget_project	yii2-jqgrid-widget	A vulnerability was found in himiklab yii2-jqgrid-widget up to 1.0.7. It has been declared as critical. This vulnerability affects the function addSearchOptionsRecursively of the file JqGridAction.ph…	-	CVE-2014-125051	2024-11-21 11:03	2023-01-7	Show	GitHub Exploit DB Packet Storm

292295	9.8	CRITICAL Network	voter-js_project	voter-js	A vulnerability was found in ScottTZhang voter-js and classified as critical. Affected by this issue is some unknown functionality of the file main.js. The manipulation leads to sql injection. The pa…	-	CVE-2014-125050	2024-11-21 11:03	2023-01-7	Show	GitHub Exploit DB Packet Storm

292296	9.8	CRITICAL Network	blogile_project	blogile	UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, was found in typcn Blogile. Affected is the function getNav of the file server.js. The manipulation of the argument …	-	CVE-2014-125049	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm

292297	5.4	MEDIUM Network	kluks	xingwall	A vulnerability, which was classified as critical, has been found in kassi xingwall. This issue affects some unknown processing of the file app/controllers/oauth.js. The manipulation leads to session…	CWE-384 Session Fixation	CVE-2014-125048	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm

292298	9.8	CRITICAL Network	school-store_project	school-store	A vulnerability classified as critical has been found in tbezman school-store. This affects an unknown part. The manipulation leads to sql injection. The identifier of the patch is 2957fc97054216d3a3…	-	CVE-2014-125047	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm

292299	9.8	CRITICAL Network	cub-scout-tracker_project	cub-scout-tracker	A vulnerability, which was classified as critical, was found in Seiji42 cub-scout-tracker. This affects an unknown part of the file databaseAccessFunctions.js. The manipulation leads to sql injection…	-	CVE-2014-125046	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm

292300	9.8	CRITICAL Network	meol1_project	meol1	A vulnerability has been found in meol1 and classified as critical. Affected by this vulnerability is the function GetAnimal of the file opdracht4/index.php. The manipulation of the argument where le…	-	CVE-2014-125045	2024-11-21 11:03	2023-01-6	Show	GitHub Exploit DB Packet Storm