Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202371 7.5 重要
Network 		Google - Android のメディアサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-3754 2016-07-13 17:54 2016-07-6 Show GitHub Exploit DB Packet Storm
202372 7.5 重要
Network 		Google - Android のメディアサーバにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3753 2016-07-13 17:54 2016-07-6 Show GitHub Exploit DB Packet Storm
202373 7.8 重要
Local 		Google - Android の ChooserTarget サービスの internal/app/ChooserActivity.java における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-3752 2016-07-13 17:54 2016-07-6 Show GitHub Exploit DB Packet Storm
202374 7.8 重要
Local 		Google
PNG Development Group		 - Android で使用される libpng における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2016-3751 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
202375 7.8 重要
Local 		Google - Android の Parcels Framework API の libs/binder/Parcel.cpp におけるアイソレーション保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3750 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
202376 8.4 重要
Local 		Google - Android の LockSettingsService の server/LockSettingsService.java における画面ロックのパスワードまたはパターンを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2016-3749 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
202377 8.4 重要
Local 		Google - Android の socket サブシステムにおけるシステムコールの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3748 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
202378 7.8 重要
Local 		Google - Android のメディアサーバの mm-video-v4l2 vdec コンポーネントにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-3746 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
202379 9.8 緊急
Network 		Google - Android のメディアサーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-3745 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
202380 7.5 重要
Adjacent 		Google - Android の Bluetooth の btif/src/btif_hh.c の create_pbuf 関数におけるバッファオーバーフローの脆弱性 CWE-119
CWE-362
CVE-2016-3744 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290711 - opera opera_browser Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request. CWE-352
 Origin Validation Error 		CVE-2013-1639 2024-11-21 10:50 2013-02-8 Show GitHub Exploit DB Packet Storm
290712 - opera opera_browser Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document. CWE-94
Code Injection 		CVE-2013-1638 2024-11-21 10:50 2013-02-8 Show GitHub Exploit DB Packet Storm
290713 - opera opera_browser Opera before 12.13 allows remote attackers to execute arbitrary code via vectors involving DOM events. CWE-94
Code Injection 		CVE-2013-1637 2024-11-21 10:50 2013-02-8 Show GitHub Exploit DB Packet Storm
290714 9.8 CRITICAL
Network 		cardozatechnologies wordpress_poll Multiple security bypass vulnerabilities in the editAnswer, deleteAnswer, addAnswer, and deletePoll functions in WordPress Poll Plugin 34.5 for WordPress allow a remote attacker to add, edit, and del… CWE-89
SQL Injection 		CVE-2013-1401 2024-11-21 10:49 2020-02-14 Show GitHub Exploit DB Packet Storm
290715 9.8 CRITICAL
Network 		cardozatechnologies wordpress_poll Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollRes… CWE-89
SQL Injection 		CVE-2013-1400 2024-11-21 10:49 2020-02-14 Show GitHub Exploit DB Packet Storm
290716 6.1 MEDIUM
Network 		perforce p4web Perforce P4web 2011.1 and 2012.1 has multiple XSS vulnerabilities CWE-79
Cross-site Scripting 		CVE-2013-1410 2024-11-21 10:49 2020-02-13 Show GitHub Exploit DB Packet Storm
290717 9.8 CRITICAL
Network 		pdfkit_project pdfkit Ruby PDFKit gem prior to 0.5.3 has a Code Execution Vulnerability CWE-20
 Improper Input Validation  		CVE-2013-1607 2024-11-21 10:49 2020-02-12 Show GitHub Exploit DB Packet Storm
290718 9.8 CRITICAL
Network 		sonicwall analyzer
global_management_system
viewpoint
universal_management_appliance 		An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and Vi… CWE-287
Improper Authentication 		CVE-2013-1359 2024-11-21 10:49 2020-02-12 Show GitHub Exploit DB Packet Storm
290719 9.8 CRITICAL
Network 		sonicwall analyzer
global_management_system
viewpoint
universal_management_appliance 		An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and Vi… CWE-287
Improper Authentication 		CVE-2013-1360 2024-11-21 10:49 2020-02-12 Show GitHub Exploit DB Packet Storm
290720 5.4 MEDIUM
Network 		orangehrm orangehrm Orange HRM 2.7.1 allows XSS via the vacancy name. CWE-79
Cross-site Scripting 		CVE-2013-1353 2024-11-21 10:49 2020-02-10 Show GitHub Exploit DB Packet Storm