Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202761	3.4	低 Network	日立	-	Hitachi Command Suite製品における外部のファイルをブラウザにロードできる脆弱性	CWE-noinfo 情報不足	-	2016-09-14 18:15	2016-02-19	Show	GitHub Exploit DB Packet Storm

202762	3.1	低 Network	日立	-	Hitachi Command Suite 製品における情報露出の脆弱性	CWE-noinfo 情報不足	-	2016-09-14 18:15	2016-07-11	Show	GitHub Exploit DB Packet Storm

202763	6.5	警告 Network	IBM	-	IBM WebSphere Portal におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-5954	2016-09-14 17:58	2016-09-8	Show	GitHub Exploit DB Packet Storm

202764	5.4	警告 Network	IBM	-	IBM Rational Team Concert および Rational Collaborative Lifecycle Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0331	2016-09-14 17:58	2016-09-5	Show	GitHub Exploit DB Packet Storm

202765	5.5	警告 Local	Google	-	Android の Telephony におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-3898	2016-09-14 17:51	2016-09-6	Show	GitHub Exploit DB Packet Storm

202766	5.5	警告 Local	Google	-	Android の Wi-Fi の net/wifi/WifiEnterpriseConfig.java の WifiEnterpriseConfig クラスにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3897	2016-09-14 17:51	2016-09-6	Show	GitHub Exploit DB Packet Storm

202767	5.5	警告 Local	Google	-	Android の AOSP Mail における重要な EmailAccountCacheProvider 情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3896	2016-09-14 17:51	2016-09-6	Show	GitHub Exploit DB Packet Storm

202768	5.5	警告 Local	Google	-	Android のメディアサーバの libs/ui/Region.cpp の Region::unflatten 関数における整数オーバーフローの脆弱性	CWE-200 CWE-Other	CVE-2016-3895	2016-09-14 17:41	2016-09-6	Show	GitHub Exploit DB Packet Storm

202769	5.5	警告 Local	Google	-	Nexus 6 デバイス上で稼動する Android の Qualcomm DMA コンポーネントにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3894	2016-09-14 17:41	2016-09-6	Show	GitHub Exploit DB Packet Storm

202770	5.5	警告 Local	Google	-	Nexus 6P デバイス上で稼動する Android の Qualcomm の音声コーデックにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3893	2016-09-14 17:41	2016-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289541	-	phpmyfaq	phpmyfaq	Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-0814	2024-11-21 11:02	2014-02-15	Show	GitHub Exploit DB Packet Storm

289542	-	phpmyfaq	phpmyfaq	Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.	CWE-352 Origin Validation Error	CVE-2014-0813	2024-11-21 11:02	2014-02-15	Show	GitHub Exploit DB Packet Storm

289543	-	ibm	connections_portlets	Multiple cross-site scripting (XSS) vulnerabilities in IBM Connections Portlets 4.x before 4.5.1 FP1 for IBM WebSphere Portal 7.0.0.2 and 8.0.0.1 allow remote attackers to inject arbitrary web script…	CWE-79 Cross-site Scripting	CVE-2014-0855	2024-11-21 11:02	2014-02-14	Show	GitHub Exploit DB Packet Storm

289544	-	cisco	unified_communications_manager	SQL injection vulnerability in the Enterprise Mobility Application (EMApp) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via a craf…	CWE-89 SQL Injection	CVE-2014-0729	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm

289545	-	cisco	unified_communications_manager	SQL injection vulnerability in the Java database interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands via a crafted UR…	CWE-89 SQL Injection	CVE-2014-0728	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm

289546	-	cisco	unified_communications_manager	SQL injection vulnerability in the CallManager Interactive Voice Response (CMIVR) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via…	CWE-89 SQL Injection	CVE-2014-0727	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm

289547	-	cisco	unified_communications_manager	SQL injection vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands vi…	CWE-89 SQL Injection	CVE-2014-0726	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm

289548	-	cisco	unified_communications_manager	Cisco Unified Communications Manager (UCM) does not require authentication for reading WAR files, which allows remote attackers to obtain sensitive information via unspecified access to a "file stora…	CWE-287 Improper Authentication	CVE-2014-0725	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm

289549	-	cisco	unified_communications_manager	The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified p…	CWE-20 Improper Input Validation	CVE-2014-0724	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm

289550	-	cisco	unified_communications_manager	Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2014-0723	2024-11-21 11:02	2014-02-13	Show	GitHub Exploit DB Packet Storm