Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202951 5.5 警告
Local
Libav - Libav の get_bits.h の get_vlc2 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-8675 2017-03-6 16:55 2016-10-15 Show GitHub Exploit DB Packet Storm
202952 5.5 警告
Local
Libav - Libav の rnd_template.c の ff_put_pixels8_xy2_mmx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-7477 2017-03-6 16:55 2016-09-20 Show GitHub Exploit DB Packet Storm
202953 7.8 重要
Local
Debian
openSUSE project
GraphicsMagick
- GraphicsMagick の magick/memory.c の MagickMalloc 関数における脆弱性 CWE-119
バッファエラー
CVE-2016-8684 2017-03-6 16:50 2016-09-10 Show GitHub Exploit DB Packet Storm
202954 7.8 重要
Local
Debian
openSUSE project
GraphicsMagick
- GraphicsMagick の coders/pcx.c の ReadPCXImage 関数における脆弱性 CWE-119
バッファエラー
CVE-2016-8683 2017-03-6 16:50 2016-09-10 Show GitHub Exploit DB Packet Storm
202955 7.5 重要
Network
Debian
openSUSE project
GraphicsMagick
- GraphicsMagick の coders/sct.c の ReadSCTImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-8682 2017-03-6 16:50 2016-09-10 Show GitHub Exploit DB Packet Storm
202956 6.1 警告
Network
WSO2 - WSO2 SOA Enablement Server for Java におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-4327 2017-03-6 16:32 2016-04-8 Show GitHub Exploit DB Packet Storm
202957 6.1 警告
Network
WSO2 - WSO2 Carbon におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-4316 2017-03-6 16:32 2016-08-12 Show GitHub Exploit DB Packet Storm
202958 5.7 警告
Network
WSO2 - WSO2 Carbon におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2016-4315 2017-03-6 16:32 2016-08-12 Show GitHub Exploit DB Packet Storm
202959 4.9 警告
Network
WSO2 - WSO2 Carbon の LogViewer Admin Service におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2016-4314 2017-03-6 16:32 2016-08-12 Show GitHub Exploit DB Packet Storm
202960 7.5 重要
Network
suckless.org
Fedora Project
- slock における画面ロックを回避される脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-6866 2017-03-6 16:31 2016-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292191 - foecms foecms Multiple cross-site scripting (XSS) vulnerabilities in msg.php in FoeCMS allow remote attackers to inject arbitrary web script or HTML via the (1) e or (2) r parameter. CWE-79
Cross-site Scripting
CVE-2014-4849 2024-11-21 11:10 2014-07-11 Show GitHub Exploit DB Packet Storm
292192 - blogstand_banner_plugin_project blogstand-smart-banner Cross-site scripting (XSS) vulnerability in the Blogstand Banner (blogstand-smart-banner) plugin 1.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the bs_blog_id pa… CWE-79
Cross-site Scripting
CVE-2014-4848 2024-11-21 11:10 2014-07-11 Show GitHub Exploit DB Packet Storm
292193 - buffercode random_banner Cross-site scripting (XSS) vulnerability in the Random Banner plugin 1.1.2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the buffercode_RBanner_url_banner1 parame… CWE-79
Cross-site Scripting
CVE-2014-4847 2024-11-21 11:10 2014-07-11 Show GitHub Exploit DB Packet Storm
292194 - matchalabs metaslider Cross-site scripting (XSS) vulnerability in the Meta Slider (ml-slider) plugin 2.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter to wp-admin/admin.… CWE-79
Cross-site Scripting
CVE-2014-4846 2024-11-21 11:10 2014-07-10 Show GitHub Exploit DB Packet Storm
292195 - stillbreathing bannerman Cross-site scripting (XSS) vulnerability in the BannerMan plugin 0.2.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the bannerman_background parameter to wp-admin/… CWE-79
Cross-site Scripting
CVE-2014-4845 2024-11-21 11:10 2014-07-10 Show GitHub Exploit DB Packet Storm
292196 - php php Use-after-free vulnerability in ext/spl/spl_array.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impac… NVD-CWE-Other
CVE-2014-4698 2024-11-21 11:10 2014-07-10 Show GitHub Exploit DB Packet Storm
292197 - php php Use-after-free vulnerability in ext/spl/spl_dllist.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impa… NVD-CWE-Other
CVE-2014-4670 2024-11-21 11:10 2014-07-10 Show GitHub Exploit DB Packet Storm
292198 - osticket
enhancesoft
osticket Multiple cross-site scripting (XSS) vulnerabilities in osTicket before 1.9.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Phone Number field to open.php or (2) Phone numb… CWE-79
Cross-site Scripting
CVE-2014-4744 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292199 - kajona kajona Multiple cross-site scripting (XSS) vulnerabilities in (1) search_ajax.tpl and (2) search_ajax_small.tpl in templates/default/tpl/module_search/ in the Search module (module_search) in Kajona before … CWE-79
Cross-site Scripting
CVE-2014-4743 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292200 - kajona kajona Cross-site scripting (XSS) vulnerability in system/class_link.php in the System module (module_system) in Kajona before 4.5 allows remote attackers to inject arbitrary web script or HTML via the syst… CWE-79
Cross-site Scripting
CVE-2014-4742 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm