Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202991	7.3	重要 Network	Google	-	Android のフレームワーク API におけるインテントフィルターのプライオリティを高くされる脆弱性	CWE-119 バッファエラー	CVE-2016-2497	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202992	9.8	緊急 Network	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-9902	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202993	7.5	重要 Network	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-9901	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202994	9.8	緊急 Network	The PHP Group	-	PHP の ext/spl/spl_dllist.c の SplDoublyLinkedList::offsetSet 関数におけるメモリ二重解放の脆弱性	CWE-Other その他	CVE-2016-3132	2016-08-10 14:56	2016-04-28	Show	GitHub Exploit DB Packet Storm

202995	9.8	緊急 Network	The PHP Group	-	PHP の zip エクステンションの php_zip.c における整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-3078	2016-08-10 14:43	2016-04-28	Show	GitHub Exploit DB Packet Storm

202996	5.4	警告 Network	Apache Software Foundation	-	Apache ActiveMQ の管理 Web コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0782	2016-08-10 14:25	2016-03-14	Show	GitHub Exploit DB Packet Storm

202997	5	警告	OpenSSL Project オラクル	-	OpenSSL の d1_pkt.c の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-0206	2016-08-9 18:16	2015-01-7	Show	GitHub Exploit DB Packet Storm

202998	5	警告	アップル日本電気 OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL における指紋ベースの認証ブラックリスト保護メカニズムを破られる脆弱性	CWE-310 暗号の問題	CVE-2014-8275	2016-08-9 18:15	2014-12-20	Show	GitHub Exploit DB Packet Storm

202999	5	警告	アップル OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL の s3_clnt.c 内の ssl3_get_key_exchange 関数における ECDHE-to-ECDH ダウングレード攻撃を実行される脆弱性	CWE-310 暗号の問題	CVE-2014-3572	2016-08-9 18:14	2014-10-24	Show	GitHub Exploit DB Packet Storm

203000	5	警告	日本電気アップルヒューレット・パッカード OpenSSL Project オラクル日立	-	OpenSSL の BN_sqr の実装における暗号保護メカニズムを破られる脆弱性	CWE-310 暗号の問題	CVE-2014-3570	2016-08-9 18:14	2014-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291491	-		google	chrome	Unspecified vulnerability in the MathML implementation in WebKit in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, has unknown impact and remote attack v…	NVD-CWE-noinfo	CVE-2013-2268	2024-11-21 10:51	2013-02-24	Show	GitHub Exploit DB Packet Storm

291492	8.8	HIGH Network	user_photo_project	user_photo	In WordPress Plugin User Photo 0.9.4, when a photo is uploaded, it is only partially validated and it is possible to upload a backdoor on the server hosting WordPress. This backdoor can be called (ex…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2013-1916	2024-11-21 10:50	2022-06-25	Show	GitHub Exploit DB Packet Storm

291493	6.5	MEDIUM Network	opencart	opencart	In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.	CWE-22 Path Traversal	CVE-2013-1891	2024-11-21 10:50	2022-06-25	Show	GitHub Exploit DB Packet Storm

291494	9.8	CRITICAL Network	starwindsoftware	iscsi_san	A flaw was found in StarWind iSCSI target. StarWind service does not limit client connections and allocates memory on each connection attempt. An attacker could create a denial of service state by tr…	CWE-400 Uncontrolled Resource Consumption	CVE-2013-20004	2024-11-21 10:50	2022-02-7	Show	GitHub Exploit DB Packet Storm

291495	8.3	HIGH Adjacent	silabs	zgm130s037hgn_firmware zm5202_firmware zm5101_firmware zgm2305a27hgn_firmware zgm230sb27hgn_firmware	Z-Wave devices from Sierra Designs (circa 2013) and Silicon Labs (using S0 security) may use a known, shared network key of all zeros, allowing an attacker within radio range to spoof Z-Wave traffic.	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2013-20003	2024-11-21 10:50	2022-02-5	Show	GitHub Exploit DB Packet Storm

291496	9.8	CRITICAL Network	themify	framework	Elemin allows remote attackers to upload and execute arbitrary PHP code via the Themify framework (before 1.2.2) wp-content/themes/elemin/themify/themify-ajax.php file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2013-20002	2024-11-21 10:50	2021-06-18	Show	GitHub Exploit DB Packet Storm

291497	7.5	HIGH Network	openzfs	openzfs	An issue was discovered in OpenZFS through 2.0.3. When an NFS share is exported to IPv6 addresses via the sharenfs feature, there is a silent failure to parse the IPv6 address data, and access is all…	NVD-CWE-noinfo	CVE-2013-20001	2024-11-21 10:50	2021-02-13	Show	GitHub Exploit DB Packet Storm

291498	7.5	HIGH Network	python	python	The gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP request.	NVD-CWE-noinfo	CVE-2013-1753	2024-11-21 10:50	2020-03-12	Show	GitHub Exploit DB Packet Storm

291499	9.8	CRITICAL Network	berkeley	boinc	Multiple SQL injection vulnerabilities in BOINC allow remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-2018	2024-11-21 10:50	2020-02-20	Show	GitHub Exploit DB Packet Storm

291500	7.5	HIGH Network	intel	82574l_controller_firmware	A denial of service vulnerability exists in some motherboard implementations of Intel e1000e/82574L network controller devices through 2013-02-06 where the device can be brought into a non-processing…	CWE-665 Improper Initialization	CVE-2013-1634	2024-11-21 10:50	2020-02-14	Show	GitHub Exploit DB Packet Storm