Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203251	9.8	緊急 Network	Google	-	Android における脆弱性	CWE-noinfo 情報不足	CVE-2016-3877	2016-09-14 16:46	2016-09-6	Show	GitHub Exploit DB Packet Storm

203252	6.8	警告 Physics	Google	-	Android の providers/settings/SettingsProvider.java における SAFE_BOOT_DISALLOWED 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3876	2016-09-14 16:46	2016-09-6	Show	GitHub Exploit DB Packet Storm

203253	6.8	警告 Physics	Google	-	Android の server/wm/WindowManagerService.java におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3875	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203254	7.8	重要 Local	Google	-	Nexus 5X デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバの CORE/HDD/src/wlan_hdd_wext.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3874	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203255	7.8	重要 Local	Google	-	Nexus 9 デバイス上で稼動する Android の NVIDIA カーネルにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3873	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203256	7.8	重要 Local	Google	-	Android のメディアサーバの libstagefright の codecs/on2/dec/SoftVPX.cpp におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-3872	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203257	7.8	重要 Local	Google	-	Android のメディアサーバの libstagefright の codecs/mp3dec/SoftMP3.cpp におけるバッファオーバーフローの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3871	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203258	7.8	重要 Local	Google	-	Android のメディアサーバの libstagefright の omx/SimpleSoftOMXComponent.cpp における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3870	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203259	7.8	重要 Local	Google	-	複数の Nexus および Pixel C デバイス上で稼動する Android の Broadcom Wi-Fi ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3869	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

203260	7.8	重要 Local	Google	-	Nexus 5X および 6P デバイス上で稼動する Android の Qualcomm IPA ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3867	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346441	-	turnkey_solutions	sunshop_shopping_cart	Multiple cross-site scripting (XSS) vulnerabilities in SunShop 3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) prevaction, (2) previd, (3) prevstart, (4) ite…	NVD-CWE-Other	CVE-2006-2124	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346442	-	avalon_ltd	maxtrade	SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categori and (2) stranica parameters.	NVD-CWE-Other	CVE-2006-2126	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346443	-	deltascripts	pro_publish	Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.	NVD-CWE-Other	CVE-2006-2129	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346444	-	advanced_poll	advanced_poll	SQL injection vulnerability in include/class_poll.php in Advanced Poll 2.0.4 allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header.	NVD-CWE-Other	CVE-2006-2130	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346445	-	advanced_poll	advanced_poll	Successful exploitation requires that magic_quotes_gpc is set to off.	NVD-CWE-Other	CVE-2006-2130	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346446	-	advanced_poll	advanced_poll	include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify the IP address of a client, which makes it easier for remote attackers to spoof t…	NVD-CWE-Other	CVE-2006-2131	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346447	-	boonex	barracuda	SQL injection vulnerability in index.php in BoonEx Barracuda 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) link_dir_target and (2) link_id_target parameter, po…	NVD-CWE-Other	CVE-2006-2133	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346448	-	ruperts_news	ruperts_news	SQL injection vulnerability in login.php in Ruperts News allows remote attackers to execute arbitrary SQL commands via the username parameter.	NVD-CWE-Other	CVE-2006-2135	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346449	-	ruperts_news	ruperts_news	Successful exploitation requires that magic_quotes_gpc is set to off.	NVD-CWE-Other	CVE-2006-2135	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm

346450	-	aznews	aznews	SQL injection vulnerability in news.php in AZNEWS allows remote attackers to execute arbitrary SQL commands via the ID parameter.	NVD-CWE-Other	CVE-2006-2136	2017-07-20 10:31	2006-05-2	Show	GitHub Exploit DB Packet Storm