Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203441 7.8 重要
Local 		Google - Android のメディアサーバの mm-video-v4l2 vdec コンポーネントにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-3746 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
203442 9.8 緊急
Network 		Google - Android のメディアサーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-3745 2016-07-13 17:53 2016-07-6 Show GitHub Exploit DB Packet Storm
203443 7.5 重要
Adjacent 		Google - Android の Bluetooth の btif/src/btif_hh.c の create_pbuf 関数におけるバッファオーバーフローの脆弱性 CWE-119
CWE-362
CVE-2016-3744 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203444 9.8 緊急
Network 		Google - Android のメディアサーバの decoder/ih264d_api.c における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3743 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203445 9.8 緊急
Network 		Google - Android のメディアサーバの decoder/ih264d_process_intra_mb.c における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3742 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203446 9.8 緊急
Network 		Google - Android のメディアサーバの H.264 デコーダにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3741 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203447 9.8 緊急
Network 		Google - Android のメディアサーバの libstagefright の DRMExtractor.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-2506 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203448 7.8 重要
Local 		Google - Nexus 5X および 6P デバイス上で稼動する Android の Qualcomm GPU ドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2503 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203449 7.8 重要
Local 		Google - Nexus 5X および 6P デバイス上で稼動する Android の Qualcomm USB ドライバの drivers/usb/gadget/f_serial.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2502 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
203450 7.8 重要
Local 		Google - 複数の Nexus デバイス上で稼動する Android の Qualcomm カメラドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2501 2016-07-13 16:54 2016-07-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290911 - netweblogic login_with_ajax Cross-site request forgery (CSRF) vulnerability in the Login With Ajax plugin before 3.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that modify… CWE-352
 Origin Validation Error 		CVE-2013-2707 2024-11-21 10:52 2013-05-10 Show GitHub Exploit DB Packet Storm
290912 - crunchify facebook_members Cross-site request forgery (CSRF) vulnerability in the Facebook Members plugin before 5.0.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that modi… CWE-352
 Origin Validation Error 		CVE-2013-2703 2024-11-21 10:52 2013-05-5 Show GitHub Exploit DB Packet Storm
290913 - thulasidas easy-adsense-lite Cross-site request forgery (CSRF) vulnerability in the Easy AdSense Lite plugin before 6.10 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that mod… CWE-352
 Origin Validation Error 		CVE-2013-2702 2024-11-21 10:52 2013-05-5 Show GitHub Exploit DB Packet Storm
290914 - joomla joomla\! Cross-site scripting (XSS) vulnerability in the Voting plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vect… CWE-79
Cross-site Scripting 		CVE-2013-3059 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290915 - joomla joomla\! Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-3058 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290916 - joomla joomla\! Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3057 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290917 - joomla joomla\! Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vecto… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3056 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
290918 - strongswan strongswan strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature. CWE-287
Improper Authentication 		CVE-2013-2944 2024-11-21 10:52 2013-05-2 Show GitHub Exploit DB Packet Storm
290919 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of servi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3080 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290920 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (V… CWE-94
Code Injection 		CVE-2013-3079 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm