Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
203601 5.5 警告
Local
Libical project - Libical におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-5824 2017-02-13 15:25 2016-12-3 Show GitHub Exploit DB Packet Storm
203602 5.5 警告
Local
Libical project - Libical の icalproperty_new_clone 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-5823 2017-02-13 15:25 2016-06-25 Show GitHub Exploit DB Packet Storm
203603 4.7 警告
Local
サムスン - Samsung Knox における重要な情報を取得される脆弱性 CWE-200
CWE-310
CVE-2016-1919 2017-02-13 14:33 2016-01-16 Show GitHub Exploit DB Packet Storm
203604 5.5 警告
Local
サムスン - Samsung Knox における中間者攻撃を実行される脆弱性 CWE-284
不適切なアクセス制御
CVE-2016-1920 2017-02-13 14:33 2016-01-16 Show GitHub Exploit DB Packet Storm
203605 5.4 警告
Network
IBM - IBM Kenexa LMS on Cloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-8920 2017-02-13 11:54 2016-11-11 Show GitHub Exploit DB Packet Storm
203606 5.4 警告
Network
IBM - IBM Kenexa LMS on Cloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6125 2017-02-13 11:54 2016-11-11 Show GitHub Exploit DB Packet Storm
203607 5.4 警告
Network
IBM - IBM Kenexa LMS on Cloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6123 2017-02-13 11:53 2016-11-11 Show GitHub Exploit DB Packet Storm
203608 6.1 警告
Network
IBM - IBM iNotes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6113 2017-02-13 11:53 2016-11-2 Show GitHub Exploit DB Packet Storm
203609 5.4 警告
Network
IBM - IBM Kenexa LMS on Cloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-5942 2017-02-13 11:53 2016-06-29 Show GitHub Exploit DB Packet Storm
203610 5.7 警告
Network
IBM - IBM Kenexa LMS on Cloud におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2016-5941 2017-02-13 11:53 2016-06-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291851 - polarssl
debian
polarssl
debian_linux
The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersu… CWE-310
Cryptographic Issues
CVE-2014-4911 2024-11-21 11:11 2014-07-22 Show GitHub Exploit DB Packet Storm
291852 - limesurvey limesurvey Incomplete blacklist vulnerability in the autoEscape function in common_helper.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to conduct cross-site scripting (XSS) attacks via the GBK c… NVD-CWE-Other
CVE-2014-5018 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291853 - limesurvey limesurvey SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx par… CWE-89
SQL Injection
CVE-2014-5017 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291854 - limesurvey limesurvey Multiple cross-site scripting (XSS) vulnerabilities in LimeSurvey 2.05+ Build 140618 allow remote attackers to inject arbitrary web script or HTML via (1) the pid attribute to the getAttribute_json f… CWE-79
Cross-site Scripting
CVE-2014-5016 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291855 - joomlaboat com_youtubegallery Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbit… CWE-89
SQL Injection
CVE-2014-4960 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291856 - opensuse
phpmyadmin
opensuse
phpmyadmin
server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x before 4.2.6 allows remote authenticated users to bypass intended access restrictions and read the MySQL user list via a viewUsers… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-4987 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291857 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 allow remote authenticated users to inject ar… CWE-79
Cross-site Scripting
CVE-2014-4986 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291858 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList function in libraries/rte/rte_list.lib.php in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 all… CWE-79
Cross-site Scripting
CVE-2014-4955 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291859 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLinks function in libraries/structure.lib.php in phpMyAdmin 4.2.x before 4.2.6 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting
CVE-2014-4954 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291860 - linux
suse
opensuse
redhat
debian
linux_kernel
linux_enterprise_desktop
linux_enterprise_server
opensuse
enterprise_linux_server_aus
debian_linux
The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket. CWE-269
 Improper Privilege Management
CVE-2014-4943 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm