Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203691	8.8	重要 Network	The PHP Group	-	PHP の ext/phar/dirstream.c の phar_make_dirstream 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-4343	2016-10-26 15:27	2016-02-4	Show	GitHub Exploit DB Packet Storm

203692	8.8	重要 Network	The PHP Group	-	PHP の ext/phar/phar_object.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-4342	2016-10-26 15:26	2016-02-4	Show	GitHub Exploit DB Packet Storm

203693	9.8	緊急 Network	The PHP Group アップル	-	PHP の ext/mbstring/libmbfl/mbfl/mbfilter.c の mbfl_strcut 関数における整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-4073	2016-10-26 15:26	2016-03-31	Show	GitHub Exploit DB Packet Storm

203694	7.5	重要 Network	The PHP Group アップル	-	PHP の ext/standard/url.c の php_raw_url_encode 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2016-4070	2016-10-26 15:25	2016-03-31	Show	GitHub Exploit DB Packet Storm

203695	9.8	緊急 Network	The PHP Group アップル	-	PHP の ext/snmp/snmp.c の php_snmp_error 関数におけるフォーマットストリングの脆弱性	CWE-20 不適切な入力確認	CVE-2016-4071	2016-10-26 15:24	2016-03-31	Show	GitHub Exploit DB Packet Storm

203696	9.8	緊急 Network	The PHP Group アップル	-	PHP の Phar エクステンションにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-4072	2016-10-26 15:23	2016-03-31	Show	GitHub Exploit DB Packet Storm

203697	9.8	緊急 Network	LibGD project Debian	-	GD Graphics Library における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2016-3074	2016-10-26 15:22	2016-04-16	Show	GitHub Exploit DB Packet Storm

203698	8.1	重要 Network	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile Engineering Data Management における webfileservices に関する脆弱性	CWE-noinfo 情報不足	CVE-2016-5518	2016-10-26 14:33	2016-10-18	Show	GitHub Exploit DB Packet Storm

203699	5.5	警告 Local	オラクル	-	Oracle E-Business Suite の Oracle Applications DBA における AD Utilities に関する脆弱性	CWE-Other その他	CVE-2016-5517	2016-10-26 14:32	2016-10-18	Show	GitHub Exploit DB Packet Storm

203700	6	警告 Local	オラクル	-	Oracle Database Server の Kernel PDB における脆弱性	CWE-noinfo 情報不足	CVE-2016-5516	2016-10-26 14:28	2016-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291891	-	qualcomm	eudora_worldmail	Buffer overflow in the IMAPd service in Qualcomm Eudora WorldMail 9.0.333.0 allows remote attackers to execute arbitrary code via a long string in a UID command.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-10031	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291892	-	malwarebytes	malwarebytes_anti-exploit	mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to cause a denial of service (crash) via a crafted size in an unspecified IOCTL call, which triggers an out-of-bounds read.…	CWE-20 Improper Input Validation	CVE-2014-100039	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291893	-	storytlr	storytlr	Cross-site scripting (XSS) vulnerability in Storytlr 1.3.dev and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter to search/.	CWE-79 Cross-site Scripting	CVE-2014-100038	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291894	-	storytlr	storytlr	Cross-site scripting (XSS) vulnerability in Storytlr 1.3.dev and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to archives/.	CWE-79 Cross-site Scripting	CVE-2014-100037	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291895	-	flatpress	flatpress	Cross-site scripting (XSS) vulnerability in FlatPress 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the content parameter to the default URI.	CWE-79 Cross-site Scripting	CVE-2014-100036	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291896	-	licensepal	arcticdesk	SQL injection vulnerability in the ticket grid in the admin interface in LicensePal ArcticDesk before 1.2.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2014-100035	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291897	-	licensepal	arcticdesk	Cross-site scripting (XSS) vulnerability in the frontend interface in LicensePal ArcticDesk before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-100034	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291898	-	licensepal	arcticdesk	Directory traversal vulnerability in LicensePal ArcticDesk before 1.2.5 allows remote attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2014-100033	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291899	-	airties	air_6372	Cross-site scripting (XSS) vulnerability in top.html in the Airties Air 6372 modem allows remote attackers to inject arbitrary web script or HTML via the productboardtype parameter.	CWE-79 Cross-site Scripting	CVE-2014-100032	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm

291900	-	ismail_fahmi	ganesha_digital_library	Multiple SQL injection vulnerabilities in Ganesha Digital Library (GDL) 4.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) download.php or (2) main.php.	CWE-89 SQL Injection	CVE-2014-100031	2024-11-21 11:03	2015-01-14	Show	GitHub Exploit DB Packet Storm