Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203801 9.8 緊急
Network 		Google - Android の libjhead で使用される Matthias Wandel jhead の exif.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-3822 2016-08-10 16:53 2016-08-1 Show GitHub Exploit DB Packet Storm
203802 7.3 重要
Network 		Google - Android のフレームワーク API におけるインテントフィルターのプライオリティを高くされる脆弱性 CWE-119
バッファエラー 		CVE-2016-2497 2016-08-10 16:53 2016-08-1 Show GitHub Exploit DB Packet Storm
203803 9.8 緊急
Network 		Google - Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9902 2016-08-10 16:53 2016-08-1 Show GitHub Exploit DB Packet Storm
203804 7.5 重要
Network 		Google - Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-9901 2016-08-10 16:53 2016-08-1 Show GitHub Exploit DB Packet Storm
203805 9.8 緊急
Network 		The PHP Group - PHP の ext/spl/spl_dllist.c の SplDoublyLinkedList::offsetSet 関数におけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2016-3132 2016-08-10 14:56 2016-04-28 Show GitHub Exploit DB Packet Storm
203806 9.8 緊急
Network 		The PHP Group - PHP の zip エクステンションの php_zip.c における整数オーバーフローの脆弱性 CWE-Other
その他 		CVE-2016-3078 2016-08-10 14:43 2016-04-28 Show GitHub Exploit DB Packet Storm
203807 5.4 警告
Network 		Apache Software Foundation - Apache ActiveMQ の管理 Web コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0782 2016-08-10 14:25 2016-03-14 Show GitHub Exploit DB Packet Storm
203808 5 警告 OpenSSL Project
オラクル		 - OpenSSL の d1_pkt.c の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-0206 2016-08-9 18:16 2015-01-7 Show GitHub Exploit DB Packet Storm
203809 5 警告 アップル
日本電気
OpenSSL Project
ヒューレット・パッカード
オラクル		 - OpenSSL における指紋ベースの認証ブラックリスト保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2014-8275 2016-08-9 18:15 2014-12-20 Show GitHub Exploit DB Packet Storm
203810 5 警告 アップル
OpenSSL Project
ヒューレット・パッカード
オラクル		 - OpenSSL の s3_clnt.c 内の ssl3_get_key_exchange 関数における ECDHE-to-ECDH ダウングレード攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2014-3572 2016-08-9 18:14 2014-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289881 - doug_poulin command_school_student_management_system Multiple SQL injection vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to execute arbitrary SQL commands via the id parameter in an edit action to (1) admin… CWE-89
SQL Injection 		CVE-2014-1636 2024-11-21 11:04 2014-01-23 Show GitHub Exploit DB Packet Storm
289882 - hiox hiox_guest_book Multiple cross-site scripting (XSS) vulnerabilities in add.php in HIOX Guest Book (HGB) 5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name1, (2) email, or (3) cmt para… CWE-79
Cross-site Scripting 		CVE-2014-1620 2024-11-21 11:04 2014-01-22 Show GitHub Exploit DB Packet Storm
289883 - cubicfactory cubic_cms Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to recursos/agen… CWE-89
SQL Injection 		CVE-2014-1619 2024-11-21 11:04 2014-01-22 Show GitHub Exploit DB Packet Storm
289884 - uaepd shopping_cart_script Multiple SQL injection vulnerabilities in UAEPD Shopping Cart Script allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) p_id parameter to products.php or id parameter … CWE-89
SQL Injection 		CVE-2014-1618 2024-11-21 11:04 2014-01-22 Show GitHub Exploit DB Packet Storm
289885 - freebsd freebsd Stack-based buffer overflow in lib/snmpagent.c in bsnmpd, as used in FreeBSD 8.3 through 10.0, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1452 2024-11-21 11:04 2014-01-22 Show GitHub Exploit DB Packet Storm
289886 - linux linux_kernel The yam_ioctl function in drivers/net/hamradio/yam.c in the Linux kernel before 3.12.8 does not initialize a certain structure member, which allows local users to obtain sensitive information from ke… CWE-399
 Resource Management Errors 		CVE-2014-1446 2024-11-21 11:04 2014-01-19 Show GitHub Exploit DB Packet Storm
289887 - linux linux_kernel The wanxl_ioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information f… CWE-399
 Resource Management Errors 		CVE-2014-1445 2024-11-21 11:04 2014-01-19 Show GitHub Exploit DB Packet Storm
289888 - linux linux_kernel The fst_get_iface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive informati… CWE-399
 Resource Management Errors 		CVE-2014-1444 2024-11-21 11:04 2014-01-19 Show GitHub Exploit DB Packet Storm
289889 - linux linux_kernel The restore_fpu_checking function in arch/x86/include/asm/fpu-internal.h in the Linux kernel before 3.12.8 on the AMD K7 and K8 platforms does not clear pending exceptions before proceeding to an EMM… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1438 2024-11-21 11:04 2014-01-19 Show GitHub Exploit DB Packet Storm
289890 - mcafee vulnerability_manager Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of use… CWE-352
 Origin Validation Error 		CVE-2014-1473 2024-11-21 11:04 2014-01-16 Show GitHub Exploit DB Packet Storm