Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
203821 7.8 重要
Local
Adups - BLU R1 HD デバイス上で稼動する Adups FOTA の com.adups.fota.sysoper におけるファイルを読まれる脆弱性 CWE-310
暗号の問題
CVE-2016-10137 2017-02-6 13:45 2016-11-15 Show GitHub Exploit DB Packet Storm
203822 7.8 重要
Local
Adups - BLU R1 HD デバイス上で稼動する Adups FOTA の com.adups.fota.sysoper におけるファイルを読まれる脆弱性 CWE-310
暗号の問題
CVE-2016-10136 2017-02-6 13:45 2016-11-15 Show GitHub Exploit DB Packet Storm
203823 6.1 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Universal Banking における Core に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2017-3314 2017-02-6 11:27 2017-01-17 Show GitHub Exploit DB Packet Storm
203824 5.3 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Direct Banking における Framework に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2017-3297 2017-02-6 11:27 2017-01-17 Show GitHub Exploit DB Packet Storm
203825 4.7 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Direct Banking における Pre-Login に関する脆弱性 CWE-200
情報漏えい
CVE-2017-3245 2017-02-6 11:27 2017-01-17 Show GitHub Exploit DB Packet Storm
203826 4.7 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Universal Banking における Core に関する脆弱性 CWE-20
不適切な入力確認
CVE-2017-3236 2017-02-6 11:27 2017-01-17 Show GitHub Exploit DB Packet Storm
203827 3.5
Physics
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Universal Banking における Core に関する脆弱性 CWE-254
セキュリティ機能
CVE-2017-3235 2017-02-6 11:27 2017-01-17 Show GitHub Exploit DB Packet Storm
203828 5.3 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Core Banking における Core に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2016-8324 2017-02-6 11:26 2017-01-17 Show GitHub Exploit DB Packet Storm
203829 5.4 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Core Banking における Core に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2016-8323 2017-02-6 11:26 2017-01-17 Show GitHub Exploit DB Packet Storm
203830 4.3 警告
Network
オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Core Banking における Core に関する脆弱性 CWE-200
情報漏えい
CVE-2016-8322 2017-02-6 11:26 2017-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291851 - polarssl
debian
polarssl
debian_linux
The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersu… CWE-310
Cryptographic Issues
CVE-2014-4911 2024-11-21 11:11 2014-07-22 Show GitHub Exploit DB Packet Storm
291852 - limesurvey limesurvey Incomplete blacklist vulnerability in the autoEscape function in common_helper.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to conduct cross-site scripting (XSS) attacks via the GBK c… NVD-CWE-Other
CVE-2014-5018 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291853 - limesurvey limesurvey SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx par… CWE-89
SQL Injection
CVE-2014-5017 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291854 - limesurvey limesurvey Multiple cross-site scripting (XSS) vulnerabilities in LimeSurvey 2.05+ Build 140618 allow remote attackers to inject arbitrary web script or HTML via (1) the pid attribute to the getAttribute_json f… CWE-79
Cross-site Scripting
CVE-2014-5016 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291855 - joomlaboat com_youtubegallery Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbit… CWE-89
SQL Injection
CVE-2014-4960 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
291856 - opensuse
phpmyadmin
opensuse
phpmyadmin
server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x before 4.2.6 allows remote authenticated users to bypass intended access restrictions and read the MySQL user list via a viewUsers… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-4987 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291857 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 allow remote authenticated users to inject ar… CWE-79
Cross-site Scripting
CVE-2014-4986 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291858 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList function in libraries/rte/rte_list.lib.php in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 all… CWE-79
Cross-site Scripting
CVE-2014-4955 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291859 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLinks function in libraries/structure.lib.php in phpMyAdmin 4.2.x before 4.2.6 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting
CVE-2014-4954 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
291860 - linux
suse
opensuse
redhat
debian
linux_kernel
linux_enterprise_desktop
linux_enterprise_server
opensuse
enterprise_linux_server_aus
debian_linux
The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket. CWE-269
 Improper Privilege Management
CVE-2014-4943 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm