Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
203951 6.5 警告
Network
LibTIFF - Libtiff の _TIFFVGetField 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-5318 2017-01-30 19:36 2016-04-27 Show GitHub Exploit DB Packet Storm
203952 6.5 警告
Network
openSUSE project
LibTIFF
- GNOME nautilus で使用される Libtiff の PixarLogDecode 関数の libtiff.so の PixarLogDecode 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-5317 2017-01-30 19:36 2016-07-27 Show GitHub Exploit DB Packet Storm
203953 6.5 警告
Network
openSUSE project
LibTIFF
- Libtiff の tif_pixarlog.c の PixarLogCleanup 関数における境界外読み取りの脆弱性 CWE-125
境界外読み取り
CVE-2016-5316 2017-01-30 19:36 2016-07-27 Show GitHub Exploit DB Packet Storm
203954 7.8 重要
Local
NetBSD - NetBSD の mail.local における所有権を変更される脆弱性 CWE-59
リンク解釈の問題
CVE-2016-6253 2017-01-30 17:32 2016-07-20 Show GitHub Exploit DB Packet Storm
203955 6.5 警告
Network
w3m project
openSUSE project
- w3m の parsetagx.c におけるアプリケーションのクラッシュを引き起こされる脆弱性 CWE-20
不適切な入力確認
CVE-2016-9436 2017-01-30 16:57 2016-08-20 Show GitHub Exploit DB Packet Storm
203956 6.5 警告
Network
w3m project
openSUSE project
- w3m の file.c の HTMLtagproc1 関数におけるアプリケーションのクラッシュを引き起こされる脆弱性 CWE-20
不適切な入力確認
CVE-2016-9435 2017-01-30 16:57 2016-08-20 Show GitHub Exploit DB Packet Storm
203957 7 重要
Local
Lenovo - Lenovo XClarity Administrator における権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-8221 2017-01-30 16:48 2016-10-13 Show GitHub Exploit DB Packet Storm
203958 6.1 警告
Network
Exponent CMS project - Exponent CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-8684 2017-01-30 16:46 2015-12-25 Show GitHub Exploit DB Packet Storm
203959 6.1 警告
Network
Exponent CMS project - Exponent CMS の Reset Your Password モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-8667 2017-01-30 16:46 2015-12-24 Show GitHub Exploit DB Packet Storm
203960 7.8 重要
Local
サムスン - Samsung Note デバイスの Telecom アプリケーションの SmartCall Activity コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-6527 2017-01-30 16:45 2016-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289521 - magzter gent_magazine The Gent Magazine (aka com.magzter.thegentmagazine) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obta… CWE-310
Cryptographic Issues
CVE-2014-7660 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289522 - expeditersonline expeditersonline.com_forum The ExpeditersOnline.com Forum (aka com.quoord.tapatalkeo.activity) application 3.7.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spo… CWE-310
Cryptographic Issues
CVE-2014-7659 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289523 - magzter indian_management The Indian Management (aka com.magzter.indianmanagement) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and… CWE-310
Cryptographic Issues
CVE-2014-7656 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289524 - verkehrsmuseum-dresden dresden_transport_museum The Dresden Transport Museum (aka de.appack.project.vmd) application 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and… CWE-310
Cryptographic Issues
CVE-2014-7655 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289525 - magicam_photo_magic_editor_project magicam_photo_magic_editor The Magicam Photo Magic Editor (aka mobi.magicam.editor) application 5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and… CWE-310
Cryptographic Issues
CVE-2014-7652 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289526 - ashok88 jja-_juvenile_justice_act_1986 The JJA- Juvenile Justice Act 1986 (aka com.felix.jja) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and o… CWE-310
Cryptographic Issues
CVE-2014-7650 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289527 - pocketmags classic_car_buyer The Classic Car Buyer (aka com.magazinecloner.carbuyer) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server… CWE-310
Cryptographic Issues
CVE-2014-7649 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289528 - ip-phone-smart smartalk The SMARTalk (aka jp.co.fusioncom.smartalk.android) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obta… CWE-310
Cryptographic Issues
CVE-2014-7648 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289529 - mygoodhotels booking_discount The BOOKING DISCOUNT (aka com.wmygoodhotelscom) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain s… CWE-310
Cryptographic Issues
CVE-2014-7647 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm
289530 - buzztouch emt-paramedic_lite The EMT-Paramedic Lite (aka com.wEMTparamedicLite) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtai… CWE-310
Cryptographic Issues
CVE-2014-7646 2024-11-21 11:17 2014-10-21 Show GitHub Exploit DB Packet Storm