Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 12:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204191 7.8 重要
Local
GStreamer - GStreamer の gst_h264_parse_set_caps 関数における脆弱性 CWE-125
境界外読み取り
CVE-2016-9809 2017-01-27 13:40 2016-11-29 Show GitHub Exploit DB Packet Storm
204192 7.5 重要
Network
GStreamer - GStreamer の FLIC デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-787
境界外書き込み
CVE-2016-9808 2017-01-27 13:40 2016-11-29 Show GitHub Exploit DB Packet Storm
204193 5.5 警告
Local
GStreamer - GStreamer の gst/flx/gstflxdec.c の flx_decode_chunks 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-9807 2017-01-27 13:40 2016-11-29 Show GitHub Exploit DB Packet Storm
204194 5.5 警告
Local
Google - ブートローダにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-8467 2017-01-27 11:16 2016-10-29 Show GitHub Exploit DB Packet Storm
204195 8.8 重要
Network
ntop - ntopng におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2017-5473 2017-01-27 11:02 2017-01-12 Show GitHub Exploit DB Packet Storm
204196 8.8 重要
Network
s9y - Serendipity におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2017-5476 2017-01-27 10:57 2017-01-12 Show GitHub Exploit DB Packet Storm
204197 8.8 重要
Network
s9y - Serendipity の comment.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2017-5475 2017-01-27 10:57 2017-01-12 Show GitHub Exploit DB Packet Storm
204198 6.1 警告
Network
s9y - Serendipity の comment.php におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト
CVE-2017-5474 2017-01-27 10:57 2017-01-12 Show GitHub Exploit DB Packet Storm
204199 5.5 警告
Local
JasPer Project - JasPer の jpc_dec.c の jpc_dec_tiledecode 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2016-8883 2017-01-27 10:54 2016-10-20 Show GitHub Exploit DB Packet Storm
204200 5.5 警告
Local
JasPer Project - JasPer の libjasper/jpc/jpc_dec.c の jpc_dec_tilefini 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-8882 2017-01-27 10:54 2016-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292201 - artifectx xclassified SQL injection vulnerability in demo/ads.php in Artifectx xClassified 1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter. CWE-89
SQL Injection
CVE-2014-4741 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292202 - linux
debian
canonical
linux_kernel
debian_linux
ubuntu_linux
The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows … CWE-362
Race Condition
CVE-2014-4699 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292203 - adobe flash_player
adobe_air
adobe_air_sdk
Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on Windows and OS X and before 11.2.202.394 on Linux, Adobe AIR before 14.0.0.137 on Android, Adobe AIR SDK before 14.0.0.137, and Adob… CWE-352
 Origin Validation Error
CVE-2014-4671 2024-11-21 11:10 2014-07-9 Show GitHub Exploit DB Packet Storm
292204 - custom_banners_project custom_banners Cross-site scripting (XSS) vulnerability in the Custom Banners plugin 1.2.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_banners_registered_name param… CWE-79
Cross-site Scripting
CVE-2014-4724 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292205 - easy_banners_plugin_project easy_banners Cross-site scripting (XSS) vulnerability in the Easy Banners plugin 1.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the name parameter to wp-admin/options-general… CWE-79
Cross-site Scripting
CVE-2014-4723 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292206 - ocsinventory-ng ocsinventory_ng Multiple cross-site scripting (XSS) vulnerabilities in the OCS Reports Web Interface in OCS Inventory NG allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2014-4722 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292207 - foxitsoftware foxit_pdf_sdk_dll Buffer overflow in the FPDFBookmark_GetTitle method in Foxit PDF SDK DLL before 3.1.1.5005 allows context-dependent attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-4646 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292208 - php
debian
php
debian_linux
The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_S… CWE-200
Information Exposure
CVE-2014-4721 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292209 - email\ \ Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service (CPU consumption) via vectors related to "backtracking i… NVD-CWE-Other
CVE-2014-4720 2024-11-21 11:10 2014-07-7 Show GitHub Exploit DB Packet Storm
292210 - yiiframework yiiframework The CDetailView widget in Yii PHP Framework 1.1.14 allows remote attackers to execute arbitrary PHP scripts via vectors related to the value property. CWE-94
Code Injection
CVE-2014-4672 2024-11-21 11:10 2014-07-4 Show GitHub Exploit DB Packet Storm