Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204341 6.3 警告
Network
WordPress.org - WordPress のアップグレードパッケージのアップローダにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2016-7169 2017-01-17 14:27 2016-09-7 Show GitHub Exploit DB Packet Storm
204342 4.8 警告
Network
WordPress.org - WordPress の wp-admin/includes/media.php の media_handle_upload 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-7168 2017-01-17 14:27 2016-09-7 Show GitHub Exploit DB Packet Storm
204343 7.8 重要
Local
Linux - Linux Kernel のプロファイリングサブシステムにおける権限を取得される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2016-9754 2017-01-17 10:57 2016-06-1 Show GitHub Exploit DB Packet Storm
204344 7.3 重要
Network
MetalGenix - GeniXCMS の register.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2016-10096 2017-01-17 10:46 2016-08-14 Show GitHub Exploit DB Packet Storm
204345 7.5 重要
Network
The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2016-8860 2017-01-17 10:44 2016-10-17 Show GitHub Exploit DB Packet Storm
204346 9.8 緊急
Network
ICU project - C/C++ 用 International Components for Unicode の common/uresbund.cpp の ures_getByKeyWithFallback 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2014-9911 2017-01-17 10:14 2014-05-9 Show GitHub Exploit DB Packet Storm
204347 7.5 重要
Network
ForgeRock - OpenAM - Access Management の /SSOPOST/metaAlias/%realm%/idpv2 における任意のファイルを読まれる脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2016-10097 2017-01-17 09:54 2016-03-20 Show GitHub Exploit DB Packet Storm
204348 3.7
Network
Dotclear - Dotclear におけるパスワードリセットのアドレスのリンクを変更される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-7903 2017-01-16 18:17 2016-11-1 Show GitHub Exploit DB Packet Storm
204349 8.8 重要
Network
Dotclear - Dotclear の fileUnzip->unzip メソッドにおける任意のコードを実行される脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2016-7902 2017-01-16 18:17 2016-11-1 Show GitHub Exploit DB Packet Storm
204350 9.8 緊急
Network
ベリタス - Veritas NetBackup アプライアンスの scripts/license.pl における任意のコマンドを実行される脆弱性 CWE-77
コマンドインジェクション
CVE-2016-7399 2017-01-16 17:51 2016-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291011 - nespresso nespresso The Nespresso (aka com.nespresso.activities) application 2.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain se… CWE-310
Cryptographic Issues
CVE-2014-5899 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291012 - heavy_duty_truck_driver_simulator_3d_project heavy_duty_truck_driver_simulator_3d The Heavy Duty Truck Driver Simulator 3D (aka com.oas.heavy.duty.truck.driver.simulator3d) application 1.0.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-m… CWE-310
Cryptographic Issues
CVE-2014-5898 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291013 - parallelmafia parallel_mafia_mmorpg The Parallel Mafia MMORPG (aka com.perblue.pm.client) application @7F070000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers … CWE-310
Cryptographic Issues
CVE-2014-5897 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291014 - seawolftech globaltalk-_free_phone_calls The GlobalTalk- free phone calls (aka com.seawolftech.globaltalk) application 2.1.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof … CWE-310
Cryptographic Issues
CVE-2014-5896 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291015 - shopyourway shopyourway The ShopYourWay (aka com.sears.shopyourway) application 1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensi… CWE-310
Cryptographic Issues
CVE-2014-5895 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291016 - pingshow airetalk_text_call_\&_more\! The AireTalk: Text, Call, & More! (aka com.pingshow.amper) application 2.0.73 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server… CWE-310
Cryptographic Issues
CVE-2014-5894 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291017 - shinsegaemall froyo The froyo (aka com.shinsegae.mobile.froyo) application 5.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sens… CWE-310
Cryptographic Issues
CVE-2014-5893 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291018 - olleh greenbill The greenbill (aka com.show.greenbill_G) application 2.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensit… CWE-310
Cryptographic Issues
CVE-2014-5892 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291019 - snipsnap snipsnap_coupon_app The SnipSnap Coupon App (aka com.snipsnap.snipsnapapp) application 1.1.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers an… CWE-310
Cryptographic Issues
CVE-2014-5891 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm
291020 - sports2i kbo_sports2i_2014 The KBO sports2i 2014 (aka com.sports2i) application 5.1.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensi… CWE-310
Cryptographic Issues
CVE-2014-5890 2024-11-21 11:13 2014-09-15 Show GitHub Exploit DB Packet Storm