Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208981	7.5	危険	The PHP Group	-	PHP の ext/soap/soap.c の SoapClient __call メソッドにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-6836	2016-01-26 15:25	2015-09-3	Show	GitHub Exploit DB Packet Storm

208982	5	警告	The PHP Group	-	PHP の PharData クラスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-6833	2016-01-26 15:25	2015-08-6	Show	GitHub Exploit DB Packet Storm

208983	7.5	危険	The PHP Group	-	PHP の ext/spl/spl_array.c の SPL アンシリアライズの実装における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-6832	2016-01-26 15:25	2015-08-6	Show	GitHub Exploit DB Packet Storm

208984	7.5	危険	The PHP Group	-	PHP の SPL における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-6831	2016-01-26 15:25	2015-08-6	Show	GitHub Exploit DB Packet Storm

208985	7.5	危険	The PHP Group	-	PHP の ext/standard/string.c の php_str_replace_in_subject 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-6527	2016-01-26 15:25	2015-12-3	Show	GitHub Exploit DB Packet Storm

208986	7.5	危険	The PHP Group	-	PHP の ext/phar/phar.c の phar_fix_filepath 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-5590	2016-01-26 15:25	2015-07-9	Show	GitHub Exploit DB Packet Storm

208987	5.5	警告	OpenStack	-	OpenStack Orchestration API の template-validate コマンドにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-5295	2016-01-26 14:48	2015-09-16	Show	GitHub Exploit DB Packet Storm

208988	7.5	危険	Jason A. Donenfeld	-	cgit の authenticate_post 関数における整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-1901	2016-01-26 14:33	2016-01-14	Show	GitHub Exploit DB Packet Storm

208989	4.3	警告	Jason A. Donenfeld	-	cgit の ui-shared.c の cgit_print_http_headers 関数における CRLF インジェクションの脆弱性	CWE-Other その他	CVE-2016-1900	2016-01-26 14:33	2016-01-14	Show	GitHub Exploit DB Packet Storm

208990	4.3	警告	Jason A. Donenfeld	-	cgit の ui-blob ハンドラにおける CRLF インジェクションの脆弱性	CWE-Other その他	CVE-2016-1899	2016-01-26 14:33	2016-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296991	-	wellintech	kinggraphic kingscada kingalarm\&event	WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote attac…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2826	2024-11-21 10:52	2014-01-16	Show	GitHub Exploit DB Packet Storm

296992	-	sierrawireless	raven_x_ev-do_firmware airlink_mp_at\&t airlink_mp_at\&t_wifi airlink_mp_bell airlink_mp_bell_wifi airlink_mp_row airlink_mp_row_wifi airlink_mp_sprint airlink_mp_spri…	The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to reprogram the firmware via a replay attack using UDP ports 17336 and 17388.	CWE-287 Improper Authentication	CVE-2013-2820	2024-11-21 10:52	2014-01-16	Show	GitHub Exploit DB Packet Storm

296993	-	sierrawireless	raven_x_ev-do_firmware airlink_mp_at\&t airlink_mp_at\&t_wifi airlink_mp_bell airlink_mp_bell_wifi airlink_mp_row airlink_mp_row_wifi airlink_mp_sprint airlink_mp_spri…	The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) upd…	CWE-255 Credentials Management	CVE-2013-2819	2024-11-21 10:52	2014-01-16	Show	GitHub Exploit DB Packet Storm

296994	-	idleman	leed	Leed (Light Feed), possibly before 1.5 Stable, allows remote attackers to bypass authorization via vectors related to the (1) importForm, (2) importFeed, (3) addFavorite, or (4) removeFavorite action…	CWE-20 Improper Input Validation	CVE-2013-2629	2024-11-21 10:52	2013-12-24	Show	GitHub Exploit DB Packet Storm

296995	-	novatech	orion5_dnp_slave orionlx_dnp_slave orion5r_dnp_master orion5r_dnp_slave orionlx_dnp_master orion5_dnp_master	NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow physically pro…	CWE-20 Improper Input Validation	CVE-2013-2822	2024-11-21 10:52	2013-12-21	Show	GitHub Exploit DB Packet Storm

296996	-	novatech	orion5_dnp_slave orionlx_dnp_slave orion5r_dnp_master orion5r_dnp_slave orionlx_dnp_master orion5_dnp_master	NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow remote attacke…	CWE-20 Improper Input Validation	CVE-2013-2821	2024-11-21 10:52	2013-12-21	Show	GitHub Exploit DB Packet Storm

296997	-	idleman	leed	Multiple cross-site request forgery (CSRF) vulnerabilities in action.php in Leed (Light Feed), possibly before 1.5 Stable, allow remote attackers to hijack the authentication of administrators for un…	CWE-352 Origin Validation Error	CVE-2013-2628	2024-11-21 10:52	2013-12-21	Show	GitHub Exploit DB Packet Storm

296998	-	idleman	leed	SQL injection vulnerability in action.php in Leed (Light Feed), possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action.	CWE-89 SQL Injection	CVE-2013-2627	2024-11-21 10:52	2013-12-21	Show	GitHub Exploit DB Packet Storm

296999	-	cooperindustries	smp_4_gateway_\(data_concentrator\) smp_4\/dp_gateway_\(data_concentrator\) smp_16_gateway_\(data_concentrator\)	The DNP3 component in Cooper Power Systems SMP 4, 4/DP, and 16 gateways allows physically proximate attackers to cause a denial of service (reboot or link outage) via crafted input over a serial line.	CWE-20 Improper Input Validation	CVE-2013-2816	2024-11-21 10:52	2013-12-18	Show	GitHub Exploit DB Packet Storm

297000	-	cooperindustries	dnp3_master_opc_server	Cooper Power Systems Cybectec DNP3 Master OPC Server allows remote attackers to cause a denial of service (unhandled exception and process crash) via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2013-2814	2024-11-21 10:52	2013-12-18	Show	GitHub Exploit DB Packet Storm