Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209491	6.8	警告	Google	-	Android の Binder の libs/binder/Parcel.cpp の Parcel::appendFrom 関数における異なるアプリケーションの権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-3845	2015-10-2 17:08	2015-08-13	Show	GitHub Exploit DB Packet Storm

209492	6.8	警告	Google	-	Android の ActivityManager における誤ったプロセスのローディングを誘発される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-3844	2015-10-2 17:08	2015-07-9	Show	GitHub Exploit DB Packet Storm

209493	9.3	危険	Google	-	Android の SIM Toolkit における不特定の Telephony STK SIM コマンドをインターセプトされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-3843	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209494	9.3	危険	Google	-	Android のメディアサーバの Audio Policy Service 内の libeffects におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-3842	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209495	9.3	危険	Google	-	Android の org/conscrypt/OpenSSLX509Certificate.java の OpenSSLX509Certificate クラスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2015-3837	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209496	10	危険	Google	-	Android の Sonivox DLS-to-EAS コンバータの arm-wt-22k/lib_src/eas_mdls.c 内の Parse_wave 関数における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2015-3836	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209497	9.3	危険	Google	-	Android の libstagefright の omx/OMXNodeInstance.cpp 内の OMXNodeInstance::emptyBuffer 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-3835	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209498	10	危険	Google	-	Android の libstagefright の media/libmedia/IHDCP.cpp 内の BnHDCP::onTransact 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2015-3834	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209499	4.3	警告	Google	-	Android の services/core/java/com/android/server/am/ActivityManagerService.java における getRecentTasks 制限を回避される脆弱性	CWE-Other その他	CVE-2015-3833	2015-10-2 16:38	2015-07-9	Show	GitHub Exploit DB Packet Storm

209500	10	危険	Google	-	Android の libstagefright の MPEG4Extractor.cpp におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-3832	2015-10-2 16:37	2015-07-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345451	-	ajsquare	aj_shopping_cart	SQL injection vulnerability in index.php in AJ Shopping Cart 1.0 allows remote attackers to execute arbitrary SQL commands via the maincatid parameter in a showmaincatlanding action.	CWE-89 SQL Injection	CVE-2010-1876	2017-08-17 10:32	2010-05-12	Show	GitHub Exploit DB Packet Storm

345452	-	jtmreseller	com_jtm	SQL injection vulnerability in the JTM Reseller (com_jtm) component 1.9 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the author parameter in a search action to index…	CWE-89 SQL Injection	CVE-2010-1877	2017-08-17 10:32	2010-05-12	Show	GitHub Exploit DB Packet Storm

345453	-	blueflyingfish.no-ip	com_orgchart	Directory traversal vulnerability in the OrgChart (com_orgchart) component 1.0.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.ph…	CWE-22 Path Traversal	CVE-2010-1878	2017-08-17 10:32	2010-05-12	Show	GitHub Exploit DB Packet Storm

345454	-	php	php	The Zend Engine in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information by interrupting the handler for the (1) ZEND_BW_XOR opcode (shift_le…	CWE-200 Information Exposure	CVE-2010-1914	2017-08-17 10:32	2010-05-12	Show	GitHub Exploit DB Packet Storm

345455	-	php	php	The preg_quote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information (memory contents) by causing a userspace interruption of an …	CWE-200 Information Exposure	CVE-2010-1915	2017-08-17 10:32	2010-05-12	Show	GitHub Exploit DB Packet Storm

345456	-	php	php	Stack consumption vulnerability in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service (PHP crash) via a crafted first argument to the fnmatch…	CWE-399 Resource Management Errors	CVE-2010-1917	2017-08-17 10:32	2010-05-12	Show	GitHub Exploit DB Packet Storm

345457	-	phpscripte24	web_social_network_freunde_community	SQL injection vulnerability in user.php in Hi Web Wiesbaden Web 2.0 Social Network Freunde Community System allows remote attackers to execute arbitrary SQL commands via the id parameter in a showgal…	CWE-89 SQL Injection	CVE-2010-1923	2017-08-17 10:32	2010-05-13	Show	GitHub Exploit DB Packet Storm

345458	-	phpscripte24	live_shopping_multi_portal_system	SQL injection vulnerability in index.php in Hi Web Wiesbaden Live Shopping Multi Portal System allows remote attackers to execute arbitrary SQL commands via the artikel parameter.	CWE-89 SQL Injection	CVE-2010-1924	2017-08-17 10:32	2010-05-13	Show	GitHub Exploit DB Packet Storm

345459	-	openmairie	openplanning	Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via direct…	CWE-22 Path Traversal	CVE-2010-1928	2017-08-17 10:32	2010-05-13	Show	GitHub Exploit DB Packet Storm

345460	-	openmairie	openpresse	Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via director…	CWE-22 Path Traversal	CVE-2010-1935	2017-08-17 10:32	2010-05-13	Show	GitHub Exploit DB Packet Storm