Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210161 5.4 警告 loving.fm - Android 用 Loving - Couple Essential アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5972 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210162 5.4 警告 babybus - Android 用 BabyBus アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5970 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210163 5.4 警告 healthylifestyle project - Android 用 healthylifestyle アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5969 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210164 5.4 警告 igolf - Android 用 iGolf - Golf GPS アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5968 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210165 5.4 警告 decoracionesnailart - Android 用 Designs Nail Arts アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5967 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210166 5.4 警告 golauncher - Android 用 Dreamland Super Theme GO Gold アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5966 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210167 5.4 警告 groovemusic project - Android 用 GrooveMusic アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5965 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210168 5.4 警告 megabank - Android 用 MegaBank アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5964 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210169 5.4 警告 corntree - Android 用 Halieutics アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5963 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210170 5.4 警告 gamelikeapps - Android 用 Guess The Actor アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5962 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307331 - accomplishtechnology phpmydirectory Cross-site scripting (XSS) vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the letter parameter. NOTE: the provenan… CWE-79
Cross-site Scripting 		CVE-2006-4755 2012-10-22 13:00 2006-09-14 Show GitHub Exploit DB Packet Storm
307332 - accomplishtechnology phpmydirectory SQL injection vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to execute arbitrary SQL commands via the letter parameter. NOTE: the provenance of this informa… CWE-89
SQL Injection 		CVE-2006-4756 2012-10-22 13:00 2006-09-14 Show GitHub Exploit DB Packet Storm
307333 - plogger plogger SQL injection vulnerability in Plogger Beta 2 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id parameter to index.php and (2) page parameter. CWE-89
SQL Injection 		CVE-2005-4246 2012-10-22 13:00 2005-12-14 Show GitHub Exploit DB Packet Storm
307334 - plogger plogger Cross-site scripting (XSS) vulnerability in index.php in Plogger Beta 2 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. CWE-79
Cross-site Scripting 		CVE-2005-4247 2012-10-22 13:00 2005-12-14 Show GitHub Exploit DB Packet Storm
307335 - amd
ati 		catalyst_driver The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecif… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-4315 2012-10-18 13:00 2007-08-14 Show GitHub Exploit DB Packet Storm
307336 - k5n webcalendar Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar 1.2.0, and other versions before 1.2.5, allow remote attackers to inject arbitrary web script or HTML via the (1) tab parameter to u… CWE-79
Cross-site Scripting 		CVE-2010-0636 2012-10-13 11:58 2010-02-13 Show GitHub Exploit DB Packet Storm
307337 - k5n webcalendar Multiple cross-site request forgery (CSRF) vulnerabilities in WebCalendar 1.2.0, and other versions before 1.2.5, allow remote attackers to hijack the authentication of administrators for requests th… CWE-352
 Origin Validation Error 		CVE-2010-0637 2012-10-13 11:58 2010-02-13 Show GitHub Exploit DB Packet Storm
307338 - html2ps_project html2ps Unknown vulnerability in html2ps HTML/PostScript converter 1.0, when used within LPRng, allows remote attackers to execute arbitrary code via "unsanitized input." NVD-CWE-noinfo
CVE-2002-1275 2012-10-11 13:00 2002-11-12 Show GitHub Exploit DB Packet Storm
307339 - ultravnc ultravnc Stack-based buffer overflow in the ClientConnection::NegotiateProtocolVersion function in vncviewer/ClientConnection.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING m… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0610 2012-08-14 11:37 2008-02-6 Show GitHub Exploit DB Packet Storm
307340 - boesch_it-consulting simpnews Multiple cross-site scripting (XSS) vulnerabilities in Boesch SimpNews before 2.34.01 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) admin/index.php, … CWE-79
Cross-site Scripting 		CVE-2006-5530 2012-08-6 13:00 2006-10-27 Show GitHub Exploit DB Packet Storm