Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215281 5.4 警告 goo - Android 用 Dj Brad H アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7727 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215282 5.4 警告 golosinassimpson - Android 用 Golosinas Simpson1 アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7726 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215283 5.4 警告 インターネット セキュリティ システムズ - Android 用 Rally Albania Live 2014 アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7725 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215284 5.4 警告 chemssou blink project - Android 用 Chemssou Blink アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7724 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215285 5.4 警告 Carnegie Mellon University (Project Cyrus) - Android 用 Carnegie Mellon Silicon Valley アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7723 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215286 5.4 警告 Magzter Inc. - Android 用 Indian Jeweller アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7722 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215287 5.4 警告 flexymind - Android 用 President Clicker アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7721 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215288 5.4 警告 pacificmags - Android 用 Better Homes and Gardens Aus アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7720 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215289 5.4 警告 mobile - Android 用 BASEBALL MANAGER K アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7719 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215290 5.4 警告 tiket - Android 用 Tiket.com Hotel & Flight アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7712 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293521 - project-redcap
vanderbilt 		redcap Cross-site scripting (XSS) vulnerability in REDCap before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via vectors involving the Graphical Data View & Descriptive Stats page. CWE-79
Cross-site Scripting 		CVE-2013-4608 2024-11-21 10:55 2013-06-17 Show GitHub Exploit DB Packet Storm
293522 9.8 CRITICAL
Network 		swfupload_project swfupload There is an object injection vulnerability in swfupload plugin for wordpress. CWE-74
Injection 		CVE-2013-4144 2024-11-21 10:54 2022-07-1 Show GitHub Exploit DB Packet Storm
293523 6.5 MEDIUM
Network 		otrs otrs Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.21, 3.1.x before 3.1.17, and 3.2.x before 3.2.8 does not properly restrict tickets, which allows remote atta… CWE-200
Information Exposure 		CVE-2013-4088 2024-11-21 10:54 2020-02-22 Show GitHub Exploit DB Packet Storm
293524 7.5 HIGH
Network 		opensips opensips A Denial of Service (infinite loop) exists in OpenSIPS before 1.10 in lookup.c. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2013-3722 2024-11-21 10:54 2020-02-18 Show GitHub Exploit DB Packet Storm
293525 9.8 CRITICAL
Network 		zabbix zabbix A File Inclusion vulnerability exists in Zabbix 2.0.6 due to inadequate sanitization of request strings in CGI scripts, which could let a remote malicious user execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2013-3738 2024-11-21 10:54 2020-02-18 Show GitHub Exploit DB Packet Storm
293526 9.8 CRITICAL
Network 		invisioncommunity invision_power_board Invision Power Board (IPB) through 3.x allows admin account takeover leading to code execution. NVD-CWE-noinfo
CVE-2013-3725 2024-11-21 10:54 2020-02-13 Show GitHub Exploit DB Packet Storm
293527 7.5 HIGH
Network 		varnish_cache_project varnish_cache Varnish HTTP cache before 3.0.4: ACL bug NVD-CWE-Other
CVE-2013-4090 2024-11-21 10:54 2020-02-13 Show GitHub Exploit DB Packet Storm
293528 7.0 HIGH
Local 		spritesoftware spritebackup
spritebud 		A Privilege Escalation Vulnerability exists in Sprite Software Spritebud 1.3.24 and 1.3.28 and Backup 2.5.4105 and 2.5.4108 on LG Android smartphones due to a race condition in the spritebud daemon, … CWE-362
Race Condition 		CVE-2013-3685 2024-11-21 10:54 2020-02-13 Show GitHub Exploit DB Packet Storm
293529 7.8 HIGH
Local 		daum potplayer Potplayer prior to 1.5.39659: DLL Loading Arbitrary Code Execution Vulnerability CWE-426
 Untrusted Search Path 		CVE-2013-3942 2024-11-21 10:54 2020-02-12 Show GitHub Exploit DB Packet Storm
293530 9.8 CRITICAL
Network 		imagely nextgen_gallery NextGEN Gallery plugin before 1.9.13 for WordPress: ngggallery.php file upload CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2013-3684 2024-11-21 10:54 2020-02-12 Show GitHub Exploit DB Packet Storm