Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215321 5.4 警告 scudetto project - Android 用 Scudetto アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7677 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215322 5.4 警告 home made air freshener project - Android 用 Home Made Air Freshener アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7676 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215323 5.4 警告 ticketone - Android 用 TicketOne.it アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7674 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215324 5.4 警告 tekno apsis project - Android 用 Tekno Apsis アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7671 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215325 5.4 警告 alawar - Android 用 Motor Town: Machine Soul Free アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7670 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215326 5.4 警告 inzeratyzdarma - Android 用 Ads Free. Cz advert アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7668 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215327 5.4 警告 enyetech - Android 用 Coca-Cola FM Honduras アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7667 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215328 5.4 警告 pocketmags - Android 用 American Waterfowler アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7666 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215329 5.4 警告 bilingual magic ball relajo project - Android 用 Bilingual Magic Ball Relajo アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7664 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
215330 5.4 警告 go-nitty-gritty - Android 用 Right to the Nitty Gritty アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7663 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346151 - positive_software h-sphere Cross-site scripting (XSS) vulnerability in H-Sphere 2.5.1 Beta 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) next_template, (2) start, (3) curr_menu_id, an… NVD-CWE-Other
CVE-2006-3278 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346152 - cisco wireless_control_system The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) uses an undocumented, hard-coded username and password, which allows remote authenticated users to re… NVD-CWE-Other
CVE-2006-3285 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346153 - cisco wireless_control_system The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(63) stores a hard-coded username and password in plaintext within unspecified files, which allows remote … NVD-CWE-Other
CVE-2006-3286 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346154 - cisco wireless_control_system Cisco Wireless Control System (WCS) for Linux and Windows 4.0(1) and earlier uses a default administrator username "root" and password "public," which allows remote attackers to gain access (aka bug … NVD-CWE-Other
CVE-2006-3287 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346155 - cisco wireless_control_system Unspecified vulnerability in the TFTP server in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51), when configured to use a directory path name that contains a space character,… NVD-CWE-Other
CVE-2006-3288 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346156 - cisco wireless_control_system Cross-site scripting (XSS) vulnerability in the login page of the HTTP interface for the Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) allows remote attackers to inject arb… NVD-CWE-Other
CVE-2006-3289 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346157 - cisco wireless_control_system HTTP server in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) stores sensitive information under the web root with insufficient access control, which allows remote attackers… NVD-CWE-Other
CVE-2006-3290 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346158 - cisco ios The web interface on Cisco IOS 12.3(8)JA and 12.3(8)JA1, as used on the Cisco Wireless Access Point and Wireless Bridge, reconfigures itself when it is changed to use the "Local User List Only (Indiv… CWE-16
Configuration 		CVE-2006-3291 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346159 - proton energymech_irc_bot parse_notice (TiCPU) in EnergyMech (emech) before 3.0.2 allows remote attackers to cause a denial of service (crash) via empty IRC CTCP NOTICE messages. NVD-CWE-Other
CVE-2006-3293 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm
346160 - uebimiau uebimiau Cross-site scripting (XSS) vulnerability in error.php in UebiMiau Webmail 2.7.10 and earlier allows remote attackers to inject arbitrary web script or HTML via the icq parameter. NOTE: the provenanc… NVD-CWE-Other
CVE-2006-3297 2017-07-20 10:32 2006-06-29 Show GitHub Exploit DB Packet Storm