Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216271	5.4	警告	hobbylobby	-	Android 用 Hobby Lobby Stores アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5829	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216272	5.4	警告	drei	-	Android 用 3Kundenzone アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5828	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216273	5.4	警告	ibotta	-	Android 用 Ibotta - Better than Coupons. アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5827	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216274	5.4	警告	rix go locker theme project	-	Android 用 Rix GO Locker Theme アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5826	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216275	5.4	警告	jinfra	-	Android 用 Guess The Movie アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5825	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216276	5.4	警告	ilovegame	-	Android 用 longjiang アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5824	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216277	5.4	警告	thecleanerapp	-	Android 用 The Cleaner - Speed up & Clean アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5823	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216278	5.4	警告	kate mobile	-	Android 用 VK Kate Mobile アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5822	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216279	5.4	警告	guitartuna	-	Android 用 Guitar Tuner Free - GuitarTuna アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5821	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

216280	5.4	警告	okcupid	-	Android 用 OkCupid Dating (com.okcupid.okcupid) アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5820	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291491	-	wireshark	wireshark	The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote atta…	CWE-20 Improper Input Validation	CVE-2013-7112	2024-11-21 11:00	2013-12-20	Show	GitHub Exploit DB Packet Storm

291492	-	digium	asterisk asterisk_digiumphones certified_asterisk	Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-7100	2024-11-21 11:00	2013-12-20	Show	GitHub Exploit DB Packet Storm

291493	-	cisco	epc3925	Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a passwo…	CWE-352 Origin Validation Error	CVE-2013-6976	2024-11-21 11:00	2013-12-20	Show	GitHub Exploit DB Packet Storm

291494	-	webbynode	webbynode	The message function in lib/webbynode/notify.rb in the Webbynode gem 1.0.5.3 and earlier for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a growln…	CWE-94 Code Injection	CVE-2013-7086	2024-11-21 11:00	2013-12-19	Show	GitHub Exploit DB Packet Storm

291495	-	mike_stefanello	og_features	The OG Features module 6.x-1.x before 6.x-1.4 for Drupal does not properly override pages that have an access callback set to false, which allows remote attackers to bypass intended access restrictio…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7067	2024-11-21 11:00	2013-12-19	Show	GitHub Exploit DB Packet Storm

291496	-	dlink	dsr-150_firmware dsr-150 dsr-250_firmware dsr-250 dsr-1000n_firmware dsr-1000n dsr-150n_firmware dsr-150n dsr-500_firmware dsr-500 dsr-1000_firmware dsr-1000 dsr-2…	D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware bef…	CWE-200 Information Exposure	CVE-2013-7005	2024-11-21 11:00	2013-12-19	Show	GitHub Exploit DB Packet Storm

291497	-	dlink	dsr-500_firmware dsr-500 dsr-150n_firmware dsr-150n dsr-250n_firmware dsr-150_firmware dsr-150 dsr-500n_firmware dsr-500n dsr-1000n_firmware dsr-1000n dsr-250_firmwar…	D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware bef…	CWE-255 Credentials Management	CVE-2013-7004	2024-11-21 11:00	2013-12-19	Show	GitHub Exploit DB Packet Storm

291498	-	themebeans	blooog_theme	Cross-site scripting (XSS) vulnerability in ThemeBeans Blooog theme 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the jQuery parameter to assets/js/jplayer.swf.	CWE-79 Cross-site Scripting	CVE-2013-7129	2024-11-21 11:00	2013-12-18	Show	GitHub Exploit DB Packet Storm

291499	-	valvesoftware	steamos	Valve Bug Reporter in the valve-bugreporter package 2.10+bsos1 in Valve SteamOS Beta stores cleartext credentials in a .valve-bugreporter.cfg file upon a Remember Credentials action, which allows loc…	CWE-310 Cryptographic Issues	CVE-2013-7128	2024-11-21 11:00	2013-12-18	Show	GitHub Exploit DB Packet Storm

291500	-	apple	safari mac_os_x	Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, which allows local users to obtain sensitive information by reading this file.	CWE-310 Cryptographic Issues	CVE-2013-7127	2024-11-21 11:00	2013-12-18	Show	GitHub Exploit DB Packet Storm