Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217671 5.4 警告 parentlink - Android 用 West Bend School District アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6966 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217672 5.4 警告 faz - Android 用 FAZ.NET アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6965 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217673 5.4 警告 hyonga - Android 用 Hanyang University Admissions アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6964 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217674 5.4 警告 feiron - Android 用 feiron アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6963 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217675 5.4 警告 publicstuff - Android 用 Elk Grove PublicStuff アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6962 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217676 5.4 警告 sudaninet - Android 用 SudaniNet アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6961 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217677 5.4 警告 sourcelink - Android 用 Multitrac アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6960 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217678 5.4 警告 haowanlab - Android 用 QinCard アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6959 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217679 5.4 警告 core-apps - Android 用 ISMRM-ESMRMB 2014 アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6958 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
217680 5.4 警告 boopsie - Android 用 scottcolibmn アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6957 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2201 7.1 HIGH
Network 		- - Single Personal Message 1.0.3 contains an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries by injecting malicious code through the message parameter. Attac… CWE-89
SQL Injection 		CVE-2016-20063 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2202 6.2 MEDIUM
Local 		- - WP Vault 0.8.6.6 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting an unescaped parameter in the include functionality. Attacke… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2016-20064 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2203 8.2 HIGH
Network 		- - Product Catalog 8 1.2 plugin for WordPress contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the selec… CWE-89
SQL Injection 		CVE-2016-20065 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2204 8.2 HIGH
Network 		- - WordPress Car Park Booking Plugin version 13 October 17 contains a time-based SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code th… CWE-89
SQL Injection 		CVE-2017-20243 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2205 8.2 HIGH
Network 		- - Wow Forms WordPress Plugin version 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to read arbitrary database information by exploiting an unescaped POST parameter. … CWE-89
SQL Injection 		CVE-2017-20244 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2206 8.2 HIGH
Network 		- - Wow Viral Signups 2.1 WordPress plugin contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by exploiting the unescaped 'idsignup' POST parame… CWE-89
SQL Injection 		CVE-2017-20245 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2207 8.2 HIGH
Network 		- - KittyCatfish 2.2 plugin for WordPress contains an SQL injection vulnerability that allows unauthenticated attackers to read database contents by exploiting an unescaped GET parameter. Attackers can i… CWE-89
SQL Injection 		CVE-2017-20246 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2208 8.2 HIGH
Network 		- - WordPress Plugin PICA Photo Gallery 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the aid para… CWE-89
SQL Injection 		CVE-2017-20247 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2209 7.5 HIGH
Network 		- - Apptha Slider Gallery 1.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files by manipulating the imgname parameter. Attackers can send requests … CWE-22
Path Traversal 		CVE-2017-20248 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
2210 8.2 HIGH
Network 		- - Apptha Slider Gallery 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the albid parameter. Attac… CWE-89
SQL Injection 		CVE-2017-20249 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm