Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221511 7.5 危険 Ariel Sanders - WordPress 用 Lead Octopus プラグインの lib/optin/optin_page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5189 2014-08-8 18:54 2014-07-28 Show GitHub Exploit DB Packet Storm
221512 5 警告 Tom M8te project - WordPress 用 Tom M8te プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5187 2014-08-8 18:48 2014-05-28 Show GitHub Exploit DB Packet Storm
221513 6.5 警告 Vinoth Kumar - WordPress 用 All Video Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5186 2014-08-8 18:46 2014-05-28 Show GitHub Exploit DB Packet Storm
221514 6 警告 Quartz plugin project - WordPress 用 Quartz プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5185 2014-08-8 18:45 2014-05-28 Show GitHub Exploit DB Packet Storm
221515 6.5 警告 Brad Hawkins - WordPress 用 stripShow プラグインの stripshow-storylines ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5184 2014-08-8 18:44 2014-05-28 Show GitHub Exploit DB Packet Storm
221516 6.5 警告 Jesse Cortez - WordPress 用 Simple Retail Menus プラグインの includes/mode-edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5183 2014-08-8 18:43 2014-02-19 Show GitHub Exploit DB Packet Storm
221517 6 警告 ostenta - WordPress 用 yawpp プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5182 2014-08-8 18:42 2014-01-7 Show GitHub Exploit DB Packet Storm
221518 5 警告 Last.fm Rotation plugin project - WordPress 用 Last.fm Rotation プラグインの lastfm-proxy.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5181 2014-08-8 18:40 2014-05-28 Show GitHub Exploit DB Packet Storm
221519 6.5 警告 HDW Player - WordPress 用 HDW Player プラグインのビデオページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5180 2014-08-8 18:39 2014-05-28 Show GitHub Exploit DB Packet Storm
221520 7.5 危険 Vinoth Kumar - WordPress 用 All Video Gallery プラグインにおける脆弱性 CWE-noinfo
情報不足 		CVE-2012-6653 2014-08-8 18:36 2012-11-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274081 7.8 HIGH
Local 		apple mac_os_x The AppleGraphicsControlClient::checkArguments method in AppleGraphicsControl in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of serv… NVD-CWE-Other
CVE-2016-1794 2024-11-21 11:47 2016-05-20 Show GitHub Exploit DB Packet Storm
274082 7.8 HIGH
Local 		apple mac_os_x AppleGraphicsDeviceControlClient in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted … NVD-CWE-Other
CVE-2016-1793 2024-11-21 11:47 2016-05-20 Show GitHub Exploit DB Packet Storm
274083 7.8 HIGH
Local 		apple mac_os_x The AMD subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1792 2024-11-21 11:47 2016-05-20 Show GitHub Exploit DB Packet Storm
274084 3.3 LOW
Local 		apple mac_os_x The AMD subsystem in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app. CWE-200
Information Exposure 		CVE-2016-1791 2024-11-21 11:47 2016-05-20 Show GitHub Exploit DB Packet Storm
274085 3.3 LOW
Local 		apple iphone_os Buffer overflow in the Accessibility component in Apple iOS before 9.3.2 allows attackers to obtain sensitive kernel memory-layout information via a crafted app. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1790 2024-11-21 11:47 2016-05-20 Show GitHub Exploit DB Packet Storm
274086 9.8 CRITICAL
Network 		vmware player
workstation 		VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2077 2024-11-21 11:47 2016-05-18 Show GitHub Exploit DB Packet Storm
274087 5.5 MEDIUM
Local 		hp base-vxfs-50
base-vxfs-501
base-vxfs-51 		Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxFS-51 B.05.10.00 through B.05.10.02 on HPE HP-UX 11iv3 with VxFS 5.0, VxFS 5.0.1, and VxFS 5.1SP1 mi… CWE-284
Improper Access Control 		CVE-2016-2016 2024-11-21 11:47 2016-05-15 Show GitHub Exploit DB Packet Storm
274088 7.1 HIGH
Local 		hp system_management_homepage HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or modify data via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-2015 2024-11-21 11:47 2016-05-15 Show GitHub Exploit DB Packet Storm
274089 9.8 CRITICAL
Network 		apache
opensuse 		xerces-c\+\+
opensuse 		Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 3.1.3 and earlier allows context-dependent attackers to have unspecified impact via an invalid character in an XML d… NVD-CWE-Other
CVE-2016-2099 2024-11-21 11:47 2016-05-13 Show GitHub Exploit DB Packet Storm
274090 7.8 HIGH
Local 		google android server/TetherController.cpp in the tethering controller in netd, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly vali… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2060 2024-11-21 11:47 2016-05-9 Show GitHub Exploit DB Packet Storm