Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221981 5.5 警告 TYPO3 Association - TYPO3 の File Abstraction Layer における任意のファイルを作成または読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4320 2014-05-22 15:18 2013-09-4 Show GitHub Exploit DB Packet Storm
221982 6.5 警告 TYPO3 Association - TYPO3 の file upload コンポーネントおよび File Abstraction Layer における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4250 2014-05-22 15:18 2013-07-30 Show GitHub Exploit DB Packet Storm
221983 4 警告 TYPO3 Association - TYPO3 の Backend History モジュールにおける任意のレコードの履歴を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6146 2014-05-22 15:18 2012-11-8 Show GitHub Exploit DB Packet Storm
221984 7.5 危険 Construtiva Internet Software - Construtiva CIS Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3749 2014-05-22 15:13 2014-05-16 Show GitHub Exploit DB Packet Storm
221985 6.8 警告 マイクロソフト - Microsoft Visual Studio で配布される Microsoft Debug Interface Access SDK おける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3802 2014-05-22 14:40 2014-05-14 Show GitHub Exploit DB Packet Storm
221986 6.8 警告 Beetel - Beetel 450TC2 ルータのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3792 2014-05-22 14:35 2014-04-30 Show GitHub Exploit DB Packet Storm
221987 5.8 警告 Zenoss, Inc. - Zenoss の zport/acl_users/cookieAuthHelper/login_form におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3739 2014-05-22 12:14 2014-05-14 Show GitHub Exploit DB Packet Storm
221988 4.3 警告 Zenoss, Inc. - Zenoss におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3738 2014-05-22 12:13 2014-05-14 Show GitHub Exploit DB Packet Storm
221989 10 危険 ジュニパーネットワークス - Juniper Junos Space における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-3412 2014-05-22 11:48 2014-05-14 Show GitHub Exploit DB Packet Storm
221990 4.3 警告 Seo Panel - Seo Panel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1855 2014-05-22 11:32 2014-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268081 9.8 CRITICAL
Network 		dell sonicwall_secure_remote_access_server The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to two Remote Command Injection vulnerabilities in its web administrative interface. These vulnerabilities occur in the … CWE-77
Command Injection 		CVE-2016-9682 2024-11-21 12:01 2017-02-22 Show GitHub Exploit DB Packet Storm
268082 7.8 HIGH
Local 		libming libming Heap-based buffer overflow in the parseSWF_RGBA function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9831 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268083 7.8 HIGH
Local 		libming libming Heap-based buffer overflow in the parseSWF_DEFINEFONT function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9829 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268084 5.5 MEDIUM
Local 		libming libming The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file. CWE-476
 NULL Pointer Dereference 		CVE-2016-9828 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268085 5.5 MEDIUM
Local 		libming libming The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9827 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268086 9.1 CRITICAL
Network 		simplesamlphp simplesamlphp
saml2 		The validateSignature method in the SAML2\Utils class in SimpleSAMLphp before 1.14.10 and simplesamlphp/saml2 library before 1.9.1, 1.10.x before 1.10.3, and 2.x before 2.3.3 allows remote attackers … CWE-399
 Resource Management Errors 		CVE-2016-9814 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268087 5.5 MEDIUM
Local 		imagemagick imagemagick Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a craft… CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2016-9773 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268088 7.5 HIGH
Local 		citrix xenserver The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9637 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
268089 9.1 CRITICAL
Network 		ibm websphere_message_broker
integration_bus 		IBM Integration Bus 9.0 and 10.0 and WebSphere Message Broker SOAP FLOWS is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remot… CWE-611
XXE 		CVE-2016-9706 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm
268090 7.8 HIGH
Local 		jasper_project
debian
redhat 		jasper
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_eus 		Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image. CWE-787
 Out-of-bounds Write 		CVE-2016-9560 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm