Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222291 4.3 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアの Identity Firewall 機能における認証状態の変更を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0653 2014-01-10 16:23 2014-01-8 Show GitHub Exploit DB Packet Storm
222292 4.3 警告 シスコシステムズ - Cisco Context Directory Agent のマッピングページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0652 2014-01-10 16:22 2014-01-9 Show GitHub Exploit DB Packet Storm
222293 4.9 警告 シスコシステムズ - Cisco Context Directory Agent の管理インターフェースにおける管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0651 2014-01-10 16:22 2014-01-9 Show GitHub Exploit DB Packet Storm
222294 4.3 警告 シスコシステムズ - Cisco NX-OS の BGP の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6982 2014-01-10 16:21 2014-01-6 Show GitHub Exploit DB Packet Storm
222295 4.3 警告 Andy's PHP Knowledgebase Project - Andy's PHP Knowledgebase におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7277 2014-01-10 16:15 2013-12-24 Show GitHub Exploit DB Packet Storm
222296 7.5 危険 Google - Google Picasa の Picasa3.exe における整数アンダーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5349 2014-01-10 16:14 2013-12-12 Show GitHub Exploit DB Packet Storm
222297 7.5 危険 Google - Google Picasa の Picasa3.exe における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5357 2014-01-10 16:13 2013-12-12 Show GitHub Exploit DB Packet Storm
222298 7.5 危険 Google - Google Picasa の Picasa3.exe におけるメモリ破損を誘発される脆弱性 CWE-119
バッファエラー 		CVE-2013-5358 2014-01-10 16:12 2013-12-12 Show GitHub Exploit DB Packet Storm
222299 7.5 危険 Google - Google Picasa の Picasa3.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5359 2014-01-10 16:10 2013-12-12 Show GitHub Exploit DB Packet Storm
222300 4.3 警告 Recommend to a friend Project - WordPress 用 Recommend to a friend プラグインの inc/raf_form.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7276 2014-01-10 15:58 2013-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268231 6.1 MEDIUM
Network 		wso2 carbon Multiple cross-site scripting (XSS) vulnerabilities in WSO2 Carbon 4.4.5 allow remote attackers to inject arbitrary web script or HTML via the (1) setName parameter to identity-mgt/challenges-mgt.jsp… CWE-79
Cross-site Scripting 		CVE-2016-4316 2024-11-21 11:51 2017-02-17 Show GitHub Exploit DB Packet Storm
268232 5.7 MEDIUM
Network 		wso2 carbon Cross-site request forgery (CSRF) vulnerability in WSO2 Carbon 4.4.5 allows remote attackers to hijack the authentication of privileged users for requests that shutdown a server via a shutdown action… CWE-352
 Origin Validation Error 		CVE-2016-4315 2024-11-21 11:51 2017-02-17 Show GitHub Exploit DB Packet Storm
268233 4.9 MEDIUM
Network 		wso2 carbon Directory traversal vulnerability in the LogViewer Admin Service in WSO2 Carbon 4.4.5 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the logFile parameter to… CWE-22
Path Traversal 		CVE-2016-4314 2024-11-21 11:51 2017-02-17 Show GitHub Exploit DB Packet Storm
268234 7.5 HIGH
Network 		wso2 identity_server XML external entity (XXE) vulnerability in the XACML flow feature in WSO2 Identity Server 5.1.0 before WSO2-CARBON-PATCH-4.4.0-0231 allows remote authenticated users with access to XACML features to … CWE-611
XXE 		CVE-2016-4312 2024-11-21 11:51 2017-02-17 Show GitHub Exploit DB Packet Storm
268235 8.8 HIGH
Network 		wso2 identity_server Cross-site request forgery (CSRF) vulnerability in the XACML flow feature in WSO2 Identity Server 5.1.0 allows remote attackers to hijack the authentication of privileged users for requests that proc… CWE-352
 Origin Validation Error 		CVE-2016-4311 2024-11-21 11:51 2017-02-17 Show GitHub Exploit DB Packet Storm
268236 7.5 HIGH
Network 		cryptopp crypto\+\+ The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and Rijndael::Dec::ProcessAndXorBlock in Crypto++ (aka cryptopp) before 5.6.4 may be optimized out by the compiler, which allows atta… CWE-200
Information Exposure 		CVE-2016-3995 2024-11-21 11:51 2017-02-14 Show GitHub Exploit DB Packet Storm
268237 7.5 HIGH
Network 		netapp clustered_data_ontap NetApp Clustered Data ONTAP before 8.3.2P7 allows remote attackers to obtain SMB share information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-4341 2024-11-21 11:51 2017-02-8 Show GitHub Exploit DB Packet Storm
268238 5.5 MEDIUM
Local 		libavformat_project libavformat Integer overflow in the demuxer function in libmpdemux/demux_gif.c in Mplayer allows remote attackers to cause a denial of service (crash) via large dimensions in a gif file. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-4352 2024-11-21 11:51 2017-02-4 Show GitHub Exploit DB Packet Storm
268239 7.8 HIGH
Local 		samsung samsung_mobile Array index error in the msm_sensor_config function in kernel/SM-G9008V_CHN_KK_Opensource/Kernel/drivers/media/platform/msm/camera_v2/sensor/msm_sensor.c in Samsung devices with Android KK(4.4) or L … CWE-20
 Improper Input Validation  		CVE-2016-4038 2024-11-21 11:51 2017-02-2 Show GitHub Exploit DB Packet Storm
268240 5.5 MEDIUM
Local 		samsung knox ClipboardDataMgr in Samsung KNOX 1.0.0 and 2.3.0 does not properly check the caller, which allows local users to read KNOX clipboard data via a crafted application. CWE-200
Information Exposure 		CVE-2016-3996 2024-11-21 11:51 2017-01-28 Show GitHub Exploit DB Packet Storm