Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
222381 7.5 危険 ZPanel Project - ZPanel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-6654 2014-08-15 18:48 2012-11-4 Show GitHub Exploit DB Packet Storm
222382 7.5 危険 ZPanel Project - ZPanel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-5685 2014-08-15 18:47 2012-11-4 Show GitHub Exploit DB Packet Storm
222383 4.3 警告 ZPanel Project - ZPanel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-5684 2014-08-15 18:46 2012-11-4 Show GitHub Exploit DB Packet Storm
222384 6.8 警告 ZPanel Project - ZPanel におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-5683 2014-08-15 18:46 2012-11-4 Show GitHub Exploit DB Packet Storm
222385 7.5 危険 Biblio Autocomplete Project - Drupal 用 Biblio Autocomplete モジュールの AJAX オートコンプリートのコールバックにおけるデータにアクセスされる脆弱性 CWE-noinfo
情報不足
CVE-2014-5250 2014-08-15 18:19 2014-08-5 Show GitHub Exploit DB Packet Storm
222386 7.5 危険 Biblio Autocomplete Project - Drupal 用 Biblio Autocomplete モジュールの "Biblio self autocomplete" サブモジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-5249 2014-08-15 18:19 2014-08-5 Show GitHub Exploit DB Packet Storm
222387 7.5 危険 Arial Software - Arial Software Campaign Enterprise の Campaign11.exe における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-3820 2014-08-15 18:18 2012-10-18 Show GitHub Exploit DB Packet Storm
222388 4.3 警告 MyBB Group - MyBB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-5248 2014-08-15 16:59 2014-08-4 Show GitHub Exploit DB Packet Storm
222389 4.3 警告 Mozilla Foundation - Bugzilla の jsonrpc.cgi の WebService/Server/JSONRPC.pm の JSONP エンドポイント内の response 関数におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2014-1546 2014-08-15 15:33 2014-07-24 Show GitHub Exploit DB Packet Storm
222390 4.3 警告 Piwigo - Piwigo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-1980 2014-08-15 13:35 2014-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273341 9.8 CRITICAL
Network
ffmpeg ffmpeg Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors … CWE-190
 Integer Overflow or Wraparound
CVE-2016-6164 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
273342 7.5 HIGH
Network
broadcom tcpreplay tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266. CWE-399
 Resource Management Errors
CVE-2016-6160 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
273343 5.9 MEDIUM
Network
owncloud owncloud ownCloud server before 8.2.6 and 9.x before 9.0.3, when the gallery app is enabled, allows remote attackers to download arbitrary images via a direct request. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5876 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
273344 9.8 CRITICAL
Network
php pecl_http Buffer overflow in the HTTP URL parsing functions in pecl_http before 3.0.1 might allow remote attackers to execute arbitrary code via non-printable characters in a URL. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-5873 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
273345 7.8 HIGH
Local
netbsd netbsd mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on th… CWE-59
Link Following
CVE-2016-6253 2024-11-21 11:55 2017-01-21 Show GitHub Exploit DB Packet Storm
273346 6.1 MEDIUM
Network
atlassian confluence Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.10.6 allows remote attackers to inject arbitrary web script or HTML via the newFileName parameter to pages/doeditattachment.a… CWE-79
Cross-site Scripting
CVE-2016-6283 2024-11-21 11:55 2017-01-19 Show GitHub Exploit DB Packet Storm
273347 7.5 HIGH
Network
bzrtp_project bzrtp The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception. CWE-254
 7PK - Security Features
CVE-2016-6271 2024-11-21 11:55 2017-01-19 Show GitHub Exploit DB Packet Storm
273348 7.5 HIGH
Network
call-cc http-client The "http-client" egg always used a HTTP_PROXY environment variable to determine whether HTTP traffic should be routed via a proxy, even when running as a CGI process. Under several web servers this … CWE-19
 Data Processing Errors
CVE-2016-6287 2024-11-21 11:55 2017-01-11 Show GitHub Exploit DB Packet Storm
273349 7.5 HIGH
Network
call-cc http-client The "spiffy-cgi-handlers" egg would convert a nonexistent "Proxy" header to the HTTP_PROXY environment variable, which would allow attackers to direct CGI programs which use this environment variable… CWE-19
 Data Processing Errors
CVE-2016-6286 2024-11-21 11:55 2017-01-11 Show GitHub Exploit DB Packet Storm
273350 4.7 MEDIUM
Local
linux linux_kernel fs/namespace.c in the Linux kernel before 4.9 does not restrict how many mounts may exist in a mount namespace, which allows local users to cause a denial of service (memory consumption and deadlock)… CWE-400
 Uncontrolled Resource Consumption
CVE-2016-6213 2024-11-21 11:55 2016-12-28 Show GitHub Exploit DB Packet Storm