Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
222631 4.3 警告 Moodle - Moodle の mod/imscp/locallib.php における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2014-3543 2014-07-30 18:40 2014-07-21 Show GitHub Exploit DB Packet Storm
222632 4.3 警告 Moodle - Moodle の mod/lti/service.php における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2014-3542 2014-07-30 18:40 2014-07-21 Show GitHub Exploit DB Packet Storm
222633 7.5 危険 Moodle - Moodle のリポジトリコンポーネントにおける PHP オブジェクトインジェクション攻撃を実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-3541 2014-07-30 18:39 2014-07-21 Show GitHub Exploit DB Packet Storm
222634 5 警告 シスコシステムズ - Cisco WebEx Meetings Server の OutlookAction クラスにおけるユーザアカウントを列挙される脆弱性 CWE-200
情報漏えい
CVE-2014-3304 2014-07-30 17:03 2014-07-28 Show GitHub Exploit DB Packet Storm
222635 4 警告 シスコシステムズ - Cisco WebEx Meetings Server の Web フレームワークにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-3303 2014-07-30 17:03 2014-07-28 Show GitHub Exploit DB Packet Storm
222636 7.5 危険 Fonality - Fonality trixbox の maint/modules/home/index.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-5112 2014-07-30 16:57 2014-07-17 Show GitHub Exploit DB Packet Storm
222637 5 警告 Fonality - Fonality trixbox におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2014-5111 2014-07-30 16:56 2014-07-17 Show GitHub Exploit DB Packet Storm
222638 4.3 警告 Fonality - Fonality trixbox の user/help/html/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-5110 2014-07-30 16:56 2014-07-17 Show GitHub Exploit DB Packet Storm
222639 7.5 危険 Fonality - Fonality trixbox の maint/modules/endpointcfg/endpoint_generic.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-5109 2014-07-30 16:56 2014-07-17 Show GitHub Exploit DB Packet Storm
222640 4.3 警告 Silver Peak - Silver Peak VX の php/user_account.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-2975 2014-07-30 16:42 2014-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272881 9.8 CRITICAL
Network
jfrog artifactory JFrog Artifactory before 4.11 allows remote attackers to execute arbitrary code via an LDAP attribute with a crafted serialized Java object, aka LDAP entry poisoning. CWE-20
 Improper Input Validation 
CVE-2016-6501 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
272882 9.8 CRITICAL
Network
atlassian crowd The LDAP directory connector in Atlassian Crowd before 2.8.8 and 2.9.x before 2.9.5 allows remote attackers to execute arbitrary code via an LDAP attribute with a crafted serialized Java object, aka … CWE-20
 Improper Input Validation 
CVE-2016-6496 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
272883 9.8 CRITICAL
Network
barclamp-trove_project
crowbar-openstack_project
barclamp-trove
crowbar-openstack
The trove service user in (1) Openstack deployment (aka crowbar-openstack) and (2) Trove Barclamp (aka barclamp-trove and crowbar-barclamp-trove) in the Crowbar Framework has a default password, whic… CWE-798
 Use of Hard-coded Credentials
CVE-2016-6829 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
272884 6.1 MEDIUM
Network
dotclear dotclear Multiple cross-site scripting (XSS) vulnerabilities in the media manager in Dotclear before 2.10 allow remote attackers to inject arbitrary web script or HTML via the (1) q or (2) link_type parameter… CWE-79
Cross-site Scripting
CVE-2016-6523 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
272885 8.8 HIGH
Network
google android A remote code execution vulnerability in Webview in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-05 could enable a remote attacker to execute arbitrary code when the user is… CWE-74
Injection
CVE-2016-6754 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
272886 5.5 MEDIUM
Local
google android An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-05 could enable a local malicious applic… CWE-200
Information Exposure
CVE-2016-6753 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
272887 5.5 MEDIUM
Local
google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure
CVE-2016-6752 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
272888 5.5 MEDIUM
Local
google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure
CVE-2016-6751 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
272889 5.5 MEDIUM
Local
google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure
CVE-2016-6750 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
272890 5.5 MEDIUM
Local
google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure
CVE-2016-6749 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm