Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
224161 7.5 危険 Apache Software Foundation - Apache Camel の XSLT コンポーネントにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-0002 2014-05-2 18:10 2014-02-28 Show GitHub Exploit DB Packet Storm
224162 5 警告 PHP-Fusion - PHP-Fusion における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1807 2014-05-2 16:47 2013-01-27 Show GitHub Exploit DB Packet Storm
224163 6.5 警告 PHP-Fusion - PHP-Fusion におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-1806 2014-05-2 16:46 2013-01-27 Show GitHub Exploit DB Packet Storm
224164 4.3 警告 PHP-Fusion - PHP-Fusion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-1804 2014-05-2 16:46 2013-01-27 Show GitHub Exploit DB Packet Storm
224165 7.5 危険 Google - Android における暗号保護メカニズムを破られる脆弱性 CWE-200
情報漏えい
CVE-2013-7373 2014-05-2 16:45 2013-08-14 Show GitHub Exploit DB Packet Storm
224166 5 警告 Google
Apache Software Foundation
- Android の Java Cryptography Architecture で使用される Apache Harmony における暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題
CVE-2013-7372 2014-05-2 16:45 2013-08-14 Show GitHub Exploit DB Packet Storm
224167 7.5 危険 シトリックス・システムズ - Citrix NetScaler Application Delivery Controller および NetScaler Gateway の管理 GUI における脆弱性 CWE-noinfo
情報不足
CVE-2014-2882 2014-05-2 16:35 2014-04-28 Show GitHub Exploit DB Packet Storm
224168 7.5 危険 シトリックス・システムズ - Citrix NetScaler Application Delivery Controller および NetScaler Gateway の管理 GUI の Java アプレットにおける脆弱性 CWE-noinfo
情報不足
CVE-2014-2881 2014-05-2 16:34 2014-04-28 Show GitHub Exploit DB Packet Storm
224169 6.5 警告 フォーティネット - FortiGuard FortiWeb における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-1957 2014-05-2 16:33 2014-02-13 Show GitHub Exploit DB Packet Storm
224170 7.5 危険 フォーティネット - FortiGuard FortiWeb における CRLF インジェクションの脆弱性 CWE-Other
その他
CVE-2014-1956 2014-05-2 16:32 2014-02-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277221 9.8 CRITICAL
Network
debian
suse
opensuse
canonical
google
debian_linux
linux_enterprise
leap
ubuntu_linux
chrome
Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2016-1659 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277222 4.3 MEDIUM
Network
novell
opensuse
google
debian
suse_package_hub_for_suse_linux_enterprise
leap
chrome
debian_linux
The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrectly relies on GetOrigin method calls for origin comparisons, which allows remote attackers to bypass the Same Origin Policy and o… CWE-200
CWE-284
Information Exposure
Improper Access Control
CVE-2016-1658 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277223 4.3 MEDIUM
Network
debian
novell
opensuse
google
debian_linux
suse_package_hub_for_suse_linux_enterprise
leap
chrome
The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 50.0.2661.75 mishandles focus for certain about:blank pages, which… CWE-254
 7PK - Security Features
CVE-2016-1657 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277224 7.5 HIGH
Network
google
suse
opensuse
chrome
linux_enterprise
leap
The download implementation in Google Chrome before 50.0.2661.75 on Android allows remote attackers to bypass intended pathname restrictions via unspecified vectors. CWE-284
Improper Access Control
CVE-2016-1656 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277225 8.8 HIGH
Network
debian
suse
opensuse
google
canonical
debian_linux
linux_enterprise
leap
chrome
ubuntu_linux
Google Chrome before 50.0.2661.75 does not properly consider that frame removal may occur during callback execution, which allows remote attackers to cause a denial of service (use-after-free) or pos… NVD-CWE-Other
CVE-2016-1655 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277226 6.5 MEDIUM
Network
debian
suse
opensuse
google
canonical
debian_linux
linux_enterprise
leap
chrome
ubuntu_linux
The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service (invalid read operation) via unk… CWE-20
 Improper Input Validation 
CVE-2016-1654 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277227 8.8 HIGH
Network
debian
suse
opensuse
canonical
google
debian_linux
linux_enterprise
leap
ubuntu_linux
chrome
The LoadBuffer implementation in Google V8, as used in Google Chrome before 50.0.2661.75, mishandles data types, which allows remote attackers to cause a denial of service or possibly have unspecifie… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1653 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277228 6.1 MEDIUM
Network
debian
suse
opensuse
google
debian_linux
linux_enterprise
leap
chrome
Cross-site scripting (XSS) vulnerability in the ModuleSystem::RequireForJsInner function in extensions/renderer/module_system.cc in the Extensions subsystem in Google Chrome before 50.0.2661.75 allow… CWE-79
Cross-site Scripting
CVE-2016-1652 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277229 8.1 HIGH
Network
google
debian
suse
opensuse
chrome
debian_linux
linux_enterprise
leap
fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome before 50.0.2661.75, does not properly implement the sycc420_to_rgb and sycc422_to_rgb functions, which allows remote attackers … CWE-200
Information Exposure
CVE-2016-1651 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
277230 9.8 CRITICAL
Network
dhcpcd_project
google
dhcpcd
android
dhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 and other products, mismanages option lengths, which allows remote attacke… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1503 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm