Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
224431 5 警告 SAP - Oracle 用 SAP CCMS / Database Monitors におけるデータベースパスワードを取得される脆弱性 CWE-noinfo
情報不足
CVE-2013-7356 2014-04-15 12:15 2013-08-8 Show GitHub Exploit DB Packet Storm
224432 7.5 危険 SAP - SAP BI Universal Data Integration における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-7355 2014-04-15 12:14 2013-11-8 Show GitHub Exploit DB Packet Storm
224433 - - The Prosody Team - ** 削除 ** Prosody におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2014-2750 2014-04-14 18:40 2014-04-2 Show GitHub Exploit DB Packet Storm
224434 5.8 警告 デル - Dell OpenManage Server Administrator におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認
CVE-2013-0740 2014-04-14 18:36 2013-07-22 Show GitHub Exploit DB Packet Storm
224435 4.3 警告 Roundup - Roundup におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-6132 2014-04-14 18:31 2012-05-15 Show GitHub Exploit DB Packet Storm
224436 6.8 警告 Lester Chan - WordPress 用 WP-PostViews プラグインのオプションの管理者ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-3252 2014-04-14 18:26 2013-05-7 Show GitHub Exploit DB Packet Storm
224437 6.8 警告 Qian Qin - WordPress 用 qTranslate プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-3251 2014-04-14 18:26 2013-06-4 Show GitHub Exploit DB Packet Storm
224438 6.8 警告 Jeremy Massel - WordPress 用 underConstruction プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-2699 2014-04-14 18:26 2013-06-3 Show GitHub Exploit DB Packet Storm
224439 6.8 警告 Lester Chan - WordPress 用 WP-Print プラグインのオプションにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-2693 2014-04-14 18:25 2013-04-5 Show GitHub Exploit DB Packet Storm
224440 6.8 警告 Dean Adjie Minwarie - WordPress 用 DVS Custom Notification プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-4921 2014-04-14 18:24 2012-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276931 7.5 HIGH
Network
privoxy privoxy The client_host function in parsers.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid read and crash) via an empty HTTP Host header. CWE-20
 Improper Input Validation 
CVE-2016-1983 2024-11-21 11:47 2016-01-28 Show GitHub Exploit DB Packet Storm
276932 7.5 HIGH
Network
privoxy privoxy The remove_chunked_transfer_coding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service (invalid read and crash) via crafted chunk-encoded content. CWE-20
 Improper Input Validation 
CVE-2016-1982 2024-11-21 11:47 2016-01-28 Show GitHub Exploit DB Packet Storm
276933 6.5 MEDIUM
Network
uclouvain openjpeg The opj_tgt_reset function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1924 2024-11-21 11:47 2016-01-28 Show GitHub Exploit DB Packet Storm
276934 6.5 MEDIUM
Network
uclouvain openjpeg Heap-based buffer overflow in the opj_j2k_update_image_data function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafte… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1923 2024-11-21 11:47 2016-01-28 Show GitHub Exploit DB Packet Storm
276935 9.8 CRITICAL
Network
lexmark printer_firmware Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypa… CWE-264
CWE-254
Permissions, Privileges, and Access Controls
 7PK - Security Features
CVE-2016-1896 2024-11-21 11:47 2016-01-27 Show GitHub Exploit DB Packet Storm
276936 6.1 MEDIUM
Network
greenbone
fedoraproject
greenbone_security_assistant
greenbone_os
fedora
Cross-site scripting (XSS) vulnerability in the charts module in Greenbone Security Assistant (GSA) 6.x before 6.0.8 allows remote attackers to inject arbitrary web script or HTML via the aggregate_t… CWE-79
Cross-site Scripting
CVE-2016-1926 2024-11-21 11:47 2016-01-27 Show GitHub Exploit DB Packet Storm
276937 7.6 HIGH
Network
harfbuzz_project
google
harfbuzz
chrome
Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted dat… NVD-CWE-noinfo
CVE-2016-2052 2024-11-21 11:47 2016-01-25 Show GitHub Exploit DB Packet Storm
276938 9.8 CRITICAL
Network
google
redhat
chrome
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
Multiple unspecified vulnerabilities in Google V8 before 4.8.271.17, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via unkno… NVD-CWE-noinfo
CVE-2016-2051 2024-11-21 11:47 2016-01-25 Show GitHub Exploit DB Packet Storm
276939 9.8 CRITICAL
Network
harman amx_firmware The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices before 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote attackers to obtain access v… CWE-255
Credentials Management
CVE-2016-1984 2024-11-21 11:47 2016-01-22 Show GitHub Exploit DB Packet Storm
276940 9.3 CRITICAL
Network
sap hana The XS engine in SAP HANA allows remote attackers to spoof log entries in trace files and consequently cause a denial of service (disk consumption and process crash) via a crafted HTTP request, relat… CWE-20
 Improper Input Validation 
CVE-2016-1929 2024-11-21 11:47 2016-01-21 Show GitHub Exploit DB Packet Storm