Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
224701 10 危険 The PHP Group
アップル
- PHP の stream の実装における脆弱性 - CVE-2012-2688 2014-04-7 17:45 2012-07-19 Show GitHub Exploit DB Packet Storm
224702 4.3 警告 The PHP Group - PHP の Fileinfo コンポーネントの libmagic/softmagic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-4636 2014-04-7 17:44 2013-06-20 Show GitHub Exploit DB Packet Storm
224703 5 警告 The PHP Group - PHP の Calendar コンポーネントの jewish.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2013-4635 2014-04-7 17:43 2013-06-20 Show GitHub Exploit DB Packet Storm
224704 5 警告 The PHP Group
アップル
- PHP の ext/standard/quot_print.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-2110 2014-04-7 17:40 2013-06-20 Show GitHub Exploit DB Packet Storm
224705 9.3 危険 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-5844 2014-04-7 17:39 2013-10-15 Show GitHub Exploit DB Packet Storm
224706 9.3 危険 IBM
オラクル
- Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-5838 2014-04-7 17:37 2013-10-15 Show GitHub Exploit DB Packet Storm
224707 6.8 警告 The PHP Group - PHP の Sessions サブシステムにおける Web セッションをハイジャックされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4718 2014-04-7 17:37 2011-12-2 Show GitHub Exploit DB Packet Storm
224708 6.8 警告 The PHP Group
アップル
- PHP の ext/xml/xml.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-4113 2014-04-7 17:36 2013-07-11 Show GitHub Exploit DB Packet Storm
224709 6.5 警告 X.Org Foundation - X.Org X11 の xorg-server モジュールの dix/dixfonts.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2013-4396 2014-04-7 17:35 2013-10-8 Show GitHub Exploit DB Packet Storm
224710 2.6 注意 Quagga - Quagga の OSPFD API の new_msg_lsa_change_notify 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-2236 2014-04-7 17:34 2013-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277831 8.8 HIGH
Network
hiniarata casebook_plugin Cross-site request forgery (CSRF) vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators. CWE-352
 Origin Validation Error
CVE-2016-1174 2024-11-21 11:45 2016-04-7 Show GitHub Exploit DB Packet Storm
277832 6.1 MEDIUM
Network
hiniarata casebook_plugin Cross-site scripting (XSS) vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2016-1173 2024-11-21 11:45 2016-04-7 Show GitHub Exploit DB Packet Storm
277833 8.8 HIGH
Network
hiniarata casebook_plugin Cross-site request forgery (CSRF) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators. CWE-352
 Origin Validation Error
CVE-2016-1172 2024-11-21 11:45 2016-04-7 Show GitHub Exploit DB Packet Storm
277834 6.1 MEDIUM
Network
hiniarata casebook_plugin Cross-site scripting (XSS) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2016-1171 2024-11-21 11:45 2016-04-7 Show GitHub Exploit DB Packet Storm
277835 8.8 HIGH
Network
hiniarata casebook_plugin Cross-site request forgery (CSRF) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to hijack the authentication of administrators. CWE-352
 Origin Validation Error
CVE-2016-1170 2024-11-21 11:45 2016-04-7 Show GitHub Exploit DB Packet Storm
277836 6.1 MEDIUM
Network
hiniarata casebook_plugin Cross-site scripting (XSS) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2016-1169 2024-11-21 11:45 2016-04-7 Show GitHub Exploit DB Packet Storm
277837 6.1 MEDIUM
Network
falconsc wisepoint_authenticator
wisepoint
The management screen in Falcon WisePoint 4.3.1 and earlier and WisePoint Authenticator 4.1.19.22 and earlier allows remote attackers to conduct clickjacking attacks via unspecified vectors. CWE-254
 7PK - Security Features
CVE-2016-1177 2024-11-21 11:45 2016-04-6 Show GitHub Exploit DB Packet Storm
277838 6.3 MEDIUM
Network
sharp eva_animator Buffer overflow in the ActiveX control in Sharp EVA Animeter allows remote attackers to execute arbitrary code via a crafted web page. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1176 2024-11-21 11:45 2016-04-6 Show GitHub Exploit DB Packet Storm
277839 4.3 MEDIUM
Network
sharp aquos_hn-pp150_firmware Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player HN-PP150 1.02.00.04 through 1.03.01.04 allows remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error
CVE-2016-1175 2024-11-21 11:45 2016-04-6 Show GitHub Exploit DB Packet Storm
277840 8.8 HIGH
Network
aterm wf800hp_firmware Cross-site request forgery (CSRF) vulnerability on NEC Aterm WF800HP devices with firmware 1.0.17 and earlier allows remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error
CVE-2016-1168 2024-11-21 11:45 2016-04-1 Show GitHub Exploit DB Packet Storm