Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
224981 2.1 注意 ownCloud - ownCloud のログインページにおけるパスワードを推測される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2047 2014-03-19 13:55 2013-04-7 Show GitHub Exploit DB Packet Storm
224982 5.8 警告 ownCloud - ownCloud のログインページにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認
CVE-2013-2044 2014-03-19 13:54 2013-04-23 Show GitHub Exploit DB Packet Storm
224983 4 警告 ownCloud - ownCloud の apps/calendar/ajax/events.php における任意のカレンダーをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2043 2014-03-19 13:53 2013-04-22 Show GitHub Exploit DB Packet Storm
224984 3.5 注意 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-2042 2014-03-19 13:53 2013-04-30 Show GitHub Exploit DB Packet Storm
224985 3.5 注意 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-2041 2014-03-19 13:49 2013-04-22 Show GitHub Exploit DB Packet Storm
224986 3.5 注意 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-2040 2014-03-19 13:48 2013-04-22 Show GitHub Exploit DB Packet Storm
224987 4 警告 ownCloud - ownCloud Server の apps/files_trashbin/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-2085 2014-03-19 13:47 2013-05-6 Show GitHub Exploit DB Packet Storm
224988 4 警告 ownCloud - ownCloud の lib/files/view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-2039 2014-03-19 13:46 2013-04-22 Show GitHub Exploit DB Packet Storm
224989 4 警告 ownCloud - ownCloud の連絡先アプリケーションにおける任意の連絡先をダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1963 2014-03-19 13:45 2013-04-12 Show GitHub Exploit DB Packet Storm
224990 5 警告 fruux
ownCloud
- ownCloud で使用される SabreDAV の HTML\Browser プラグインにおける任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認
CVE-2013-1939 2014-03-19 13:44 2013-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277521 4.6 MEDIUM
Physics
google android An issue was discovered on Samsung mobile devices with KK(4.4) software. Attackers can bypass the lockscreen by sending an AT command over USB. The Samsung ID is SVE-2015-5301 (June 2016). CWE-287
Improper Authentication
CVE-2016-11041 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
277522 9.8 CRITICAL
Network
odata4j_project odata4j odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued. CWE-89
SQL Injection
CVE-2016-11024 2024-11-21 11:45 2020-03-31 Show GitHub Exploit DB Packet Storm
277523 9.8 CRITICAL
Network
odata4j_project odata4j odata4j 0.7.0 allows ExecuteCountQueryCommand.java SQL injection. NOTE: this product is apparently discontinued. CWE-89
SQL Injection
CVE-2016-11023 2024-11-21 11:45 2020-03-31 Show GitHub Exploit DB Packet Storm
277524 7.2 HIGH
Network
netgear prosafe_wc9500_firmware
prosafe_wc7600_firmware
prosafe_wc7520_firmware
NETGEAR Prosafe WC9500 5.1.0.17, WC7600 5.1.0.17, and WC7520 2.5.0.35 devices allow a remote attacker to execute code with root privileges via shell metacharacters in the reqMethod parameter to login… CWE-78
OS Command 
CVE-2016-11022 2024-11-21 11:45 2020-03-24 Show GitHub Exploit DB Packet Storm
277525 6.5 MEDIUM
Network
zohocorp manageengine_password_manager_pro In ZOHO Password Manager Pro (PMP) 8.3.0 (Build 8303) and 8.4.0 (Build 8400,8401,8402), underprivileged users can obtain sensitive information (entry password history) via a vulnerable hidden service. CWE-200
Information Exposure
CVE-2016-1159 2024-11-21 11:45 2020-03-10 Show GitHub Exploit DB Packet Storm
277526 7.2 HIGH
Network
dlink dcs-930l_firmware setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter. CWE-78
OS Command 
CVE-2016-11021 2024-11-21 11:45 2020-03-9 Show GitHub Exploit DB Packet Storm
277527 9.8 CRITICAL
Network
kunena kunena Kunena before 5.0.4 does not restrict avatar file extensions to gif, jpeg, jpg, and png. This can lead to XSS and remote code execution. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2016-11020 2024-11-21 11:45 2020-02-26 Show GitHub Exploit DB Packet Storm
277528 9.8 CRITICAL
Network
huge-it image_gallery An issue was discovered in the Huge-IT gallery-images plugin before 1.9.0 for WordPress. The headers Client-Ip and X-Forwarded-For are prone to unauthenticated SQL injection. The affected file is gal… CWE-89
SQL Injection
CVE-2016-11018 2024-11-21 11:45 2020-01-22 Show GitHub Exploit DB Packet Storm
277529 9.8 CRITICAL
Network
akips network_monitor The application login page in AKIPS Network Monitor 15.37 through 16.5 allows a remote unauthenticated attacker to execute arbitrary OS commands via shell metacharacters in the username parameter (a … CWE-78
OS Command 
CVE-2016-11017 2024-11-21 11:45 2020-01-7 Show GitHub Exploit DB Packet Storm
277530 6.1 MEDIUM
Network
netgear jnr1010_firmware NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS. CWE-79
Cross-site Scripting
CVE-2016-11016 2024-11-21 11:45 2019-10-16 Show GitHub Exploit DB Packet Storm