Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227361 7.5 危険 i-GEN Solutions - i-GEN opLYNX の Central アプリケーションにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-4688 2013-01-4 16:31 2012-12-27 Show GitHub Exploit DB Packet Storm
227362 5.8 警告 vBulletin Solutions, Inc. - vBulletin の forum/login.php におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5251 2013-01-4 16:23 2011-06-2 Show GitHub Exploit DB Packet Storm
227363 4.3 警告 AgileBits - AgileBits 1Password におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6369 2013-01-4 16:20 2012-12-28 Show GitHub Exploit DB Packet Storm
227364 4.3 警告 Simple Invoices - SimpleInvoices におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4932 2013-01-4 16:16 2012-12-28 Show GitHub Exploit DB Packet Storm
227365 5 警告 ModSecurity - Apache HTTP Server 用 mod_security2 モジュールにおけるルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4528 2013-01-4 16:14 2012-10-15 Show GitHub Exploit DB Packet Storm
227366 4.3 警告 MediaWiki - MediaWiki 用 RSS Reader 拡張機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6453 2013-01-4 14:54 2012-12-31 Show GitHub Exploit DB Packet Storm
227367 4.3 警告 Cerberus, LLC - Cerberus FTP Server の管理用 Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6339 2013-01-4 14:51 2012-12-11 Show GitHub Exploit DB Packet Storm
227368 6.5 警告 Open Constructor - Open Constructor における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3873 2013-01-4 14:47 2012-12-28 Show GitHub Exploit DB Packet Storm
227369 4.3 警告 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3872 2013-01-4 14:46 2012-12-28 Show GitHub Exploit DB Packet Storm
227370 3.5 注意 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3871 2013-01-4 14:22 2012-12-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273591 5.5 MEDIUM
Local 		graphicsmagick
suse
fedoraproject 		graphicsmagick
studio_onsite
linux_enterprise_software_development_kit
linux_enterprise_debuginfo
fedora 		The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted GIF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8808 2024-11-21 11:39 2016-07-14 Show GitHub Exploit DB Packet Storm
273592 5.5 MEDIUM
Local 		google android app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to cause a denial of service (OS outage or buffer over-read) via a crafted a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8893 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
273593 7.8 HIGH
Local 		google android platform/msm_shared/boot_verifier.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to bypass intended access restrictions via a digest with traili… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8892 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
273594 7.8 HIGH
Local 		google android Multiple integer overflows in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to bypass intended access restrictions via a cr… CWE-189
Numeric Errors 		CVE-2015-8891 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
273595 7.8 HIGH
Local 		google android platform/msm_shared/partition_parser.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate certain GUID Partition Table (GPT) data, which allows … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8890 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
273596 7.8 HIGH
Local 		google android The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android inter… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8889 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
273597 7.8 HIGH
Local 		google android Integer overflow in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allows attackers to bypass intended access restrictions via a crafted block count and … CWE-264
CWE-189
Permissions, Privileges, and Access Controls
Numeric Errors 		CVE-2015-8888 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
273598 2.9 LOW
Physics 		symantec endpoint_protection_manager Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations befo… CWE-254
CWE-284
 7PK - Security Features
Improper Access Control 		CVE-2015-8801 2024-11-21 11:39 2016-07-1 Show GitHub Exploit DB Packet Storm
273599 7.5 HIGH
Network 		canonical
thekelleys 		ubuntu_linux
dnsmasq 		Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally. CWE-20
 Improper Input Validation  		CVE-2015-8899 2024-11-21 11:39 2016-07-1 Show GitHub Exploit DB Packet Storm
273600 9.1 CRITICAL
Network 		openstack neutron The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of s… CWE-254
 7PK - Security Features 		CVE-2015-8914 2024-11-21 11:39 2016-06-18 Show GitHub Exploit DB Packet Storm