Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
232531 7.5 危険 telepark - telepark.wiki の ajax/addComment.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2009-4090 2012-12-20 19:28 2009-11-29 Show GitHub Exploit DB Packet Storm
232532 5 警告 telepark - telepark.wiki における認可を回避される脆弱性 CWE-287
不適切な認証
CVE-2009-4089 2012-12-20 19:28 2009-11-29 Show GitHub Exploit DB Packet Storm
232533 6.8 警告 telepark - telepark.wiki におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-4088 2012-12-20 19:28 2009-11-29 Show GitHub Exploit DB Packet Storm
232534 4.3 警告 telepark - telepark.wiki の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4087 2012-12-20 19:28 2009-11-29 Show GitHub Exploit DB Packet Storm
232535 4.3 警告 puntolatinoclub - Drupal 用の Gallery Assist モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4064 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
232536 4.3 警告 yuriy babenko - Drupal 用の Agreement モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4061 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
232537 7.5 危険 telebidauctionscript - Telebid Auction Script の allauctions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-4058 2012-12-20 19:28 2009-11-23 Show GitHub Exploit DB Packet Storm
232538 7.5 危険 PowerDNS - PowerDNS Recursor における DNS データを偽装される脆弱性 CWE-noinfo
情報不足
CVE-2009-4010 2012-12-20 19:28 2010-01-6 Show GitHub Exploit DB Packet Storm
232539 10 危険 PowerDNS - PowerDNS Recursor におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-4009 2012-12-20 19:28 2010-01-6 Show GitHub Exploit DB Packet Storm
232540 9.3 危険 XnSoft - XnView における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2009-4001 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291401 - animoca star_girl The Star Girl (aka com.animoca.google.starGirl) application 3.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain… CWE-310
Cryptographic Issues
CVE-2014-5569 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291402 - androkera las_vegas_lottery_scratch_off The Las Vegas Lottery Scratch Off (aka com.androkera.lottery) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server… CWE-310
Cryptographic Issues
CVE-2014-5568 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291403 - hasb_e_haal_project hasb_e_haal The hasb_e_haal (aka com.anawaz.hasb_e_haal) application 1.0.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain se… CWE-310
Cryptographic Issues
CVE-2014-5567 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291404 - americostech selfshot_front_flash_camera The Selfshot - Front Flash Camera (aka com.americos.selfshot) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server… CWE-310
Cryptographic Issues
CVE-2014-5566 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291405 - gadgettrak gadgettrak_mobile_security The GadgetTrak Mobile Security (aka com.activetrak.android.app) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof serv… CWE-310
Cryptographic Issues
CVE-2014-5565 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291406 - aceviral angry_gran_toss The Angry Gran Toss (aka com.aceviral.angrygrantoss) application 1.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and o… CWE-310
Cryptographic Issues
CVE-2014-5564 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291407 - show_do_milhao_2014_project show_do_milhao_2014 The Show do Milhao 2014 (aka br.com.lgrmobile.sdm) application 1.4.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obt… CWE-310
Cryptographic Issues
CVE-2014-5563 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291408 - coles_credit_cards coles_credit_card_app The Coles Credit Card App (aka au.com.colesfinancialservices.mobile) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spo… CWE-310
Cryptographic Issues
CVE-2014-5562 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291409 - devarai word_search_free The Word Search Free (aka air.wordSearchFree) application 4.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sen… CWE-310
Cryptographic Issues
CVE-2014-5561 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm
291410 - mdickie popscene The Popscene (Music Industry Sim) (aka air.Popscene) application 1.04 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and ob… CWE-310
Cryptographic Issues
CVE-2014-5560 2024-11-21 11:12 2014-09-9 Show GitHub Exploit DB Packet Storm