Most Popular Vulnerabilities on JVN iPedia
Date: 2016/05/15 - 2016/05/21
  1. JVNDB-2016-000065
    105 BANK App fails to verify SSL server certificates
  2. JVNDB-2016-000060
    Cybozu KUNAI App fails to verify SSL server certificates
  3. JVNDB-2016-000064
    WordPress plugin "Ninja Forms" vulnerable to PHP object injection

Database Search
Keyword search: Advanced Search
New RSS
JVNDB-2016-000057 CVSS Severity:
2.6(Low)
Last Updated: 2016/05/25
Update
Multiple shiro8 Co., Ltd. freearea_ addition_plugins for EC-CUBE vulnerable to cross-site scripting
JVNDB-2016-000071 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/25
New
WordPress plugin "Markdown on Save Improved" vulnerable to cross-site scripting
JVNDB-2016-002716 CVSS Severity:
5.0(Medium)
Last Updated: 2016/05/24
New
Cross-site Scripting Vulnerability in Hitachi Tuning Manager
JVNDB-2016-002715 CVSS Severity:
5.0(Medium)
Last Updated: 2016/05/24
New
Information Disclosure Vulnerability in Hitachi Command Suite
JVNDB-2016-000050 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/24
Update
Photopt App fails to verify SSL server certificates
JVNDB-2016-000067 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/24
New
Jetstar App for iOS fails to verify SSL server certificates
JVNDB-2016-000070 CVSS Severity:
4.3(Medium)
Last Updated: 2016/05/24
New
php-contact-form vulnerable to cross-site scripting
JVNDB-2016-000068 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/24
New
HumHub vulnerable to cross-site scripting
JVNDB-2016-000069 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/20
 
MP Form Mail CGI Professional Edition vulnerable to directory traversal
JVNDB-2015-000101 CVSS Severity:
6.8(Medium)
Last Updated: 2016/05/19
 
PHP for Windows vulnerable to OS command injection
JVNDB-2016-000066 CVSS Severity:
2.6(Low)
Last Updated: 2016/05/19
 
Web Mailing List vulnerable to cross-site scripting
JVNDB-2016-000065 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/18
 
105 BANK App fails to verify SSL server certificates
JVNDB-2016-000060 CVSS Severity:
4.0(Medium)
Last Updated: 2016/05/16
 
Cybozu KUNAI App fails to verify SSL server certificates
JVNDB-2016-000064 CVSS Severity:
6.8(Medium)
Last Updated: 2016/05/16
 
WordPress plugin "Ninja Forms" vulnerable to PHP object injection
JVNDB-2016-000046 CVSS Severity:
4.3(Medium)
Last Updated: 2016/05/16
 
a-blog cms vulnerable to cross-site scripting
JVNDB-2016-000047 CVSS Severity:
5.8(Medium)
Last Updated: 2016/05/16
 
a-blog cms vulnerable to session management
JVNDB-2016-000063 CVSS Severity:
2.6(Low)
Last Updated: 2016/05/13
 
FileMaker server issue where PHP source code may be viewable
JVNDB-2016-000062 CVSS Severity:
2.3(Low)
Last Updated: 2016/05/12
 
WN-G300R Series vulnerable to cross-site scripting
JVNDB-2016-000061 CVSS Severity:
3.3(Low)
Last Updated: 2016/05/12
 
WN-GDN/R3 Series does not limit authentication attempts
JVNDB-2016-000059 CVSS Severity:
6.8(Medium)
Last Updated: 2016/05/11
 
Apache Cordova vulnerable to arbitrary plugin execution
JVNDB-2016-000058 CVSS Severity:
4.3(Medium)
Last Updated: 2016/05/11
 
Apache Cordova fails to restrict access permissions
JVNDB-2016-000048 CVSS Severity:
4.3(Medium)
Last Updated: 2016/05/06
 
EC-CUBE plugin "Social-button Plugin Premium" and "Social-button Plugin" vulnerable to cross-site scripting
JVNDB-2016-000053 CVSS Severity:
2.6(Low)
Last Updated: 2016/04/26
 
EC-CUBE vulnerable to cross-site request forgery
JVNDB-2016-000052 CVSS Severity:
5.5(Medium)
Last Updated: 2016/04/26
 
EC-CUBE fails to restrict access permissions
JVNDB-2016-000051 CVSS Severity:
5.0(Medium)
Last Updated: 2016/04/26
 
EC-CUBE fails to restrict access permissions
more...
JVNDBRSS   What is JVNDBRSS?
New RSS feed (Update: 2016/05/25)

Update RSS feed (Update: 2016/05/25)

Yearly Data
2016 2015 2014 2013
2012 2011 2010 2009
2008 2007 2006 2005
2004 2003 2002