Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194171	8.2	重要 Network	オラクル	-	Oracle E-Business Suite の Oracle XML Gateway における Oracle Transport Agent に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3303	2017-02-3 14:44	2017-01-17	Show	GitHub Exploit DB Packet Storm

194172	8.2	重要 Network	オラクル	-	Oracle E-Business Suite の Oracle iStore における User Interface に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3287	2017-02-3 14:44	2017-01-17	Show	GitHub Exploit DB Packet Storm

194173	6	警告 Local	オラクル	-	Oracle E-Business Suite の Oracle Applications DBA における Patching に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3286	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194174	8.2	重要 Network	オラクル	-	Oracle E-Business Suite の Oracle Service Fulfillment Manager における User Interface に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3285	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194175	8.2	重要 Network	オラクル	-	Oracle E-Business Suite の Oracle Fulfillment Manager における User Interface に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3284	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194176	4.7	警告 Network	オラクル	-	Oracle E-Business Suite の Oracle Partner Management における User Interface に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-3283	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194177	4.7	警告 Network	オラクル	-	Oracle E-Business Suite の Oracle Partner Management における User Interface に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3282	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194178	4.7	警告 Network	オラクル	-	Oracle E-Business Suite の Oracle Partner Management における User Interface に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3281	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194179	4.7	警告 Network	オラクル	-	Oracle E-Business Suite の Oracle Partner Management における User Interface に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-3280	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

194180	8.2	重要 Network	オラクル	-	Oracle E-Business Suite の Oracle Leads Management における User Interface に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3279	2017-02-3 14:43	2017-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
471	2.7	LOW Network	-	-	Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/clients/manage_client.php Update	CWE-89 SQL Injection	CVE-2026-36945	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

472	2.7	LOW Network	-	-	Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL injection in /orms/admin/reservations/view_details.php. Update	CWE-89 SQL Injection	CVE-2026-36937	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

473	2.7	LOW Network	-	-	Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL injection in /orms/admin/rooms/view_room.php. Update	CWE-89 SQL Injection	CVE-2026-36938	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

474	7.3	HIGH Network	-	-	Sourcecodester Online Thesis Archiving System v1.0 is vulnerale to SQL injection in the file /otas/view_archive.php. Update	CWE-89 SQL Injection	CVE-2026-36948	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

475	2.7	LOW Network	-	-	Sourcecodester Online Thesis Archiving System v1.0 is vulnerable to SQL injection in /otas/projects_per_department.php. Update	CWE-89 SQL Injection	CVE-2026-36950	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

476	2.7	LOW Network	-	-	Sourcecodester Online Thesis Archiving System v1.0 is vulnerable to SQL injection in the file /otas/admin/curriculum/manage_curriculum.php. Update	CWE-89 SQL Injection	CVE-2026-36952	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

477	7.2	HIGH Network	-	-	Pachno 1.0.6 contains a stored cross-site scripting vulnerability that allows attackers to execute arbitrary HTML and script code by injecting malicious payloads into POST parameters. Attackers can i… Update	CWE-79 Cross-site Scripting	CVE-2026-40038	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

478	6.5	MEDIUM Network	-	-	Pachno 1.0.6 contains an open redirection vulnerability that allows attackers to redirect users to arbitrary external websites by manipulating the return_to parameter. Attackers can craft malicious l… Update	CWE-305 Authentication Bypass by Primary Weakness	CVE-2026-40039	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

479	8.8	HIGH Network	-	-	Pachno 1.0.6 contains an unrestricted file upload vulnerability that allows authenticated users to upload arbitrary file types by bypassing ineffective extension filtering to the /uploadfile endpoint… Update	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-40040	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm

480	4.3	MEDIUM Network	-	-	Pachno 1.0.6 contains a cross-site request forgery vulnerability that allows attackers to perform arbitrary actions in authenticated user context by exploiting missing CSRF protections on state-chang… Update	CWE-352 Origin Validation Error	CVE-2026-40041	2026-04-18 00:28	2026-04-14	Show	GitHub Exploit DB Packet Storm