Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200261	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の framework/core/models/expConfig.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7789	2017-03-29 15:00	2016-11-2	Show	GitHub Exploit DB Packet Storm

200262	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の ramework/modules/users/models/user.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7788	2017-03-29 15:00	2016-09-29	Show	GitHub Exploit DB Packet Storm

200263	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の framework/core/subsystems/expRouter.php の getSection 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7784	2017-03-29 15:00	2016-10-27	Show	GitHub Exploit DB Packet Storm

200264	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の framework/core/models/expRecord.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7783	2017-03-29 15:00	2016-11-2	Show	GitHub Exploit DB Packet Storm

200265	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の framework/core/models/expConfig.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7782	2017-03-29 15:00	2016-11-2	Show	GitHub Exploit DB Packet Storm

200266	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の framework/modules/blog/controllers/blogController.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7781	2017-03-29 14:59	2016-09-29	Show	GitHub Exploit DB Packet Storm

200267	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS の cron/find_help.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7780	2017-03-29 14:59	2016-09-30	Show	GitHub Exploit DB Packet Storm

200268	9.8	緊急 Network	libupnp project Debian	-	Portable UPnP SDK の gena/gena_device.c の create_url_list 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-8863	2017-03-29 12:19	2016-09-7	Show	GitHub Exploit DB Packet Storm

200269	7.5	重要 Network	libupnp project Debian	-	Portable UPnP SDK における webroot の任意のファイルに書き込まれる脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-6255	2017-03-29 12:19	2016-02-24	Show	GitHub Exploit DB Packet Storm

200270	7.5	重要 Network	IBM	-	IBM QRadar におけるサーバのリソースをすべて消費される脆弱性	CWE-399 リソース管理の問題	CVE-2016-9740	2017-03-29 11:46	2016-12-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290031	-	freebsd	freebsd	The ktrace utility in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 9.3-BETA1 before p1 uses an incorrect page fault kernel trace entry size, which allows local users to obtai…	CWE-20 Improper Input Validation	CVE-2014-3873	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290032	-	sap	open_hub_service	SAP Open Hub Service has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4012	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290033	-	sap	capacity_leveling	SAP Capacity Leveling has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4011	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290034	-	sap	transaction_data_pool	SAP Transaction Data Pool has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4010	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290035	-	sap	computing_center_management_system_monitoring	SAP CCMS Monitoring (BC-CCM-MON) has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4009	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290036	-	sap	web_services_tool	SAP Web Services Tool (CA-WUI-WST) has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4008	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290037	-	sap	upgrade_tools	The SAP Upgrade tools for ABAP has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4007	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290038	-	sap	oil_industry_solution_traders_and_schedulers_workbench	The SAP Trader's and Scheduler's Workbench (TSW) for SAP Oil & Gas has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4006	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290039	-	sap	brazil	SAP Brazil add-on has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4005	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm

290040	-	sap	project_system	The (1) Structures and (2) Project-Oriented Procurement components in SAP Project System has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.	CWE-255 Credentials Management	CVE-2014-4004	2024-11-21 11:09	2014-06-10	Show	GitHub Exploit DB Packet Storm