Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200971	8.1	重要 Network	オラクル	-	Oracle Financial Services Applications の Oracle FLEXCUBE Private Banking における Product / Instrument Search に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-8298	2017-02-6 11:25	2017-01-17	Show	GitHub Exploit DB Packet Storm

200972	8.1	重要 Network	オラクル	-	Oracle Financial Services Applications の Oracle FLEXCUBE Universal Banking における Core に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-8297	2017-02-6 11:25	2017-01-17	Show	GitHub Exploit DB Packet Storm

200973	6.1	警告 Network	オラクル	-	Oracle Financial Services Applications の Oracle FLEXCUBE Private Banking における Product / Instrument Search に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-8282	2017-02-6 11:25	2017-01-17	Show	GitHub Exploit DB Packet Storm

200974	5.4	警告 Network	オラクル	-	Oracle Financial Services Applications の Oracle FLEXCUBE Private Banking における Product / Instrument Search に関する脆弱性	CWE-254 セキュリティ機能	CVE-2016-5623	2017-02-6 11:25	2017-01-17	Show	GitHub Exploit DB Packet Storm

200975	4.3	警告 Network	オラクル	-	Oracle Financial Services Applications の Oracle FLEXCUBE Private Banking における Product / Instrument Search に関する脆弱性	CWE-200 情報漏えい	CVE-2016-5614	2017-02-6 11:25	2017-01-17	Show	GitHub Exploit DB Packet Storm

200976	3.1	低 Network	オラクル	-	Oracle Financial Services Applications の Oracle FLEXCUBE Investor Servicing における Core に関する脆弱性	CWE-noinfo 情報不足	CVE-2016-5509	2017-02-6 11:25	2017-01-17	Show	GitHub Exploit DB Packet Storm

200977	7.5	重要 Network	オラクル	-	Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3270	2017-02-6 11:24	2017-01-17	Show	GitHub Exploit DB Packet Storm

200978	7.5	重要 Network	オラクル	-	Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-3269	2017-02-6 11:24	2017-01-17	Show	GitHub Exploit DB Packet Storm

200979	7.5	重要 Network	オラクル	-	Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性	CWE-noinfo 情報不足	CVE-2017-3268	2017-02-6 11:24	2017-01-17	Show	GitHub Exploit DB Packet Storm

200980	7.5	重要 Network	オラクル	-	Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性	CWE-noinfo 情報不足	CVE-2017-3267	2017-02-6 11:24	2017-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291201	7.5	HIGH Network	para	antioch	The Antioch theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to lib/scripts/download.php.	CWE-22 Path Traversal	CVE-2014-10397	2024-11-21 11:03	2019-09-21	Show	GitHub Exploit DB Packet Storm

291202	7.5	HIGH Network	organizedthemes	epic	The epic theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to includes/download.php.	CWE-22 Path Traversal	CVE-2014-10396	2024-11-21 11:03	2019-09-21	Show	GitHub Exploit DB Packet Storm

291203	6.1	MEDIUM Network	codepeople	polls_cp	The cp-polls plugin before 1.0.1 for WordPress has XSS in the votes list.	CWE-79 Cross-site Scripting	CVE-2014-10395	2024-11-21 11:03	2019-08-27	Show	GitHub Exploit DB Packet Storm

291204	6.1	MEDIUM Network	cformsii_project	cformsii	The cforms2 plugin before 10.5 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2014-10393	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm

291205	6.1	MEDIUM Network	3cx	live_chat	The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections.	CWE-74 Injection	CVE-2014-10386	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm

291206	4.3	MEDIUM Network	pippinsplugins	featured_comments	The feature-comments plugin before 1.2.5 for WordPress has CSRF for featuring or burying a comment.	CWE-352 Origin Validation Error	CVE-2014-10382	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm

291207	6.1	MEDIUM Network	saschart	rich_counter	The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header.	CWE-74 Injection	CVE-2014-10394	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm

291208	6.1	MEDIUM Network	cformsii_project	cformsii	The cforms2 plugin before 10.2 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2014-10392	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm

291209	6.1	MEDIUM Network	wpsupportplus	wp_support_plus_responsive_ticket_system	The wp-support-plus-responsive-ticket-system plugin before 4.1 for WordPress has JavaScript injection.	CWE-74 Injection	CVE-2014-10391	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm

291210	9.1	CRITICAL Network	wpsupportplus	wp_support_plus_responsive_ticket_system	The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has directory traversal.	CWE-22 Path Traversal	CVE-2014-10390	2024-11-21 11:03	2019-08-23	Show	GitHub Exploit DB Packet Storm