Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201191 5 警告 オラクル - Oracle E-Business Suite の Oracle Balanced Scorecard における Scorecard Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0571 2016-01-25 12:17 2016-01-19 Show GitHub Exploit DB Packet Storm
201192 5 警告 オラクル - Oracle E-Business Suite の Oracle HCM Configuration Workbench における Internal Operations に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0570 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201193 5 警告 オラクル - Oracle E-Business Suite の Oracle E-Business Intelligence における Overview Page/Report Rendering に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0569 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201194 5 警告 オラクル - Oracle E-Business Suite の Oracle Email Center における Server Components に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0568 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201195 5 警告 オラクル - Oracle E-Business Suite の Oracle E-Business Intelligence における Embedded Data Warehouse に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0567 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201196 5 警告 オラクル - Oracle E-Business Suite の Oracle Marketing における Deliverables に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0566 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201197 5 警告 オラクル - Oracle E-Business Suite の Oracle Marketing における Marketing Administration に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0565 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201198 5.5 警告 オラクル - Oracle E-Business Suite の Oracle E-Business Intelligence における Overview Page/Report Rendering に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0564 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201199 6.4 警告 オラクル - Oracle E-Business Suite の Oracle CRM Technical Foundation における Common Techstack に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0563 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
201200 4 警告 オラクル - Oracle E-Business Suite の Oracle Common Applications における CRM User Management Framework に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0562 2016-01-25 12:16 2016-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297591 - php-stats php-stats Cross-site scripting (XSS) vulnerability in admin.php in Php-Stats 0.1.9.1 allows remote attackers to inject arbitrary web script or HTML via the (1) sel_mese and (2) sel_anno parameters in a systems… CWE-79
Cross-site Scripting 		CVE-2008-6212 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm
297592 - extrakt extrakt_framework Cross-site scripting (XSS) vulnerability in index.php in Extrakt Framework 0.7 allows remote attackers to inject arbitrary web script or HTML via the plugins[file][id] parameter. NOTE: the provenanc… CWE-79
Cross-site Scripting 		CVE-2008-6217 2017-08-17 10:29 2009-02-21 Show GitHub Exploit DB Packet Storm
297593 - drupal content_construction_kit Cross-site scripting (XSS) vulnerability in the administrative interface in Drupal Content Construction Kit (CCK) 5.x before 5.x-1.10 and 6.x before 6.x-2.0, a module for Drupal, allows remote authen… CWE-79
Cross-site Scripting 		CVE-2008-6229 2017-08-17 10:29 2009-02-21 Show GitHub Exploit DB Packet Storm
297594 - cafuego simple_document_management_system SQL injection vulnerability in login.php in Simple Document Management System (SDMS) 1.1.5 and 1.1.4, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the login par… CWE-89
SQL Injection 		CVE-2008-6236 2017-08-17 10:29 2009-02-22 Show GitHub Exploit DB Packet Storm
297595 - openedit openedit_digital_asset_management Cross-site scripting (XSS) vulnerability in archive/savedqueries/savequeryfinish.html in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to inject arbitrary web script o… CWE-79
Cross-site Scripting 		CVE-2008-6238 2017-08-17 10:29 2009-02-24 Show GitHub Exploit DB Packet Storm
297596 - openedit openedit_digital_asset_management Cross-site request forgery (CSRF) vulnerability in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to perform unspecified actions as arbitrary users via unknown vectors. CWE-352
 Origin Validation Error 		CVE-2008-6239 2017-08-17 10:29 2009-02-24 Show GitHub Exploit DB Packet Storm
297597 - openedit openedit_digital_asset_management Cross-site scripting (XSS) vulnerability in data/views/index.html in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to inject arbitrary web script or HTML via the catal… CWE-79
Cross-site Scripting 		CVE-2008-6240 2017-08-17 10:29 2009-02-24 Show GitHub Exploit DB Packet Storm
297598 - infireal saturncms SQL injection vulnerability in lib/url/meta_url.php in SaturnCMS allows remote attackers to execute arbitrary SQL commands via the URL to the translate function. NOTE: the provenance of this informa… CWE-89
SQL Injection 		CVE-2008-6262 2017-08-17 10:29 2009-02-25 Show GitHub Exploit DB Packet Storm
297599 - myktools myktools Directory traversal vulnerability in configuration_script.php in MyKtools 3.0 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the langage… CWE-22
Path Traversal 		CVE-2008-6273 2017-08-17 10:29 2009-02-26 Show GitHub Exploit DB Packet Storm
297600 - drupal user_karma_module Cross-site scripting (XSS) vulnerability in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2008-6275 2017-08-17 10:29 2009-02-26 Show GitHub Exploit DB Packet Storm