Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203601 5.8 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle GlassFish Server における Administration に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3608 2016-07-27 14:16 2016-07-19 Show GitHub Exploit DB Packet Storm
203602 9.8 緊急
Network 		オラクル - Oracle Fusion Middleware の Oracle GlassFish Server における Web Container に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3607 2016-07-27 14:16 2016-07-19 Show GitHub Exploit DB Packet Storm
203603 9.8 緊急
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における WLS Core Components に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3586 2016-07-27 14:16 2016-07-19 Show GitHub Exploit DB Packet Storm
203604 8.1 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle TopLink における JPA-RS に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3564 2016-07-27 14:15 2016-07-19 Show GitHub Exploit DB Packet Storm
203605 7.6 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle Business Intelligence Enterprise Edition における Analytics Web General に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3544 2016-07-27 14:15 2016-07-19 Show GitHub Exploit DB Packet Storm
203606 8.1 重要
Local 		オラクル - Oracle Java SE における Install に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3552 2016-07-27 10:59 2016-07-19 Show GitHub Exploit DB Packet Storm
203607 7.7 重要
Local 		オラクル - Oracle Java SE における Deployment に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3511 2016-07-27 10:59 2016-07-19 Show GitHub Exploit DB Packet Storm
203608 5.3 警告
Network 		オラクル - Oracle Java SE における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3498 2016-07-27 10:59 2016-07-19 Show GitHub Exploit DB Packet Storm
203609 9.8 緊急
Network 		オラクル - Oracle Virtualization の Oracle Secure Global Desktop における OpenSSL に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3613 2016-07-27 10:30 2016-07-19 Show GitHub Exploit DB Packet Storm
203610 9 緊急
Network 		オラクル - Oracle Database Server の OJVM における脆弱性 CWE-noinfo
情報不足 		CVE-2016-3609 2016-07-27 10:01 2016-07-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291361 - chamanet chamacargo Cross-site scripting (XSS) vulnerability in ChamaNet ChamaCargo 7.0000 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-4704 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291362 - hp procurve_manager
identity_driven_manager 		The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote attackers to execute arbitrary commands via a… CWE-94
Code Injection 		CVE-2013-4813 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291363 - hp procurve_manager
identity_driven_manager 		UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert… CWE-20
 Improper Input Validation  		CVE-2013-4811 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291364 - hp procurve_manager
identity_driven_manager 		UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName a… CWE-20
 Improper Input Validation  		CVE-2013-4812 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291365 - hp procurve_manager
identity_driven_manager 		Multiple SQL injection vulnerabilities in GetEventsServlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allow remote attackers to execute arbitr… CWE-89
SQL Injection 		CVE-2013-4809 2024-11-21 10:56 2013-09-16 Show GitHub Exploit DB Packet Storm
291366 - opera opera_browser Cross-site scripting (XSS) vulnerability in Opera before 15.00 allows remote attackers to inject arbitrary web script or HTML by leveraging UTF-8 encoding. CWE-79
Cross-site Scripting 		CVE-2013-4705 2024-11-21 10:56 2013-09-13 Show GitHub Exploit DB Packet Storm
291367 - sophos web_appliance The close_connections function in /opt/cma/bin/clear_keys.pl in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows local users to gain privileges via shell metacharacters in the second… CWE-264
CWE-78
Permissions, Privileges, and Access Controls
OS Command  		CVE-2013-4984 2024-11-21 10:56 2013-09-10 Show GitHub Exploit DB Packet Storm
291368 - sophos web_appliance_firmware The get_referers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the… CWE-78
OS Command  		CVE-2013-4983 2024-11-21 10:56 2013-09-10 Show GitHub Exploit DB Packet Storm
291369 - cybozu office Cross-site scripting (XSS) vulnerability in the top-page customization feature in Cybozu Office before 9.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-4703 2024-11-21 10:56 2013-09-10 Show GitHub Exploit DB Packet Storm
291370 - twilightcms twilight_cms Directory traversal vulnerability in DeWeS web server 0.4.2 and possibly earlier, as used in Twilight CMS, allows remote attackers to read arbitrary files via a ..%5c (dot dot encoded backslash) in a… CWE-22
Path Traversal 		CVE-2013-4900 2024-11-21 10:56 2013-09-10 Show GitHub Exploit DB Packet Storm