Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204991 8.2 重要
Network 		オラクル - Oracle Commerce の Oracle Commerce Service Center における Commerce Service Center に関する脆弱性 CWE-Other
その他 		CVE-2016-5491 2016-10-28 13:52 2016-10-18 Show GitHub Exploit DB Packet Storm
204992 8.2 重要
Network 		オラクル - Oracle Commerce の Oracle Commerce Guided Search における Oracle Commerce Guided Search に関する脆弱性 CWE-Other
その他 		CVE-2016-5482 2016-10-28 13:52 2016-10-18 Show GitHub Exploit DB Packet Storm
204993 2.4
Network 		オラクル - Oracle Database Server の RDBMS Security and SQL*Plus における脆弱性 CWE-200
情報漏えい 		CVE-2016-3562 2016-10-28 13:51 2016-10-18 Show GitHub Exploit DB Packet Storm
204994 5.5 警告
Local 		オラクル - Oracle Sun Systems Products Suite の Solaris における Kernel Zones に関する脆弱性 CWE-Other
その他 		CVE-2016-5576 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
204995 5.3 警告
Network 		オラクル - Oracle E-Business Suite の Oracle Common Applications Calendar における Resources Module に関する脆弱性 CWE-200
CWE-Other
CVE-2016-5575 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
204996 8.6 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-Other
その他 		CVE-2016-5574 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
204997 7.6 重要
Network 		オラクル - Oracle E-Business Suite の Oracle iProcurement における Requisition Management に関する脆弱性 CWE-Other
その他 		CVE-2016-5562 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
204998 3.1
Network 		オラクル - Oracle Sun Systems Products Suite の Solaris における IKE に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5561 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
204999 5.4 警告
Network 		オラクル - Oracle Siebel CRM の Siebel UI Framework における OpenUI に関する脆弱性 CWE-Other
その他 		CVE-2016-5560 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
205000 4.1 警告
Local 		オラクル - Oracle Sun Systems Products Suite の Solaris における Kernel に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5559 2016-10-28 13:44 2016-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290081 - debian dpkg-dev Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pse… CWE-22
Path Traversal 		CVE-2014-3865 2024-11-21 11:09 2014-05-31 Show GitHub Exploit DB Packet Storm
290082 - debian dpkg-dev Directory traversal vulnerability in dpkg-source in dpkg-dev 1.3.0 allows remote attackers to modify files outside of the intended directories via a crafted source package that lacks a --- header lin… CWE-22
Path Traversal 		CVE-2014-3864 2024-11-21 11:09 2014-05-31 Show GitHub Exploit DB Packet Storm
290083 - webmin webmin
userwin 		Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows. CWE-79
Cross-site Scripting 		CVE-2014-3924 2024-11-21 11:09 2014-05-30 Show GitHub Exploit DB Packet Storm
290084 - digitalzoomstudio video_gallery Multiple cross-site scripting (XSS) vulnerabilities in the Digital Zoom Studio (DZS) Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the logoLink … CWE-79
Cross-site Scripting 		CVE-2014-3923 2024-11-21 11:09 2014-05-30 Show GitHub Exploit DB Packet Storm
290085 - trendmicro interscan_messaging_security_virtual_appliance Cross-site scripting (XSS) vulnerability in Trend Micro InterScan Messaging Security Virtual Appliance 8.5.1.1516 allows remote authenticated users to inject arbitrary web script or HTML via the addW… CWE-79
Cross-site Scripting 		CVE-2014-3922 2024-11-21 11:09 2014-05-30 Show GitHub Exploit DB Packet Storm
290086 - simple_popup_project simple_popup Cross-site scripting (XSS) vulnerability in popup.php in the Simple Popup Images plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the z parameter. CWE-79
Cross-site Scripting 		CVE-2014-3921 2024-11-21 11:09 2014-05-30 Show GitHub Exploit DB Packet Storm
290087 - dlink dap-1350_firmware
dap-1350 		Multiple SQL injection vulnerabilities in the administration login page in D-Link DAP-1350 (Rev. A1) with firmware 1.14 and earlier allow remote attackers to execute arbitrary SQL commands via the (1… CWE-89
SQL Injection 		CVE-2014-3872 2024-11-21 11:09 2014-05-27 Show GitHub Exploit DB Packet Storm
290088 - geodesicsolutions geocore_max Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via t… CWE-89
SQL Injection 		CVE-2014-3871 2024-11-21 11:09 2014-05-27 Show GitHub Exploit DB Packet Storm
290089 - bib2html_project bib2html Cross-site scripting (XSS) vulnerability in the bib2html plugin 0.9.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the styleShortName parameter in an adminStyleAdd… CWE-79
Cross-site Scripting 		CVE-2014-3870 2024-11-21 11:09 2014-05-27 Show GitHub Exploit DB Packet Storm
290090 - usercake usercake Multiple cross-site request forgery (CSRF) vulnerabilities in user_settings.php in Usercake 2.0.2 and earlier allow remote attackers to hijack the authentication of administrators for requests that c… CWE-352
 Origin Validation Error 		CVE-2014-3866 2024-11-21 11:09 2014-05-27 Show GitHub Exploit DB Packet Storm