Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205971	5	警告	Moxa Inc.	-	Moxa ioLogik E2200 デバイスおよび ioAdmin Configuration Utility における関連する平文を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2016-2283	2016-03-15 10:26	2016-03-3	Show	GitHub Exploit DB Packet Storm

205972	5	警告	Ruby on Rails project	-	Ruby on Rails の Action Pack の actionpack/lib/action_dispatch/routing/route_set.rb におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-7581	2016-03-14 17:48	2015-08-21	Show	GitHub Exploit DB Packet Storm

205973	5	警告	シスコシステムズ	-	Cisco Advanced Malware Protection のプロキシエンジンにおけるコンテンツの制限を回避される脆弱性	CWE-Other その他	CVE-2016-1315	2016-03-14 15:53	2016-02-11	Show	GitHub Exploit DB Packet Storm

205974	10	危険	アドバンテック株式会社	-	Advantech/B+B SmartWorx VESP211-EU および VESP211-232 デバイスのファームウェアの Web インターフェースにおける管理アクションを実行される脆弱性	CWE-Other その他	CVE-2016-2275	2016-03-14 15:10	2016-02-18	Show	GitHub Exploit DB Packet Storm

205975	6.9	警告	シスコシステムズ	-	Cisco Nexus 2000 Fabric Extender デバイス上で稼動する Cisco NX-OS における権限を取得される脆弱性	CWE-255 CWE-264	CVE-2016-1341	2016-03-14 14:53	2016-02-23	Show	GitHub Exploit DB Packet Storm

205976	5	警告	シスコシステムズ	-	Cisco Web セキュリティアプライアンスデバイス上で稼動する AsyncOS の HTTPS プロキシ機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-1288	2016-03-14 14:53	2016-03-2	Show	GitHub Exploit DB Packet Storm

205977	5	警告	ヒューレット・パッカード	-	複数の HP プリンタ製品のファームウェアにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-2244	2016-03-14 14:45	2016-03-1	Show	GitHub Exploit DB Packet Storm

205978	5	警告	Novell	-	Novell ZENworks Configuration Management の ChangePassword RPC メソッドにおける XPath インジェクション攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2015-5970	2016-03-14 14:14	2015-09-17	Show	GitHub Exploit DB Packet Storm

205979	7.5	危険	Nettle project Novell Canonical	-	Nettle の x86_64/ecc-384-modp.asm における不特定の脆弱性	CWE-310 CWE-Other	CVE-2015-8804	2016-03-14 14:08	2015-12-15	Show	GitHub Exploit DB Packet Storm

205980	7.5	危険	Nettle project Novell Canonical	-	Nettle の ecc-256.c の ecc_256_modp 関数における脆弱性	CWE-310 CWE-Other	CVE-2015-8803	2016-03-14 14:08	2015-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348821	-	oracle	database_server oracle9i	The triggers in Oracle 9i and 10g allow local users to gain privileges by using a sequence of partially privileged actions: using CCBKAPPLROWTRIG or EXEC_CBK_FN_DML to add arbitrary functions to the …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2004-1338	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

348822	-	oracle	database_server oracle9i	SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote attackers to execute arbitrary SQL commands via the …	CWE-89 SQL Injection	CVE-2004-1339	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

348823	-	debian	debian_linux	Debian GNU/Linux 3.0 installs the libpam-radius-auth package with the pam_radius_auth.conf set to be world-readable, which allows local users to obtain sensitive information.	NVD-CWE-Other	CVE-2004-1340	2017-07-11 10:30	2005-01-26	Show	GitHub Exploit DB Packet Storm

348824	-	roar_smith	info2www	Cross-site scripting (XSS) vulnerability in info2www before 1.2.2.9 allows remote attackers to inject arbitrary web script or HTML via the arguments to info2www.	NVD-CWE-Other	CVE-2004-1341	2017-07-11 10:30	2005-04-19	Show	GitHub Exploit DB Packet Storm

348825	-	sun	java_system_web_proxy_server	Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNEC…	NVD-CWE-Other	CVE-2004-1350	2017-07-11 10:30	2004-10-30	Show	GitHub Exploit DB Packet Storm

348826	-	oracle	application_server collaboration_suite e-business_suite enterprise_manager enterprise_manager_database_control enterprise_manager_grid_control oracle10g oracle8i oracle9i	The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote attacker…	NVD-CWE-Other	CVE-2004-1362	2017-07-11 10:30	2004-08-4	Show	GitHub Exploit DB Packet Storm

348827	-	oracle	application_server collaboration_suite e-business_suite enterprise_manager enterprise_manager_database_control enterprise_manager_grid_control oracle10g oracle8i oracle9i	Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.	NVD-CWE-Other	CVE-2004-1365	2017-07-11 10:30	2004-08-4	Show	GitHub Exploit DB Packet Storm

348828	-	oracle	application_server collaboration_suite e-business_suite enterprise_manager enterprise_manager_database_control enterprise_manager_grid_control oracle10g oracle8i oracle9i	Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.	CWE-255 Credentials Management	CVE-2004-1366	2017-07-11 10:30	2004-08-4	Show	GitHub Exploit DB Packet Storm

348829	-	oracle	application_server collaboration_suite e-business_suite enterprise_manager enterprise_manager_database_control enterprise_manager_grid_control oracle10g oracle8i oracle9i	ISQL*Plus in Oracle 10g Application Server allows remote attackers to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script.	NVD-CWE-noinfo	CVE-2004-1368	2017-07-11 10:30	2004-08-4	Show	GitHub Exploit DB Packet Storm

348830	-	oracle	application_server collaboration_suite e-business_suite enterprise_manager enterprise_manager_database_control enterprise_manager_grid_control oracle10g oracle8i oracle9i	The TNS Listener in Oracle 10g allows remote attackers to cause a denial of service (listener crash) via a malformed service_register_NSGR request containing a value that is used as an invalid offset…	NVD-CWE-Other	CVE-2004-1369	2017-07-11 10:30	2004-08-4	Show	GitHub Exploit DB Packet Storm