Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206221 5 警告 日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6519 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206222 5 警告 日立
オラクル		 - 複数の Oracle Java 製品における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6517 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206223 5 警告 日立
オラクル		 - Oracle Java SE における Deployment に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6515 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206224 10 危険 日立
オラクル		 - Oracle Java SE および Java SE Embedded における AWT に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6513 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206225 4.3 警告 日立
オラクル		 - 複数の Oracle Java 製品における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6512 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206226 5 警告 日立
オラクル		 - Oracle Java SE における 2D に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6511 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206227 6.8 警告 日立
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-6506 2016-01-28 11:43 2014-10-14 Show GitHub Exploit DB Packet Storm
206228 4.3 警告 FFmpeg
Libav		 - FFmpeg における cross-origin 攻撃を実行される脆弱性 CWE-200
CWE-Other
CVE-2016-1897 2016-01-28 10:43 2016-01-14 Show GitHub Exploit DB Packet Storm
206229 10 危険 シスコシステムズ - Cisco Firepower 9000 デバイス上で稼動する FX-OS および Unified Computing System Manager の不特定の CGI スクリプトにおける任意の shell コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2015-6435 2016-01-27 18:06 2015-08-17 Show GitHub Exploit DB Packet Storm
206230 10 危険 シスコシステムズ - Cisco Modular Encoding Platform D9036 ソフトウェアにおけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2015-6412 2016-01-27 18:06 2015-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349991 - skype skype Unspecified vulnerability in the Extras Manager before 2.0.0.67 in Skype before 4.1.0.179 on Windows has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2009-4741 2010-03-29 13:00 2010-03-27 Show GitHub Exploit DB Packet Storm
349992 - arwscripts fonts_script Directory traversal vulnerability in viewfile.php in ARWScripts Fonts Script allows remote attackers to read arbitrary local files via directory traversal sequences in a base64-encoded f parameter. … CWE-22
Path Traversal 		CVE-2010-0613 2010-03-26 14:37 2010-02-12 Show GitHub Exploit DB Packet Storm
349993 - tristan_barczyk klonews Cross-site scripting (XSS) vulnerability in cat.php in KloNews 2.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter. CWE-79
Cross-site Scripting 		CVE-2010-1112 2010-03-26 13:00 2010-03-26 Show GitHub Exploit DB Packet Storm
349994 - phptroubleticket php_trouble_ticket SQL injection vulnerability in vedi_faq.php in PHP Trouble Ticket 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-1089 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
349995 - scriptsfeed dating_software Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the (1) txtgender and (2) txtlookgender parameter… CWE-89
SQL Injection 		CVE-2010-1096 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
349996 - springsource application_management_suite
hyperic_hq
tc_server 		Multiple cross-site scripting (XSS) vulnerabilities in SpringSource tc Server 6.0.20.B and earlier, Application Management Suite (AMS) before 2.0.0.SR4, Hyperic HQ Open Source before 4.2.x, Hyperic H… CWE-79
Cross-site Scripting 		CVE-2009-2907 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
349997 - springsource application_management_suite
hyperic_hq
tc_server 		Per: http://www.springsource.com/security/cve-2009-2907 'Mitigation: * Hyperic HQ Open Source users should upgrade to Hyperic HQ 4.2.x * Hyperic HQ 4.0 Enterprise users should upgra… CWE-79
Cross-site Scripting 		CVE-2009-2907 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
349998 - openinferno oi.blogs Multiple directory traversal vulnerabilities in OI.Blogs 1.0.0, when magic_quotes_gpc is disabled, allow remote attackers to read arbitrary files via directory traversal sequences in the (1) theme pa… CWE-22
Path Traversal 		CVE-2010-1082 2010-03-25 04:52 2010-03-24 Show GitHub Exploit DB Packet Storm
349999 - corejoomla com_communitypolls Directory traversal vulnerability in the Community Polls (com_communitypolls) component 1.5.2, and possibly earlier, for Core Joomla! allows remote attackers to read arbitrary files via a .. (dot dot… CWE-22
Path Traversal 		CVE-2010-1081 2010-03-25 04:30 2010-03-24 Show GitHub Exploit DB Packet Storm
350000 - sawmill sawmill Cross-site scripting (XSS) vulnerability in Sawmill before 7.2.18 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-1079 2010-03-25 04:12 2010-03-24 Show GitHub Exploit DB Packet Storm