Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209041 4.4 警告 Pocoo - Jinja2 の FileSystemBytecodeCache における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0012 2014-12-25 14:43 2014-01-10 Show GitHub Exploit DB Packet Storm
209042 4.6 警告 Xen プロジェクト - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-5148 2014-12-25 14:41 2014-08-12 Show GitHub Exploit DB Packet Storm
209043 5.8 警告 Charles Cazabon - getmail の IMAP-over-SSL の実装において IMAP サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7274 2014-12-25 14:40 2014-10-7 Show GitHub Exploit DB Packet Storm
209044 5.8 警告 Charles Cazabon - getmail の POP3-over-SSL の実装において POP3 サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7275 2014-12-25 14:39 2014-10-7 Show GitHub Exploit DB Packet Storm
209045 6.5 警告 シスコシステムズ - Cisco Unified Communications Domain Manager の Web フレームワークにおける任意の OS コマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-8010 2014-12-25 14:39 2014-12-9 Show GitHub Exploit DB Packet Storm
209046 5.4 警告 シスコシステムズ - 複数の Cisco-Meraki デバイスのファームウェアにおける任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-7994 2014-12-25 14:20 2014-12-23 Show GitHub Exploit DB Packet Storm
209047 3.3 注意 シスコシステムズ - 複数の Cisco-Meraki デバイスのファームウェアにおける重要な認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-7993 2014-12-25 14:14 2014-12-23 Show GitHub Exploit DB Packet Storm
209048 3.5 注意 IBM - IBM WebSphere Service Registry and Repository におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6188 2014-12-25 12:21 2014-12-19 Show GitHub Exploit DB Packet Storm
209049 6 警告 IBM - IBM WebSphere Service Registry and Repository におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-6187 2014-12-25 12:21 2014-12-19 Show GitHub Exploit DB Packet Storm
209050 4 警告 IBM - IBM WebSphere Service Registry and Repository における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-6181 2014-12-25 12:20 2014-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252401 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4690 2024-10-22 00:51 2024-10-17 Show GitHub Exploit DB Packet Storm
252402 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.12-12.2.13. Easily exploitable vulnerability … NVD-CWE-noinfo
CVE-2024-21267 2024-10-22 00:50 2024-10-16 Show GitHub Exploit DB Packet Storm
252403 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability all… NVD-CWE-noinfo
CVE-2024-21266 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
252404 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability a… NVD-CWE-noinfo
CVE-2024-21265 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
252405 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4184 2024-10-21 23:09 2024-10-17 Show GitHub Exploit DB Packet Storm
252406 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4189 2024-10-21 23:08 2024-10-17 Show GitHub Exploit DB Packet Storm
252407 5.5 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens… CWE-611
XXE 		CVE-2024-45072 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
252408 4.8 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering t… CWE-79
Cross-site Scripting 		CVE-2024-45071 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
252409 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix state management in error path of log writing function After commit a694291a6211 ("nilfs2: separate wait function fro… NVD-CWE-noinfo
CVE-2024-47669 2024-10-21 22:28 2024-10-10 Show GitHub Exploit DB Packet Storm
252410 7.5 HIGH
Network 		rockwellautomation controllogix_5580_firmware
controllogix_5580_process_firmware
guardlogix_5580_firmware
compactlogix_5380_firmware
compact_guardlogix_5380_sil_2_firmware
compact_guardlogix_5380_sil_3_f… 		CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and send a specially crafted CIP message to the device. If exploited, a threat actor co… NVD-CWE-noinfo
CVE-2024-6207 2024-10-21 22:20 2024-10-15 Show GitHub Exploit DB Packet Storm