Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209111 7.5 危険 Ettercap Project - Ettercap の dissectors/ec_postgresql.c の dissector_postgresql 関数 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-6395 2014-12-22 16:16 2014-10-16 Show GitHub Exploit DB Packet Storm
209112 5 警告 Ekahau, Inc. - 複数の Ekahau 製品におけるセットアップキーを推測される脆弱性 CWE-200
情報漏えい 		CVE-2014-9408 2014-12-22 16:12 2014-12-15 Show GitHub Exploit DB Packet Storm
209113 6.8 警告 Revive Adserver - Revive Adserver におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9407 2014-12-22 16:02 2014-05-14 Show GitHub Exploit DB Packet Storm
209114 4.3 警告 Ekahau, Inc. - 複数の Ekahau 製品における平文メッセージを取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-2716 2014-12-22 15:54 2014-12-15 Show GitHub Exploit DB Packet Storm
209115 4.3 警告 United Planet - United Planet Intrexx Professional の検索機能におけるクロスサイトスクリプティングの脆弱性 "Reflected Cross-Site Scripting (XSS)" (CWE-79) vulnerability in "Intrexx Professional" product
CWE-79
CVE-2014-2026 2014-12-22 15:32 2014-04-8 Show GitHub Exploit DB Packet Storm
209116 4.3 警告 IBM - IBM WebSphere Portal の Blog Portlet におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8902 2014-12-22 15:00 2014-12-16 Show GitHub Exploit DB Packet Storm
209117 4.9 警告 IBM - IBM WebSphere Portal におけるページに書き込まれる脆弱性 CWE-Other
その他 		CVE-2014-6193 2014-12-22 15:00 2014-12-16 Show GitHub Exploit DB Packet Storm
209118 3.5 注意 IBM - IBM Business Process Manager の Process Inspector におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6173 2014-12-22 14:59 2014-12-12 Show GitHub Exploit DB Packet Storm
209119 4.3 警告 IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6171 2014-12-22 14:59 2014-12-16 Show GitHub Exploit DB Packet Storm
209120 3.5 注意 IBM - IBM Rational Quality Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4801 2014-12-22 14:58 2014-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252331 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component: Compensation Plan). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2024-21269 2024-10-22 00:56 2024-10-16 Show GitHub Exploit DB Packet Storm
252332 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Diagnostics). Supported versions that are affected are 12.2.11-12.2.13. Easily exploitable vulnerabili… NVD-CWE-noinfo
CVE-2024-21268 2024-10-22 00:56 2024-10-16 Show GitHub Exploit DB Packet Storm
252333 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4690 2024-10-22 00:51 2024-10-17 Show GitHub Exploit DB Packet Storm
252334 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.12-12.2.13. Easily exploitable vulnerability … NVD-CWE-noinfo
CVE-2024-21267 2024-10-22 00:50 2024-10-16 Show GitHub Exploit DB Packet Storm
252335 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability all… NVD-CWE-noinfo
CVE-2024-21266 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
252336 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability a… NVD-CWE-noinfo
CVE-2024-21265 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
252337 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4184 2024-10-21 23:09 2024-10-17 Show GitHub Exploit DB Packet Storm
252338 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4189 2024-10-21 23:08 2024-10-17 Show GitHub Exploit DB Packet Storm
252339 5.5 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens… CWE-611
XXE 		CVE-2024-45072 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
252340 4.8 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering t… CWE-79
Cross-site Scripting 		CVE-2024-45071 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm