Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209401 2.1 注意 オラクル - Oracle E-Business Suite の Oracle Applications Framework における Business Objects - BC4J に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4865 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209402 5.8 警告 オラクル - Oracle Enterprise Manager Grid Control の Enterprise Manager Base Platform における Agent Next Gen に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4859 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209403 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library における Single Signon に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4854 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209404 6.8 警告 オラクル - Oracle E-Business Suite の Oracle iSupplier Portal における XML input に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4851 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209405 6.8 警告 オラクル - Oracle E-Business Suite の Oracle Payments における Punch-in に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4849 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209406 3.6 注意 オラクル - Oracle E-Business Suite の Oracle Applications Manager における SQL Extensions に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4846 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209407 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library における Java APIs - AOL/J に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4845 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209408 4 警告 オラクル - Oracle E-Business Suite の Oracle Applications DBA における Online patching に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4762 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209409 3.6 注意 オラクル - Oracle Enterprise Manager Grid Control の Enterprise Manager Ops Center における Ops Center に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2633 2015-10-22 14:53 2015-10-20 Show GitHub Exploit DB Packet Storm
209410 1.2 注意 オラクル - Oracle Hyperion の Hyperion Installation Technology における Essbase Rapid Deploy に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4823 2015-10-22 14:50 2015-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297771 9.8 CRITICAL
Network 		zpanelcp zpanel ZPanel 10.0.1 has insufficient entropy for its password reset process. CWE-798
CWE-640
 Use of Hard-coded Credentials
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2012-5686 2024-11-21 10:45 2020-02-4 Show GitHub Exploit DB Packet Storm
297772 6.1 MEDIUM
Network 		roundup-tracker roundup Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the (1) @ok_message or (2) @error_message parameter to i… CWE-79
Cross-site Scripting 		CVE-2012-6133 2024-11-21 10:45 2020-01-31 Show GitHub Exploit DB Packet Storm
297773 5.4 MEDIUM
Network 		dokeos dokeos Dokeos 2.1.1 has multiple XSS issues involving "extra_" parameters in main/auth/profile.php. CWE-79
Cross-site Scripting 		CVE-2012-5776 2024-11-21 10:45 2020-01-30 Show GitHub Exploit DB Packet Storm
297774 5.5 MEDIUM
Local 		git-extras_project git-extras The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/changelog or (2) /tmp/.git-effort. CWE-59
Link Following 		CVE-2012-6114 2024-11-21 10:45 2020-01-29 Show GitHub Exploit DB Packet Storm
297775 7.8 HIGH
Local 		soapbox_project soapbox Soapbox through 0.3.1: Sandbox bypass - runs a second instance of Soapbox within a sandboxed Soapbox. CWE-269
 Improper Privilege Management 		CVE-2012-6302 2024-11-21 10:45 2020-01-25 Show GitHub Exploit DB Packet Storm
297776 7.5 HIGH
Network 		freeciv freeciv Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet. CWE-400
 Uncontrolled Resource Consumption 		CVE-2012-6083 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
297777 9.8 CRITICAL
Network 		ht_editor_project ht_editor HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability CWE-787
 Out-of-bounds Write 		CVE-2012-5867 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
297778 9.8 CRITICAL
Network 		babygekko babygekko BabyGekko before 1.2.4 allows PHP file inclusion. CWE-20
 Improper Input Validation  		CVE-2012-5699 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
297779 8.8 HIGH
Network 		babygekko babygekko BabyGekko before 1.2.4 has SQL injection. CWE-89
SQL Injection 		CVE-2012-5698 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
297780 9.8 CRITICAL
Network 		bulbsecurity smartphone_pentest_framework Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 through 0.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostingPath parameter to (1) SEAttack.pl or … CWE-78
OS Command  		CVE-2012-5878 2024-11-21 10:45 2020-01-4 Show GitHub Exploit DB Packet Storm