Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209411 5.1 警告 オラクル
SpringSource		 - SpringSource Spring Framework における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1622 2015-10-22 14:20 2010-06-17 Show GitHub Exploit DB Packet Storm
209412 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle HTTP Server における Web Listener に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4914 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209413 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Access Manager における SSO Engine に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4912 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209414 5 警告 オラクル - Oracle Fusion Middleware の Oracle JDeveloper における ADF Faces に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4909 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209415 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle GlassFish Server における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4899 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209416 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Content における Content Server に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4880 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209417 1.5 注意 オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4878 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209418 1.5 注意 オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4877 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209419 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Content における Content Server に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4867 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
209420 4 警告 オラクル - Oracle Fusion Middleware の Oracle JDeveloper における ADF Faces に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4838 2015-10-22 14:17 2015-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297881 - dflabs ptk Cross-site scripting (XSS) vulnerability in ptk/lib/modal_bookmark.php in DFLabs PTK 1.0.5 allows remote attackers to inject arbitrary web script or HTML via the arg4 parameter. CWE-79
Cross-site Scripting 		CVE-2012-5902 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297882 - dflabs ptk DFLabs PTK 1.0.5 stores data files with predictable names under the web document root with insufficient access control, which allows remote attackers to read logs, images, or reports via a direct req… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5901 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297883 - samedia landshop Multiple SQL injection vulnerabilities in SAMEDIA LandShop 0.9.2 allow remote attackers to execute arbitrary SQL commands via the (1) OB_ID parameter in a single action to admin/action/objects.php, (… CWE-89
SQL Injection 		CVE-2012-5900 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297884 - samedia landshop Cross-site scripting (XSS) vulnerability in admin/action/objects.php in SAMEDIA LandShop 0.9.2 allows remote attackers to inject arbitrary web script or HTML via the OTR_HEADS[] parameter in an edit … CWE-79
Cross-site Scripting 		CVE-2012-5899 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297885 - samedia landshop Cross-site request forgery (CSRF) vulnerability in SAMEDIA LandShop 0.9.2 allows remote attackers to hijack the authentication of administrators for requests that change account settings. CWE-352
 Origin Validation Error 		CVE-2012-5898 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297886 - quest intrust The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTrust 10.4.0.853 and earlier do not properly implement the SaveToFile method, which allows remote att… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5897 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297887 - quest intrust The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest InTrust 10.4.0.853 and earlier does not properly implement the Add method, which allows remote attackers to execute arbitrar… NVD-CWE-Other
CVE-2012-5896 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297888 - irods irods Multiple unspecified vulnerabilities in iRODS before 3.1 have unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2012-5895 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297889 - havalite cms SQL injection vulnerability in hava_post.php in Havalite CMS 1.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the postId parameter. CWE-89
SQL Injection 		CVE-2012-5894 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
297890 - havalite cms Unrestricted file upload vulnerability in hava_upload.php in Havalite CMS 1.1.0 and earlier allows remote attackers to execute arbitrary code by uploading a file with a .php;.gif extension, then acce… NVD-CWE-Other
CVE-2012-5893 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm