Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
209551 8.2 重要
Network
オラクル - Oracle Supply Chain Products Suite の Oracle Configurator における JRAD Heartbeat に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3438 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
209552 6.4 警告
Network
オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3431 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
209553 3.1
Adjacent
オラクル - Oracle Supply Chain Products Suite の Oracle Agile Engineering Data Management における Engineering Communication Interface に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3428 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
209554 6.4 警告
Network
オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3420 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
209555 4.5 警告
Physics
オラクル - Oracle Retail Applications の Oracle Retail Xstore Point of Service における Xstore Services に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3429 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
209556 6.5 警告
Network
オラクル - Oracle Retail Applications の Oracle Retail MICROS ARS POS における POS に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0684 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
209557 5.5 警告
Local
オラクル - Oracle Retail Applications の Oracle Retail MICROS C2 における POS に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0469 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
209558 9.1 緊急
Network
オラクル - Oracle E-Business Suite の Oracle Field Service における Wireless に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3466 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
209559 6.9 警告
Network
オラクル - Oracle E-Business Suite の Oracle Applications Framework における OAF Core に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3447 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
209560 8.2 重要
Network
オラクル - Oracle E-Business Suite の Oracle CRM Wireless における Call Phone Number Page に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3439 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298131 - dell idrac6_bmc The Dell iDRAC6 with firmware 1.x before 1.92 and 2.x and 3.x before 3.42, and iDRAC7 with firmware before 1.23.23, allows remote attackers to bypass authentication and execute arbitrary IPMI command… CWE-287
Improper Authentication
CVE-2013-4783 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
298132 - supermicro bmc The Supermicro BMC implementation allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password. CWE-287
Improper Authentication
CVE-2013-4782 2024-11-21 10:56 2013-07-9 Show GitHub Exploit DB Packet Storm
298133 - phpmyadmin phpmyadmin import.php in phpMyAdmin 4.x before 4.0.4.1 does not properly restrict the ability of input data to specify a file format, which allows remote authenticated users to modify the GLOBALS superglobal ar… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-4729 2024-11-21 10:56 2013-07-4 Show GitHub Exploit DB Packet Storm
298134 - usertask_center_messaging_project usertask_center_messaging Cross-site scripting (XSS) vulnerability in the UserTask Center, Messaging (sys_messages) extension 1.1.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unsp… CWE-79
Cross-site Scripting
CVE-2013-4749 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm
298135 - georg_ringer news SQL injection vulnerability in the News system (news) extension before 1.3.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2013-4748 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm
298136 - kasper_skarhoj accessible_is_browse_results Cross-site scripting (XSS) vulnerability in the Accessible browse results for indexed search (accessible_is_browse_results) extension 1.2.1 and earlier for TYPO3 allows remote attackers to inject arb… CWE-79
Cross-site Scripting
CVE-2013-4747 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm
298137 - kurt_gusbeth myquizpoll Cross-site scripting (XSS) vulnerability in the My quiz and poll (myquizpoll) extension before 2.0.6 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2013-4746 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm
298138 - kurt_gusbeth myquizpoll SQL injection vulnerability in the My quiz and poll (myquizpoll) extension before 2.0.6 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2013-4745 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm
298139 - phpunit_project phpunit Cross-site scripting (XSS) vulnerability in the PHPUnit extension before 3.5.15 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2013-4744 2024-11-21 10:56 2013-07-2 Show GitHub Exploit DB Packet Storm
298140 - monroe_electronics
digital_alert_systems
r189_one-net_eas
dasdec_eas
The Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 have a default password for an administrative account, which makes it easier f… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-4735 2024-11-21 10:56 2013-07-1 Show GitHub Exploit DB Packet Storm