Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210571 7.5 危険 Todd Palino - phpMyRecipes の dosearch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9347 2014-12-10 18:00 2014-11-25 Show GitHub Exploit DB Packet Storm
210572 7.5 危険 Guruperl.net Inc. - Guruperl.net Advertise With Pleasure! Professional における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9345 2014-12-10 17:59 2014-12-2 Show GitHub Exploit DB Packet Storm
210573 5 警告 Eleanor CMS - Eleanor CMS の go.php におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-9180 2014-12-10 17:29 2014-11-11 Show GitHub Exploit DB Packet Storm
210574 6.4 警告 Squid-cache.org - Squid の pinger における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-7141 2014-12-10 17:26 2014-09-15 Show GitHub Exploit DB Packet Storm
210575 6.8 警告 Globiz Solutions - SnowFox CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9344 2014-12-10 17:10 2014-11-20 Show GitHub Exploit DB Packet Storm
210576 5 警告 MantisBT Group - MantisBT における CAPTCHA 保護メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2014-9117 2014-12-10 17:07 2014-11-26 Show GitHub Exploit DB Packet Storm
210577 5.8 警告 Globiz Solutions - SnowFox CMS の modules/system/controller/selectlanguage.class.php におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-9343 2014-12-10 17:07 2014-11-20 Show GitHub Exploit DB Packet Storm
210578 6.5 警告 Reality66 - WordPress 用 Cart66 Lite プラグインの models/Cart66Ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9305 2014-12-10 17:04 2014-11-10 Show GitHub Exploit DB Packet Storm
210579 7.5 危険 MantisBT Group - MantisBT の core/current_user_api.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-9280 2014-12-10 17:01 2014-12-5 Show GitHub Exploit DB Packet Storm
210580 5 警告 MantisBT Group - MantisBT の admin/upgrade_unattended.php におけるデータベースの認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-9279 2014-12-10 17:01 2014-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252401 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4690 2024-10-22 00:51 2024-10-17 Show GitHub Exploit DB Packet Storm
252402 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.12-12.2.13. Easily exploitable vulnerability … NVD-CWE-noinfo
CVE-2024-21267 2024-10-22 00:50 2024-10-16 Show GitHub Exploit DB Packet Storm
252403 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability all… NVD-CWE-noinfo
CVE-2024-21266 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
252404 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability a… NVD-CWE-noinfo
CVE-2024-21265 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
252405 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4184 2024-10-21 23:09 2024-10-17 Show GitHub Exploit DB Packet Storm
252406 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4189 2024-10-21 23:08 2024-10-17 Show GitHub Exploit DB Packet Storm
252407 5.5 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens… CWE-611
XXE 		CVE-2024-45072 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
252408 4.8 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering t… CWE-79
Cross-site Scripting 		CVE-2024-45071 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
252409 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix state management in error path of log writing function After commit a694291a6211 ("nilfs2: separate wait function fro… NVD-CWE-noinfo
CVE-2024-47669 2024-10-21 22:28 2024-10-10 Show GitHub Exploit DB Packet Storm
252410 7.5 HIGH
Network 		rockwellautomation controllogix_5580_firmware
controllogix_5580_process_firmware
guardlogix_5580_firmware
compactlogix_5380_firmware
compact_guardlogix_5380_sil_2_firmware
compact_guardlogix_5380_sil_3_f… 		CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and send a specially crafted CIP message to the device. If exploited, a threat actor co… NVD-CWE-noinfo
CVE-2024-6207 2024-10-21 22:20 2024-10-15 Show GitHub Exploit DB Packet Storm