Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210831 7.5 危険 Digium - Asterisk Open Source の res_pjsip_acl モジュールにおける PJSIP ACL ルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8413 2014-11-26 15:57 2014-11-20 Show GitHub Exploit DB Packet Storm
210832 5 警告 Digium - Asterisk Open Source および Certified Asterisk における ACL 制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8412 2014-11-26 15:57 2014-11-20 Show GitHub Exploit DB Packet Storm
210833 4.3 警告 jQuery - jQuery UI の Tooltip ウィジェットの jquery.ui.tooltip.js のデフォルトコンテンツオプションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6662 2014-11-26 15:50 2012-11-27 Show GitHub Exploit DB Packet Storm
210834 3.5 注意 Liferay - Liferay Portal Enterprise Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8349 2014-11-26 15:27 2014-11-14 Show GitHub Exploit DB Packet Storm
210835 7.1 危険 Xen プロジェクト - Xen の arch/x86/mm.c 内の do_mmu_update 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9030 2014-11-26 15:20 2014-11-20 Show GitHub Exploit DB Packet Storm
210836 4 警告 MantisBT Group - MantisBT における $g_download_attachments_threshold および $g_view_attachments_threshold の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8988 2014-11-26 13:46 2014-11-16 Show GitHub Exploit DB Packet Storm
210837 3.5 注意 MantisBT Group - MantisBT の Configuration Report ページのフィルタのセレクションリストにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8986 2014-11-26 13:45 2014-06-1 Show GitHub Exploit DB Packet Storm
210838 5 警告 ARM Ltd. (旧 Offspark) - PolarSSL におけるダウングレード攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2014-8627 2014-11-26 11:57 2014-10-22 Show GitHub Exploit DB Packet Storm
210839 6.4 警告 Canonical - Ubuntu の apparmor パッケージの apparmor_parser における AppArmor ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1424 2014-11-25 20:32 2014-11-20 Show GitHub Exploit DB Packet Storm
210840 5 警告 Moodle - Moodle の LTI モジュールにおける任意のメッセージの生成を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9060 2014-11-25 18:39 2014-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307241 - oracle database_10g
database_9i 		Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to SYS.OLAPIMPL_T. NVD-CWE-noinfo
CVE-2008-3999 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307242 - oracle secure_backup Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.1.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NVD-CWE-noinfo
CVE-2008-4006 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307243 - oracle jd_edwards_enterpriseone
peoplesoft_enterprise 		Unspecified vulnerability in the PeopleSoft Enterprise Components component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentia… NVD-CWE-noinfo
CVE-2008-4007 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307244 - oracle bea_product_suite Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect c… NVD-CWE-noinfo
CVE-2008-4008 2012-10-23 11:53 2008-10-15 Show GitHub Exploit DB Packet Storm
307245 - oracle application_server Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors. NVD-CWE-noinfo
CVE-2008-4014 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307246 - oracle database_10g Unspecified vulnerability in the Oracle Streams component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_STREAMS_AUTH. NVD-CWE-noinfo
CVE-2008-4015 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307247 - oracle collaboration_suite Unspecified vulnerability in the Collaborative Workspaces component in Oracle Collaboration Suite 10.1.2 allows remote authenticated users to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2008-4016 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307248 - oracle application_server Unspecified vulnerability in the OC4J component in Oracle Application Server 10.1.2.3 allows remote attackers to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2008-4017 2012-10-23 11:53 2009-01-14 Show GitHub Exploit DB Packet Storm
307249 - freebsd
netbsd
openbsd 		freebsd
netbsd
openbsd 		ftpd in OpenBSD 4.3, FreeBSD 7.0, NetBSD 4.0, Solaris, and possibly other operating systems interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct … CWE-352
 Origin Validation Error 		CVE-2008-4247 2012-10-23 11:53 2008-09-26 Show GitHub Exploit DB Packet Storm
307250 - oracle application_server
oracle_portal_component 		Unspecified vulnerability in the sample Discussion Forum Portlet for the Oracle Portal component in Oracle Application Server, as available from OTN before 20080715, has unknown impact and remote att… NVD-CWE-noinfo
CVE-2008-2583 2012-10-23 11:48 2008-07-16 Show GitHub Exploit DB Packet Storm