Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216541 6.8 警告 シマンテック - Symantec Endpoint Protection にバッファオーバーフローの脆弱性 CWE-119
CWE-Other
CVE-2014-3434 2014-08-19 18:04 2014-08-4 Show GitHub Exploit DB Packet Storm
216542 2.6 注意 tenfourzero - Shutter におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3905 2014-08-19 16:58 2014-08-15 Show GitHub Exploit DB Packet Storm
216543 2.6 注意 Piwigo - Piwigo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3900 2014-08-19 16:46 2014-08-8 Show GitHub Exploit DB Packet Storm
216544 5 警告 Drupal
WordPress.org		 - WordPress および Drupal で使用される Incutio XML-RPC ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-5266 2014-08-19 16:42 2014-08-6 Show GitHub Exploit DB Packet Storm
216545 5 警告 Drupal
WordPress.org		 - WordPress および Drupal で使用される Incutio XML-RPC ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-5265 2014-08-19 16:40 2014-08-6 Show GitHub Exploit DB Packet Storm
216546 2.1 注意 WordPress.org - WordPress の wp-includes/pluggable.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5240 2014-08-19 16:40 2014-08-6 Show GitHub Exploit DB Packet Storm
216547 6.8 警告 WordPress.org - WordPress の wp-includes/pluggable.php における CSRF 保護メカニズムを回避される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-5205 2014-08-19 16:39 2014-08-6 Show GitHub Exploit DB Packet Storm
216548 6.8 警告 WordPress.org - WordPress の wp-includes/pluggable.php における CSRF 保護メカニズムを回避される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-5204 2014-08-19 16:38 2014-08-6 Show GitHub Exploit DB Packet Storm
216549 7.5 危険 WordPress.org - WordPress のウイジェットの実装の wp-includes/class-wp-customize-widgets.php における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-5203 2014-08-19 16:38 2014-08-6 Show GitHub Exploit DB Packet Storm
216550 6.1 警告 BlackBerry - Blackberry の Storage および Access サービスにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2388 2014-08-19 16:04 2014-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294711 - oracle financial_services_software Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5.0.5, 5.1.0, 5.2.0, and 5.3.0 through 5.3.4 allows remote authenticated users to affec… NVD-CWE-noinfo
CVE-2012-3142 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294712 - oracle financial_services_software Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0, 10.0.2, 10.1.0, 10.2.0, 10.2.2, 10.3.0, 10.5.0, and 11.0.0 through 11.2.0 al… NVD-CWE-noinfo
CVE-2012-3141 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294713 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM For Process component in Oracle Supply Chain Products Suite 6.0.0.6.3 and 6.1.0.1.14 allows remote authenticated users to affect confidentiality and … NVD-CWE-noinfo
CVE-2012-3140 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294714 - oracle e-business_suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity, related to Signon (local and SSO). NVD-CWE-noinfo
CVE-2012-3139 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294715 - oracle e-business_suite Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via unknown vectors relat… NVD-CWE-noinfo
CVE-2012-3138 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294716 - oracle
sun 		jdk
jre 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows… NVD-CWE-noinfo
CVE-2012-3216 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294717 - oracle
sun 		jdk
jre 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, int… NVD-CWE-noinfo
CVE-2012-3159 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294718 - oracle
sun 		jdk
jre 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to a… NVD-CWE-noinfo
CVE-2012-3143 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
294719 - siemens simatic_s7-1200_firmware
simatic_s7-1200_cpu_1211c_firmware
simatic_s7-1200_cpu_1212c_firmware
simatic_s7-1200_cpu_1212fc_firmware
simatic_s7-1200_cpu_1214_fc_firmware
simatic_s7-1200_… 		Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI. CWE-79
Cross-site Scripting 		CVE-2012-3040 2024-11-21 10:40 2012-10-11 Show GitHub Exploit DB Packet Storm
294720 - openttd openttd OpenTTD 0.6.0 through 1.2.1 does not properly validate requests to clear a water tile, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a cer… CWE-20
 Improper Input Validation  		CVE-2012-3436 2024-11-21 10:40 2012-10-10 Show GitHub Exploit DB Packet Storm