Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216921 6.5 警告 Pro Chat Rooms - Pro Chat Rooms Text Chat Rooms の includes/functions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5275 2014-10-27 17:45 2014-08-5 Show GitHub Exploit DB Packet Storm
216922 6.5 警告 TomatoCart - TomatoCart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3978 2014-10-27 17:35 2014-08-5 Show GitHub Exploit DB Packet Storm
216923 4.3 警告 TomatoCart - TomatoCart の info.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3830 2014-10-27 17:34 2014-08-5 Show GitHub Exploit DB Packet Storm
216924 3.5 注意 Date project - Drupal 用 Date モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5169 2014-10-27 17:28 2014-07-29 Show GitHub Exploit DB Packet Storm
216925 3.5 注意 The Cacti Group - Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5026 2014-10-27 17:21 2014-07-4 Show GitHub Exploit DB Packet Storm
216926 3.5 注意 The Cacti Group - Cacti の data_sources.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5025 2014-10-27 17:20 2014-07-4 Show GitHub Exploit DB Packet Storm
216927 4.6 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5697 2014-10-27 16:50 2012-11-15 Show GitHub Exploit DB Packet Storm
216928 5 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における平文のデータベースパスワードを取得される脆弱性 CWE-255
CWE-264
CVE-2012-5696 2014-10-27 16:49 2012-11-15 Show GitHub Exploit DB Packet Storm
216929 6.8 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5695 2014-10-27 16:49 2012-11-15 Show GitHub Exploit DB Packet Storm
216930 6.8 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5694 2014-10-27 16:48 2012-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291241 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and ea… NVD-CWE-noinfo
CVE-2013-3829 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291242 - oracle fusion_middleware Unspecified vulnerability in the Oracle Web Services component in Oracle Fusion Middleware 10.1.3.5.0 and 11.1.1.6.0 allows remote attackers to affect confidentiality via unknown vectors related to T… NVD-CWE-noinfo
CVE-2013-3828 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291243 - oracle fusion_middleware Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.… NVD-CWE-noinfo
CVE-2013-3827 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291244 - oracle database_server Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2013-3826 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291245 - oracle industry_applications Unspecified vulnerability in the Oracle Retail Invoice Matching component in Oracle Industry Applications 10.2, 11.0, 12.0, 12.0IN, 12.1, 13.0, 13.1, and 13.2 allows remote authenticated users to aff… NVD-CWE-noinfo
CVE-2013-3814 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291246 - oracle vm_virtualbox Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.18, 4.0.20, 4.1.28, and 4.2.18 allows local users to affect availability via unknown v… NVD-CWE-noinfo
CVE-2013-3792 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291247 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Care… NVD-CWE-noinfo
CVE-2013-3785 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291248 - oracle primavera_products_suite Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.1, 8.2, and 8.3 allows remote authenticated users to affect integr… NVD-CWE-noinfo
CVE-2013-3766 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291249 - oracle enterprise_manager_grid_control
enterprise_manager_plugin_for_database_control
enterprise_manager_database_control 		Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.… NVD-CWE-noinfo
CVE-2013-3762 2024-11-21 10:54 2013-10-17 Show GitHub Exploit DB Packet Storm
291250 - ibm infosphere_information_server Cross-site request forgery (CSRF) vulnerability in the Data Quality Console and Information Analyzer components in IBM InfoSphere Information Server 8.7 through FP2 and 9.1 through 9.1.2.0 allows rem… CWE-352
 Origin Validation Error 		CVE-2013-4056 2024-11-21 10:54 2013-10-13 Show GitHub Exploit DB Packet Storm