Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217921	3.6	注意	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2387	2013-11-8 16:20	2013-04-16	Show	GitHub Exploit DB Packet Storm

217922	4.9	警告	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2386	2013-11-8 16:19	2013-04-16	Show	GitHub Exploit DB Packet Storm

217923	4	警告	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2385	2013-11-8 16:18	2013-04-16	Show	GitHub Exploit DB Packet Storm

217924	1.7	注意	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2382	2013-11-8 16:17	2013-04-16	Show	GitHub Exploit DB Packet Storm

217925	3.5	注意	オラクル	-	Oracle MySQL における Server Privileges の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2381	2013-11-8 16:16	2013-04-16	Show	GitHub Exploit DB Packet Storm

217926	10	危険	オラクル	-	Oracle Fusion Middleware の Oracle JRockit における脆弱性	CWE-noinfo 情報不足	CVE-2013-2380	2013-11-8 16:15	2013-04-16	Show	GitHub Exploit DB Packet Storm

217927	3.5	注意	オラクル	-	Oracle Financial Services Software における RT の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2379	2013-11-8 16:14	2013-04-16	Show	GitHub Exploit DB Packet Storm

217928	6	警告	MySQL AB オラクル	-	Oracle MySQL における Information Schema の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2378	2013-11-8 16:13	2013-04-16	Show	GitHub Exploit DB Packet Storm

217929	3.5	注意	オラクル	-	Oracle Financial Services Software の Oracle FLEXCUBE Direct Banking における My Services の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2377	2013-11-8 16:11	2013-04-16	Show	GitHub Exploit DB Packet Storm

217930	6	警告	オラクル	-	Oracle MySQL における脆弱性	CWE-noinfo 情報不足	CVE-2013-2375	2013-11-8 16:09	2013-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280001	-	jupiter_cms	jupiter_cms	Cross-site scripting (XSS) vulnerability in Jupiter Content Manager 1.1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in the image BBcode tag.	NVD-CWE-Other	CVE-2006-1223	2018-10-19 01:31	2006-03-14	Show	GitHub Exploit DB Packet Storm

280002	-	guppy	guppy	Directory traversal vulnerability in dwnld.php in GuppY 4.5.11 allows remote attackers to overwrite arbitrary files via a "%2E." (mixed encoding) in the pg parameter.	NVD-CWE-Other	CVE-2006-1224	2018-10-19 01:31	2006-03-14	Show	GitHub Exploit DB Packet Storm

280003	-	drupal	drupal	CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.	NVD-CWE-Other	CVE-2006-1225	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280004	-	drupal	drupal	Cross-site scripting (XSS) vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.	NVD-CWE-Other	CVE-2006-1226	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280005	-	drupal	drupal	Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8, when menu.module is used to create a menu item, does not implement access control for the page that is referenced, which might allow remote attackers…	NVD-CWE-Other	CVE-2006-1227	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280006	-	drupal	drupal	Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier.	CWE-287 Improper Authentication	CVE-2006-1228	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280007	-	drupal	drupal	This vulnerability affects Drupal versions 4.6.x before 4.6.6, as well as versions 4.5.x before 4.5.8	CWE-287 Improper Authentication	CVE-2006-1228	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280008	-	belchior_foundry	vcard	Multiple cross-site scripting (XSS) vulnerabilities in create.php in vCard 2.x allow remote attackers to inject arbitrary web script or HTML via the (1) card_id, (2) uploaded, (3) card_fontsize, or (…	CWE-79 Cross-site Scripting	CVE-2006-1230	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280009	-	julian_pawlowski	capi4hylafax	CAPI4HylaFAX 1.3, when compiled with GENERATE_DEBUGSFFDATAFILE set, allows local users to modify arbitrary files via a symlink attack on the c2faxrecv_dbgdatafile.sff temporary file.	NVD-CWE-Other	CVE-2006-1231	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm

280010	-	dsportal	dsdownload	Multiple SQL injection vulnerabilities in DSDownload 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) key and (2) category parameters to (a) s…	NVD-CWE-Other	CVE-2006-1232	2018-10-19 01:31	2006-03-15	Show	GitHub Exploit DB Packet Storm