Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217971	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における Report Distribution の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1527	2013-11-8 13:52	2013-04-16	Show	GitHub Exploit DB Packet Storm

217972	4	警告	オラクル	-	Oracle Industry Applications の Oracle Retail Integration Bus における Retail Integration Bus Manager の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1525	2013-11-8 13:51	2013-04-16	Show	GitHub Exploit DB Packet Storm

217973	4.3	警告	オラクル	-	Oracle E-Business Suite の Oracle Application Object Library における Attachments の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1524	2013-11-8 13:50	2013-04-16	Show	GitHub Exploit DB Packet Storm

217974	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebCenter Content における Content Server の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1522	2013-11-8 13:47	2013-04-16	Show	GitHub Exploit DB Packet Storm

217975	5.5	警告	オラクル	-	Oracle Industry Applications の Oracle Clinical Remote Data Capture Option における HTML Surround の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1520	2013-11-8 13:46	2013-04-16	Show	GitHub Exploit DB Packet Storm

217976	5	警告	オラクル	-	Oracle Database Server の Application Express における脆弱性	CWE-noinfo 情報不足	CVE-2013-1519	2013-11-8 13:44	2013-04-16	Show	GitHub Exploit DB Packet Storm

217977	2.6	注意	オラクル	-	Oracle E-Business Suite の Oracle Application Object Library における Diagnostics の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1517	2013-11-8 13:43	2013-04-16	Show	GitHub Exploit DB Packet Storm

217978	4	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebCenter Capture における Import Server の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1516	2013-11-8 13:42	2013-04-16	Show	GitHub Exploit DB Packet Storm

217979	4.3	警告	オラクル	-	Oracle Sun Middleware Products の Oracle GlassFish Server における ADMIN Interface の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1515	2013-11-8 13:40	2013-04-16	Show	GitHub Exploit DB Packet Storm

217980	4	警告	オラクル	-	Oracle Fusion Middleware の Oracle Containers for J2EE における RMI Support の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-1514	2013-11-8 12:27	2013-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280121	-	qto	qtofilemanager	Cross-site scripting (XSS) vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) delete, (2) pathext, and (3) edit parameters.	NVD-CWE-Other	CVE-2006-3405	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280122	-	qto	qtofilemanager	Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. (dot dot) sequence in the edit parameter.	NVD-CWE-Other	CVE-2006-3406	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280123	-	smartsitecms	smartsitecms	PHP remote file inclusion vulnerability in SmartSiteCMS 1.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the root parameter in (1) comment.…	NVD-CWE-Other	CVE-2006-3421	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280124	-	webex_communications	downloader_activexcontrol downloader_java	WebEx Downloader ActiveX Control and WebEx Downloader Java before 2.1.0.0 do not validate downloaded components, which allows remote attackers to execute arbitrary code via a website that activates t…	CWE-20 Improper Input Validation	CVE-2006-3423	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280125	-	webex_communications	downloader_activexcontrol downloader_java	Upgrade to version 2.1.0.0.	CWE-20 Improper Input Validation	CVE-2006-3423	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280126	-	lumension novell	patchlink_update_server zenworks	FastPatch for (a) PatchLink Update Server (PLUS) before 6.1 P1 and 6.2.x before 6.2 SR1 P1, and (b) Novell ZENworks 6.2 SR1 and earlier, does not require authentication for dagent/proxyreg.asp, which…	NVD-CWE-Other	CVE-2006-3425	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280127	-	lumension novell	patchlink_update_server zenworks	Directory traversal vulnerability in (a) PatchLink Update Server (PLUS) before 6.1 P1 and 6.2.x before 6.2 SR1 P1 and (b) Novell ZENworks 6.2 SR1 and earlier allows remote attackers to overwrite arbi…	NVD-CWE-Other	CVE-2006-3426	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280128	-	tigertom_scripts	ttcalc_script	Cross-site scripting (XSS) vulnerability in TigerTom TTCalc 1.0 allows remote attackers to inject arbitrary web script or HTML via the year parameter in (1) loan.php and (2) mortgage.php.	NVD-CWE-Other	CVE-2006-3428	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280129	-	tigertom_scripts	ttcalc_script	Cross-site scripting (XSS) vulnerability in TigerTom TTCalc 1.0 allows remote attackers to inject arbitrary web script or HTML via the currency parameter in (1) loan.php and (2) mortgage.php. NOTE: …	NVD-CWE-Other	CVE-2006-3429	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm

280130	-	lumension novell	patchlink_update_server zenworks	SQL injection vulnerability in checkprofile.asp in (1) PatchLink Update Server (PLUS) before 6.1 P1 and 6.2.x before 6.2 SR1 P1 and (2) Novell ZENworks 6.2 SR1 and earlier, allows remote attackers to…	CWE-89 SQL Injection	CVE-2006-3430	2018-10-19 01:47	2006-07-7	Show	GitHub Exploit DB Packet Storm