Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218191 4.3 警告 Mike Challis - WordPress 用 SI CAPTCHA Anti-Spam プラグインの captcha-secureimage/test/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5190 2014-08-8 18:59 2014-08-3 Show GitHub Exploit DB Packet Storm
218192 7.5 危険 Ariel Sanders - WordPress 用 Lead Octopus プラグインの lib/optin/optin_page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5189 2014-08-8 18:54 2014-07-28 Show GitHub Exploit DB Packet Storm
218193 5 警告 Tom M8te project - WordPress 用 Tom M8te プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5187 2014-08-8 18:48 2014-05-28 Show GitHub Exploit DB Packet Storm
218194 6.5 警告 Vinoth Kumar - WordPress 用 All Video Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5186 2014-08-8 18:46 2014-05-28 Show GitHub Exploit DB Packet Storm
218195 6 警告 Quartz plugin project - WordPress 用 Quartz プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5185 2014-08-8 18:45 2014-05-28 Show GitHub Exploit DB Packet Storm
218196 6.5 警告 Brad Hawkins - WordPress 用 stripShow プラグインの stripshow-storylines ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5184 2014-08-8 18:44 2014-05-28 Show GitHub Exploit DB Packet Storm
218197 6.5 警告 Jesse Cortez - WordPress 用 Simple Retail Menus プラグインの includes/mode-edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5183 2014-08-8 18:43 2014-02-19 Show GitHub Exploit DB Packet Storm
218198 6 警告 ostenta - WordPress 用 yawpp プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5182 2014-08-8 18:42 2014-01-7 Show GitHub Exploit DB Packet Storm
218199 5 警告 Last.fm Rotation plugin project - WordPress 用 Last.fm Rotation プラグインの lastfm-proxy.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5181 2014-08-8 18:40 2014-05-28 Show GitHub Exploit DB Packet Storm
218200 6.5 警告 HDW Player - WordPress 用 HDW Player プラグインのビデオページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5180 2014-08-8 18:39 2014-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297241 - oracle e-business_suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows local users to affect confidentiality, related to MDS loading. NVD-CWE-noinfo
CVE-2012-3162 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297242 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1.1 allows remote attackers to affect integrity via unknown vectors related to Web Clie… NVD-CWE-noinfo
CVE-2012-3161 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297243 - oracle
canonical
debian
mariadb
redhat 		mysql
ubuntu_linux
debian_linux
mariadb
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_eus 		Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows local users to affect confidentiality via unknown vectors related to Server … NVD-CWE-noinfo
CVE-2012-3160 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297244 - oracle
mariadb
debian
canonical
redhat 		mysql
mariadb
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_eus 		Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via … NVD-CWE-noinfo
CVE-2012-3158 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297245 - oracle financial_services_software Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5.0.2, 5.0.5, 5.1.0, 5.2.0, 5.3.0 through 5.3.4, 6.0.1, 6.2.0, and 12 allows remote aut… NVD-CWE-noinfo
CVE-2012-3157 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297246 - oracle mysql Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server. NVD-CWE-noinfo
CVE-2012-3156 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297247 - sun
oracle 		java_system_application_server
glassfish_server 		Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remot… NVD-CWE-noinfo
CVE-2012-3155 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297248 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1.0 allows remote authenticated users to affect confidentiality, related to ATTACH. NVD-CWE-noinfo
CVE-2012-3154 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297249 - oracle database_server Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3, when running on Unix and Linux platforms, allows local users to a… NVD-CWE-noinfo
CVE-2012-3151 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm
297250 - oracle
mariadb
debian
canonical
redhat 		mysql
mariadb
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_eus 		Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect availability via unknown vectors relate… NVD-CWE-noinfo
CVE-2012-3150 2024-11-21 10:40 2012-10-17 Show GitHub Exploit DB Packet Storm