Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218621	2.3	注意	Fabrice Bellard	-	Qemu の virtio-pci の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-4377	2013-10-16 16:43	2013-09-20	Show	GitHub Exploit DB Packet Storm

218622	4.3	警告	CMS Made Simple	-	CMS Made Simple におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4167	2013-10-16 16:28	2013-05-21	Show	GitHub Exploit DB Packet Storm

218623	7.5	危険	Status	-	StatusNet における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4137	2013-10-16 16:13	2013-07-16	Show	GitHub Exploit DB Packet Storm

218624	7.9	危険	BlackBerry	-	BlackBerry Enterprise Service における任意のパッケージをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3693	2013-10-16 16:00	2013-10-8	Show	GitHub Exploit DB Packet Storm

218625	4	警告	Condor Project レッドハット	-	Condor のポリシー定義エバリュエータにおける SQL インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2009-5136	2013-10-16 15:32	2009-11-25	Show	GitHub Exploit DB Packet Storm

218626	6.8	警告	MediaWiki	-	MediaWiki 用 CheckUser 拡張機能の api/ApiQueryCheckUser.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-4306	2013-10-16 15:17	2013-09-3	Show	GitHub Exploit DB Packet Storm

218627	4.3	警告	MediaWiki	-	MediaWiki 用 SyntaxHighlight GeSHi 拡張機能の contrib/example.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4305	2013-10-16 15:16	2013-09-3	Show	GitHub Exploit DB Packet Storm

218628	6.5	警告	Kwoksys	-	Kwoksys Kwok Information Server の IT/hardware-list.dll における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5028	2013-10-16 14:58	2013-08-7	Show	GitHub Exploit DB Packet Storm

218629	9	危険	Adaptive Computing	-	Terascale Open-Source Resource and Queue Manager の pbs_mom における任意のジョブを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4319	2013-10-16 14:42	2013-09-6	Show	GitHub Exploit DB Packet Storm

218630	3.5	注意	Condor Project レッドハット	-	Condor のポリシー定義エバリュエータにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-4255	2013-10-16 14:41	2013-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307241	-	tiki	tikiwiki_cms\/groupware	Cross-site scripting (XSS) vulnerability in tiki-edit_structures.php in TikiWiki 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the pageAlias parameter. NOTE: The provenanc…	CWE-79 Cross-site Scripting	CVE-2006-6162	2012-10-24 13:00	2006-11-29	Show	GitHub Exploit DB Packet Storm

307242	-	tiki	tikiwiki_cms\/groupware	Cross-site scripting (XSS) vulnerability in tiki-setup_base.php in TikiWiki before 1.9.7 allows remote attackers to inject arbitrary JavaScript via unspecified parameters.	CWE-79 Cross-site Scripting	CVE-2006-6163	2012-10-24 13:00	2006-11-29	Show	GitHub Exploit DB Packet Storm

307243	-	tiki	tikiwiki_cms\/groupware	tiki-register.php in TikiWiki before 1.9.7 allows remote attackers to trigger "notification-spam" via certain vectors such as a comma-separated list of addresses in the email field, related to lack o…	CWE-20 Improper Input Validation	CVE-2006-6168	2012-10-24 13:00	2006-11-29	Show	GitHub Exploit DB Packet Storm

307244	-	tiki	tikiwiki_cms\/groupware	TikiWiki before 1.8.5 does not properly validate files that have been uploaded to the temp directory, which could allow remote attackers to upload and execute arbitrary PHP scripts, a different vulne…	CWE-20 Improper Input Validation	CVE-2005-0200	2012-10-24 13:00	2005-05-2	Show	GitHub Exploit DB Packet Storm

307245	-	tiki	tikiwiki_cms\/groupware	Cross-site scripting (XSS) vulnerability in TikiWiki before 1.9.1.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	CWE-79 Cross-site Scripting	CVE-2005-3283	2012-10-24 13:00	2005-10-23	Show	GitHub Exploit DB Packet Storm

307246	-	oracle	database_server	Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality via unknown vectors.	NVD-CWE-noinfo	CVE-2010-0851	2012-10-23 12:20	2010-04-14	Show	GitHub Exploit DB Packet Storm

307247	-	oracle	database_server	Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown v…	NVD-CWE-noinfo	CVE-2010-0852	2012-10-23 12:20	2010-04-14	Show	GitHub Exploit DB Packet Storm

307248	-	oracle	fusion_middleware database_server	Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8, 9.2.0.8, and DV; and Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1; allows remote attackers to affe…	NVD-CWE-noinfo	CVE-2010-0853	2012-10-23 12:20	2010-04-14	Show	GitHub Exploit DB Packet Storm

307249	-	oracle	database_server	Unspecified vulnerability in the Audit component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to "SELECT, INS…	NVD-CWE-noinfo	CVE-2010-0854	2012-10-23 12:20	2010-04-14	Show	GitHub Exploit DB Packet Storm

307250	-	oracle	fusion_middleware	Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.2 allows remote attackers to affect availability via unknown vectors.	NVD-CWE-noinfo	CVE-2010-0856	2012-10-23 12:20	2010-04-14	Show	GitHub Exploit DB Packet Storm