Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218901 4.4 警告 IBM
オラクル		 - Oracle Application Server の Outside In Technology コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1011 2014-02-21 16:15 2009-04-15 Show GitHub Exploit DB Packet Storm
218902 4.4 警告 IBM
オラクル		 - Oracle Application Server の Outside In Technology コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1010 2014-02-21 16:13 2009-04-15 Show GitHub Exploit DB Packet Storm
218903 4.4 警告 IBM
オラクル		 - Oracle Application Server の Outside In Technology コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1009 2014-02-21 16:13 2009-04-15 Show GitHub Exploit DB Packet Storm
218904 4.4 警告 IBM
オラクル		 - Oracle Application Server の Outside In Technology コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1008 2014-02-21 16:12 2009-04-15 Show GitHub Exploit DB Packet Storm
218905 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における ASLR 保護メカニズムを破られる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0492 2014-02-21 13:40 2014-01-14 Show GitHub Exploit DB Packet Storm
218906 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における不特定の保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0491 2014-02-21 13:40 2014-01-14 Show GitHub Exploit DB Packet Storm
218907 3.5 注意 The phpMyAdmin Project - phpMyAdmin の import.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1879 2014-02-21 12:26 2014-02-15 Show GitHub Exploit DB Packet Storm
218908 5.8 警告 feep.net - libtar の tar_extract_glob および tar_extract_all 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-4420 2014-02-21 12:25 2013-12-10 Show GitHub Exploit DB Packet Storm
218909 5 警告 シスコシステムズ - Cisco Unified Communications Manager の Enterprise License Manager コンポーネントにおける ELM ファイルを読まれる脆弱性 CWE-287
不適切な認証 		CVE-2014-0733 2014-02-21 11:42 2014-02-19 Show GitHub Exploit DB Packet Storm
218910 6.8 警告 シスコシステムズ - Cisco Unified Communications Manager の Call Detail Records Analysis and Reporting ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-0736 2014-02-21 11:37 2014-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293301 - oracle fusion_middleware Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect availability via unknown vectors relat… NVD-CWE-noinfo
CVE-2012-3108 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293302 - oracle fusion_middleware Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect availability via unknown vectors relat… NVD-CWE-noinfo
CVE-2012-3107 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293303 - oracle fusion_middleware Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect availability via unknown vectors relat… NVD-CWE-noinfo
CVE-2012-3106 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293304 - openstack compute
essex
folsom 		The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of servic… CWE-20
 Improper Input Validation  		CVE-2012-3371 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293305 - gnome rhythmbox (1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack … CWE-94
Code Injection 		CVE-2012-3355 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293306 - eucalyptus eucalyptus The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not properly authenticate SOAP requests, which allows remote attackers to execute arbitrary VMware Broker API commands. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3241 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293307 - eucalyptus eucalyptus The Walrus service in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 allows remote attackers to gain administrator privileges via a crafted REST request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3240 2024-11-21 10:40 2012-07-18 Show GitHub Exploit DB Packet Storm
293308 - mono mono Cross-site scripting (XSS) vulnerability in the ProcessRequest function in mcs/class/System.Web/System.Web/HttpForbiddenHandler.cs in Mono 2.10.8 and earlier allows remote attackers to inject arbitra… CWE-79
Cross-site Scripting 		CVE-2012-3382 2024-11-21 10:40 2012-07-13 Show GitHub Exploit DB Packet Storm
293309 - videolan vlc_media_player Heap-based buffer overflow in the Ogg_DecodePacket function in the OGG demuxer (modules/demux/ogg.c) in VideoLAN VLC media player before 2.0.2 allows remote attackers to cause a denial of service (ap… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3377 2024-11-21 10:40 2012-07-13 Show GitHub Exploit DB Packet Storm
293310 - valarsoft webmatic SQL injection vulnerability in index.php in Webmatic 3.1.1 allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header. CWE-89
SQL Injection 		CVE-2012-3350 2024-11-21 10:40 2012-07-13 Show GitHub Exploit DB Packet Storm