Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218941 3.5 注意 OTRS プロジェクト - Open Ticket Request System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2553 2014-04-4 12:03 2014-04-1 Show GitHub Exploit DB Packet Storm
218942 6.8 警告 HitMyServer - WordPress 用 HMS Testimonials プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4240 2014-04-4 11:19 2013-08-8 Show GitHub Exploit DB Packet Storm
218943 3.5 注意 IBM - IBM WebSphere Portal の IBM Connections 統合におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0901 2014-04-3 18:29 2014-03-31 Show GitHub Exploit DB Packet Storm
218944 4.3 警告 IBM - IBM WebSphere Portal の WCM UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0828 2014-04-3 18:29 2014-03-31 Show GitHub Exploit DB Packet Storm
218945 4.3 警告 シスコシステムズ - Cisco Security Manager の Web フレームワークにおける CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2138 2014-04-3 18:22 2014-04-1 Show GitHub Exploit DB Packet Storm
218946 4.3 警告 シスコシステムズ - Cisco Web セキュリティ アプライアンスの Web フレームワークにおける CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2137 2014-04-3 18:18 2014-04-1 Show GitHub Exploit DB Packet Storm
218947 4.3 警告 シスコシステムズ - Cisco Unity Connection の Web Inbox におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2125 2014-04-3 18:17 2014-04-1 Show GitHub Exploit DB Packet Storm
218948 5 警告 Posh portal project - POSH の portal/scr_authentif.php の Remember Me 機能における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-2212 2014-04-3 18:14 2014-02-20 Show GitHub Exploit DB Packet Storm
218949 7.5 危険 Horde - Horde Application Framework の Util ライブラリにおけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1691 2014-04-3 17:00 2014-01-28 Show GitHub Exploit DB Packet Storm
218950 7.5 危険 Vtiger - Vtiger CRM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3213 2014-04-3 16:41 2013-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296171 - oracle xcp
sparc_enterprise_m9000_server
sparc_enterprise_m4000_server
sparc_enterprise_m5000_server
sparc_enterprise_m8000_server
sparc_enterprise_m3000_server 		Unspecified vulnerability in Oracle SPARC Enterprise M Series Servers XCP 1110 allows remote attackers to affect availability, related to XSCF Control Package (XCP). NVD-CWE-noinfo
CVE-2012-1693 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296172 - sun sunos Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability, related to SCTP. NVD-CWE-noinfo
CVE-2012-1692 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296173 - sun sunos Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel/Privileges. NVD-CWE-noinfo
CVE-2012-1691 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296174 - oracle
mariadb
redhat 		mysql
mariadb
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_eus 		Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability via unknown vectors relate… NVD-CWE-noinfo
CVE-2012-1690 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296175 - oracle
mariadb
redhat 		mysql
mariadb
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_eus 		Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability, related to Server DML. NVD-CWE-noinfo
CVE-2012-1688 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296176 - sun sunos Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Password Policy. NVD-CWE-noinfo
CVE-2012-1684 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296177 - sun sunos Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to gssd. NVD-CWE-noinfo
CVE-2012-1683 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296178 - sun sunos Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Kernel/sockfs. NVD-CWE-noinfo
CVE-2012-1681 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296179 - oracle financial_services_software Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5.0.2, 5.3.0 through 5.3.4, 6.0.1, and 6.2.0 allows remote authenticated users to affec… NVD-CWE-noinfo
CVE-2012-1679 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm
296180 - oracle financial_services_software Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5.0.2, 5.3.0 through 5.3.4, 6.0.1, and 6.2.0 allows remote authenticated users to affec… NVD-CWE-noinfo
CVE-2012-1676 2024-11-21 10:37 2012-05-4 Show GitHub Exploit DB Packet Storm