Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219501	3.5	注意	オラクル	-	Oracle Siebel CRM の Siebel Core - Server OM Frwks における Object Manager に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-4250	2014-07-18 11:03	2014-07-15	Show	GitHub Exploit DB Packet Storm

219502	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel Travel & Transportation における Diary に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-4231	2014-07-18 11:03	2014-07-15	Show	GitHub Exploit DB Packet Storm

219503	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel UI Framework における Open_UI に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-4230	2014-07-18 11:02	2014-07-15	Show	GitHub Exploit DB Packet Storm

219504	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel UI Framework における Portal Framework に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-4205	2014-07-18 11:02	2014-07-15	Show	GitHub Exploit DB Packet Storm

219505	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel UI Framework における Portal Framework に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-2491	2014-07-18 11:01	2014-07-15	Show	GitHub Exploit DB Packet Storm

219506	1.4	注意	オラクル	-	Oracle Siebel CRM の Siebel Core - EAI における Integration Business Services に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-2485	2014-07-18 11:01	2014-07-15	Show	GitHub Exploit DB Packet Storm

219507	4.3	警告	shopizer-ecommerce	-	Shopizer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4965	2014-07-17 17:41	2014-07-10	Show	GitHub Exploit DB Packet Storm

219508	6.8	警告	shopizer-ecommerce	-	Shopizer におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-4964	2014-07-17 17:40	2014-07-10	Show	GitHub Exploit DB Packet Storm

219509	6.8	警告	shopizer-ecommerce	-	Shopizer における任意のユーザのアカウント設定を変更される脆弱性	CWE-noinfo 情報不足	CVE-2014-4963	2014-07-17 17:39	2014-07-10	Show	GitHub Exploit DB Packet Storm

219510	6.4	警告	shopizer-ecommerce	-	Shopizer におけるショッピングカートの総コストを減らされる脆弱性	CWE-189 数値処理の問題	CVE-2014-4962	2014-07-17 17:39	2014-07-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345441	-	joomlamo	com_jinventory	Directory traversal vulnerability in jinventory.php in the JInventory (com_jinventory) component 1.23.02 and possibly other versions before 1.26.03, a module for Joomla!, allows remote attackers to r…	CWE-22 Path Traversal	CVE-2010-1305	2017-08-17 10:32	2010-04-9	Show	GitHub Exploit DB Packet Storm

345442	-	roberto_aloi	com_joomlapicasa2	Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller para…	CWE-22 Path Traversal	CVE-2010-1306	2017-08-17 10:32	2010-04-9	Show	GitHub Exploit DB Packet Storm

345443	-	software.realtyna	com_joomlaupdater	Directory traversal vulnerability in the Magic Updater (com_joomlaupdater) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to inde…	CWE-22 Path Traversal	CVE-2010-1307	2017-08-17 10:32	2010-04-9	Show	GitHub Exploit DB Packet Storm

345444	-	joomlamo	com_weberpcustomer	Directory traversal vulnerability in weberpcustomer.php in the webERPcustomer (com_weberpcustomer) component 1.2.1 and 1.x before 1.06.02 for Joomla! allows remote attackers to read arbitrary files v…	CWE-22 Path Traversal	CVE-2010-1315	2017-08-17 10:32	2010-04-9	Show	GitHub Exploit DB Packet Storm

345445	-	heartlogic	hl-sitemanager	SQL injection vulnerability in Heartlogic HL-SiteManager allows remote attackers to execute arbitrary SQL commands via unknown vectors.	CWE-89 SQL Injection	CVE-2010-1331	2017-08-17 10:32	2010-04-10	Show	GitHub Exploit DB Packet Storm

345446	-	heartlogic	hl-sitemanager	Per: http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000010.html '[Do not use HL-SiteManager] As patches will not be provided, users are recommended to discontinue use of HL-SiteManager and s…	CWE-89 SQL Injection	CVE-2010-1331	2017-08-17 10:32	2010-04-10	Show	GitHub Exploit DB Packet Storm

345447	-	prettybook	prettyformmail	Cross-site scripting (XSS) vulnerability in PrettyBook PrettyFormMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-1332	2017-08-17 10:32	2010-04-10	Show	GitHub Exploit DB Packet Storm

345448	-	prettybook	prettyformmail	Per: http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000007.html 'Solution [Do not use PrettyFormMail] As patches will not be provided, users are recommended to discontinue use of Pretty…	CWE-79 Cross-site Scripting	CVE-2010-1332	2017-08-17 10:32	2010-04-10	Show	GitHub Exploit DB Packet Storm

345449	-	almas	compiere	Multiple cross-site scripting (XSS) vulnerabilities in Almas Inc. Compiere J300_A02 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-1333	2017-08-17 10:32	2010-04-10	Show	GitHub Exploit DB Packet Storm

345450	-	miftahovn	insky_cms	Multiple PHP remote file inclusion vulnerabilities in Insky CMS 006-0111, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the ROOT parameter to (1)…	CWE-94 Code Injection	CVE-2010-1335	2017-08-17 10:32	2010-04-10	Show	GitHub Exploit DB Packet Storm