Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219891 7.5 危険 The Cacti Group - Cacti の graph settings スクリプトにおける任意のコマンドを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5262 2014-08-25 15:33 2014-06-28 Show GitHub Exploit DB Packet Storm
219892 7.5 危険 The Cacti Group - Cacti の graph settings スクリプトにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-5261 2014-08-25 15:33 2014-06-28 Show GitHub Exploit DB Packet Storm
219893 5.8 警告 Esri - ESRI ArcGIS for Server におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-5122 2014-08-25 15:06 2014-08-15 Show GitHub Exploit DB Packet Storm
219894 4.3 警告 Esri - ESRI ArcGIS for Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5121 2014-08-25 15:06 2014-08-15 Show GitHub Exploit DB Packet Storm
219895 7.5 危険 Free Reprintables - Free Reprintables ArticleFR における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5097 2014-08-25 14:55 2014-08-20 Show GitHub Exploit DB Packet Storm
219896 7.5 危険 BSS Company - Bank Soft Systems RBS BS-Client における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4197 2014-08-25 14:55 2014-07-1 Show GitHub Exploit DB Packet Storm
219897 5 警告 shopizer-ecommerce - Shopizer の com/salesmanager/central/profile/ProfileAction.java におけるパスワードを推測される脆弱性 CWE-287
不適切な認証 		CVE-2014-5385 2014-08-25 14:55 2014-07-10 Show GitHub Exploit DB Packet Storm
219898 3.5 注意 The phpMyAdmin Project - phpMyAdmin のビュー操作ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5274 2014-08-25 14:54 2014-08-17 Show GitHub Exploit DB Packet Storm
219899 3.5 注意 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5273 2014-08-25 14:54 2014-08-17 Show GitHub Exploit DB Packet Storm
219900 4.3 警告 Ben Gillbanks - 複数の製品で使用される TimThumb の timthumb.php の displayError 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5303 2014-08-25 13:39 2010-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290761 - oracle
ibm 		jdk
jre
forms_viewer 		Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to… NVD-CWE-noinfo
CVE-2014-2428 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290762 - canonical
oracle
debian 		ubuntu_linux
jdk
jre
debian_linux 		Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors re… NVD-CWE-noinfo
CVE-2014-2427 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290763 - oracle fusion_middleware Unspecified vulnerability in the Oracle OpenSSO component in Oracle Fusion Middleware 8.0 Update 2 Patch 5 allows remote authenticated users to affect integrity and availability via unknown vectors r… NVD-CWE-noinfo
CVE-2014-2426 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290764 - oracle fusion_middleware Unspecified vulnerability in the Oracle OpenSSO component in Oracle Fusion Middleware 8.0 Update 2 Patch 5 allows remote authenticated users to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2014-2425 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290765 - oracle fusion_middleware Unspecified vulnerability in the Oracle Event Processing component in Oracle Fusion Middleware 11.1.1.7.0 allows remote authenticated users to affect integrity via vectors related to CEP system. NVD-CWE-noinfo
CVE-2014-2424 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290766 - canonical
oracle
debian 		ubuntu_linux
jdk
jre
debian_linux 		Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS,… NVD-CWE-noinfo
CVE-2014-2423 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290767 - oracle javafx
jdk
jre 		Unspecified vulnerability in Oracle Java SE 7u51 and 8, and JavaFX 2.2.51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NVD-CWE-noinfo
CVE-2014-2422 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290768 - canonical
oracle
juniper
debian
ibm 		ubuntu_linux
jrockit
junos_space
jdk
jre
debian_linux
forms_viewer 		Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unkn… NVD-CWE-noinfo
CVE-2014-2421 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290769 - oracle jdk
jre 		Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect integrity via unknown vectors related to Deployment. NVD-CWE-noinfo
CVE-2014-2420 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm
290770 - oracle
mariadb
redhat 		solaris
mysql
mariadb
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_eus 		Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition. NVD-CWE-noinfo
CVE-2014-2419 2024-11-21 11:06 2014-04-16 Show GitHub Exploit DB Packet Storm