Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220171 6.4 警告 オラクル - Oracle Virtualization の Oracle Secure Global Desktop における Workspace Web Application に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2439 2014-04-17 15:19 2014-04-15 Show GitHub Exploit DB Packet Storm
220172 6.6 警告 オラクル - Oracle Database Server の Core RDBMS における Create Session および Grant Any Object Privilege に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2408 2014-04-17 15:01 2014-04-15 Show GitHub Exploit DB Packet Storm
220173 8.5 危険 オラクル - Oracle Database Server の Core RDBMS における Create Session などに関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2406 2014-04-17 15:01 2014-04-15 Show GitHub Exploit DB Packet Storm
220174 7.9 危険 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおける任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2014-0356 2014-04-17 10:59 2014-04-11 Show GitHub Exploit DB Packet Storm
220175 7.9 危険 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0355 2014-04-17 10:58 2014-04-11 Show GitHub Exploit DB Packet Storm
220176 7.8 危険 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおける index.asp のログインアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-0354 2014-04-17 10:57 2014-04-11 Show GitHub Exploit DB Packet Storm
220177 6.1 警告 ZyXEL - ZyXEL Wireless N300 NetUSB NBG-419N ルータのファームウェアにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-0353 2014-04-17 10:57 2014-04-11 Show GitHub Exploit DB Packet Storm
220178 9 危険 Xangati - Xangati XSR および XNR における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2014-0359 2014-04-17 09:27 2014-04-14 Show GitHub Exploit DB Packet Storm
220179 7.8 危険 Xangati - Xangati XSR および XNR におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-0358 2014-04-17 09:26 2014-04-14 Show GitHub Exploit DB Packet Storm
220180 1.5 注意 Ontario Systems - Ontario Systems Artiva Agency に認証不備の脆弱性 - CVE-2014-0348 2014-04-17 09:25 2014-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294621 9.8 CRITICAL
Network 		extplorer extplorer ext_find_user in eXtplorer through 2.1.2 allows remote attackers to bypass authentication via a password[]= (aka an empty array) in an action=login request to index.php. CWE-287
Improper Authentication 		CVE-2012-6710 2024-11-21 10:46 2018-10-8 Show GitHub Exploit DB Packet Storm
294622 7.1 HIGH
Local 		fedoraproject fedora The fedora-business-cards package before 1-0.1.beta1.fc17 on Fedora 17 and before 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symli… CWE-59
Link Following 		CVE-2013-0159 2024-11-21 10:46 2018-05-2 Show GitHub Exploit DB Packet Storm
294623 5.9 MEDIUM
Network 		elinks
twibright 		elinks
links 		ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation. CWE-295
Improper Certificate Validation  		CVE-2012-6709 2024-11-21 10:46 2018-02-24 Show GitHub Exploit DB Packet Storm
294624 6.1 MEDIUM
Network 		fortinet fortidb Multiple cross-site scripting (XSS) vulnerabilities in Java number format exception handling in FortiGate FortiDB before 4.4.2 allow remote attackers to inject arbitrary web script or HTML via the co… CWE-79
Cross-site Scripting 		CVE-2012-6347 2024-11-21 10:46 2018-02-10 Show GitHub Exploit DB Packet Storm
294625 6.1 MEDIUM
Network 		fortinet fortiweb Multiple cross-site scripting (XSS) vulnerabilities in FortiWeb before 4.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) redir or (2) mkey parameter to waf/pcre_expressi… CWE-79
Cross-site Scripting 		CVE-2012-6346 2024-11-21 10:46 2018-02-10 Show GitHub Exploit DB Packet Storm
294626 6.1 MEDIUM
Network 		jquery jquery jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery… CWE-79
Cross-site Scripting 		CVE-2012-6708 2024-11-21 10:46 2018-01-19 Show GitHub Exploit DB Packet Storm
294627 6.1 MEDIUM
Network 		dragonbyte-tech vbdownloads_module Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2012-6682 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
294628 6.1 MEDIUM
Network 		dragonbyte-tech forumon_rpg_module Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attacker… CWE-79
Cross-site Scripting 		CVE-2012-6671 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
294629 6.1 MEDIUM
Network 		dragonbyte-tech vbactivity_module Multiple cross-site scripting (XSS) vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the r… CWE-79
Cross-site Scripting 		CVE-2012-6670 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
294630 6.1 MEDIUM
Network 		dragonbyte-tech vbshout_module Multiple cross-site scripting (XSS) vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2012-6668 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm