Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220231 5 警告 オラクル - Oracle Fusion Middleware の Oracle Data Integrator における Data Quality に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2407 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220232 4 警告 オラクル - Oracle Fusion Middleware の Oracle Access Manager における WebGate に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2404 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220233 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Endeca Server における Oracle Endeca Information Discovery に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2400 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220234 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Endeca Server における Oracle Endeca Information Discovery に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2399 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220235 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle OpenSSO における Admin Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0465 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220236 5 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Portal における People Connection に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0450 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220237 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Containers for J2EE における HTTP Request Handling に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0426 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220238 5 警告 オラクル - Oracle Fusion Middleware の Oracle Containers for J2EE における HTTP Request Handling に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0414 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220239 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Containers for J2EE における HTTP Request Handling に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0413 2014-04-18 14:54 2014-04-15 Show GitHub Exploit DB Packet Storm
220240 3.5 注意 オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM Framework における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2467 2014-04-18 10:13 2014-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293251 - joomla joomla\! Cross-site scripting (XSS) vulnerability in the Voting plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vect… CWE-79
Cross-site Scripting 		CVE-2013-3059 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
293252 - joomla joomla\! Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-3058 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
293253 - joomla joomla\! Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3057 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
293254 - joomla joomla\! Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vecto… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3056 2024-11-21 10:52 2013-05-3 Show GitHub Exploit DB Packet Storm
293255 - strongswan strongswan strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature. CWE-287
Improper Authentication 		CVE-2013-2944 2024-11-21 10:52 2013-05-2 Show GitHub Exploit DB Packet Storm
293256 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of servi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3080 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
293257 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (V… CWE-94
Code Injection 		CVE-2013-3079 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
293258 - sap basis_communication_services SAP BASIS Communication Services 4.6B through 7.30 allows remote authenticated users to execute arbitrary commands via unspecified vectors. NVD-CWE-noinfo
CVE-2013-3063 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
293259 - sap production_planning_and_control The CP_RC_TRANSACTION_CALL_BY_SET function in the Engineering Workbench component in SAP Production Planning and Control allows remote authenticated users to bypass intended transaction restrictions … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3062 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
293260 - sap healthcare_industry_solution
erp_central_component 		The ISHMED-PATRED_TRANSACT_RFCCALL function in the IS-H Industry-Specific Component Hospital subsystem in SAP Healthcare Industry Solution, and the SAP ERP central component (aka ECC 6), allows remot… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3061 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm