Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220991 3.5 注意 オラクル - Oracle Siebel CRM の Siebel Core - Server OM Frwks における Object Manager に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4250 2014-07-18 11:03 2014-07-15 Show GitHub Exploit DB Packet Storm
220992 4.3 警告 オラクル - Oracle Siebel CRM の Siebel Travel & Transportation における Diary に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4231 2014-07-18 11:03 2014-07-15 Show GitHub Exploit DB Packet Storm
220993 4.3 警告 オラクル - Oracle Siebel CRM の Siebel UI Framework における Open_UI に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4230 2014-07-18 11:02 2014-07-15 Show GitHub Exploit DB Packet Storm
220994 4.3 警告 オラクル - Oracle Siebel CRM の Siebel UI Framework における Portal Framework に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4205 2014-07-18 11:02 2014-07-15 Show GitHub Exploit DB Packet Storm
220995 4.3 警告 オラクル - Oracle Siebel CRM の Siebel UI Framework における Portal Framework に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2491 2014-07-18 11:01 2014-07-15 Show GitHub Exploit DB Packet Storm
220996 1.4 注意 オラクル - Oracle Siebel CRM の Siebel Core - EAI における Integration Business Services に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2485 2014-07-18 11:01 2014-07-15 Show GitHub Exploit DB Packet Storm
220997 4.3 警告 shopizer-ecommerce - Shopizer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4965 2014-07-17 17:41 2014-07-10 Show GitHub Exploit DB Packet Storm
220998 6.8 警告 shopizer-ecommerce - Shopizer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-4964 2014-07-17 17:40 2014-07-10 Show GitHub Exploit DB Packet Storm
220999 6.8 警告 shopizer-ecommerce - Shopizer における任意のユーザのアカウント設定を変更される脆弱性 CWE-noinfo
情報不足 		CVE-2014-4963 2014-07-17 17:39 2014-07-10 Show GitHub Exploit DB Packet Storm
221000 6.4 警告 shopizer-ecommerce - Shopizer におけるショッピングカートの総コストを減らされる脆弱性 CWE-189
数値処理の問題 		CVE-2014-4962 2014-07-17 17:39 2014-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295061 - cisco prime_data_center_network_manager Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary text files via an XML external entity declaration in conjunction with an entity reference, relat… CWE-200
Information Exposure 		CVE-2013-5490 2024-11-21 10:57 2013-09-23 Show GitHub Exploit DB Packet Storm
295062 - cisco prime_data_center_network_manager DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029. CWE-200
Information Exposure 		CVE-2013-5487 2024-11-21 10:57 2013-09-23 Show GitHub Exploit DB Packet Storm
295063 - cisco prime_data_center_network_manager Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to write arbitrary files via the c… CWE-78
OS Command  		CVE-2013-5486 2024-11-21 10:57 2013-09-23 Show GitHub Exploit DB Packet Storm
295064 - glpi-project glpi inc/central.class.php in GLPI before 0.84.2 does not attempt to make install/install.php unavailable after an installation is completed, which allows remote attackers to conduct cross-site request fo… CWE-352
 Origin Validation Error 		CVE-2013-5696 2024-11-21 10:57 2013-09-23 Show GitHub Exploit DB Packet Storm
295065 - cisco mediasense Cross-site scripting (XSS) vulnerability in the oraservice page in Cisco MediaSense allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuj23328. CWE-79
Cross-site Scripting 		CVE-2013-5501 2024-11-21 10:57 2013-09-21 Show GitHub Exploit DB Packet Storm
295066 - cisco mediasense Multiple cross-site scripting (XSS) vulnerabilities in the oraadmin service page in Cisco MediaSense allow remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bu… CWE-79
Cross-site Scripting 		CVE-2013-5500 2024-11-21 10:57 2013-09-21 Show GitHub Exploit DB Packet Storm
295067 - cisco intrusion_prevention_system The authentication manager process in the web framework in Cisco Intrusion Prevention System (IPS) does not properly handle user tokens, which allows remote attackers to cause a denial of service (in… CWE-287
Improper Authentication 		CVE-2013-5497 2024-11-21 10:57 2013-09-20 Show GitHub Exploit DB Packet Storm
295068 - apple iphone_os WebKit in Apple iOS before 7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive information about use of the window.webkitRequestAnimationFrame API via an IFRAM… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5159 2024-11-21 10:57 2013-09-19 Show GitHub Exploit DB Packet Storm
295069 - apple iphone_os The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Tw… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5158 2024-11-21 10:57 2013-09-19 Show GitHub Exploit DB Packet Storm
295070 - apple iphone_os The Twitter subsystem in Apple iOS before 7 does not require API conformity for access to Twitter daemon interfaces, which allows attackers to post Tweets via a crafted app that sends direct requests… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5157 2024-11-21 10:57 2013-09-19 Show GitHub Exploit DB Packet Storm