Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222671 4.3 警告 レッドハット - Red Hat Network Satellite で使用される Spacewalk におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2919 2014-02-7 12:20 2011-09-15 Show GitHub Exploit DB Packet Storm
222672 4.3 警告 レッドハット - Red Hat Network Satellite で使用される Spacewalk におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1594 2014-02-7 12:19 2011-09-15 Show GitHub Exploit DB Packet Storm
222673 7.5 危険 The PHP Group
アップル		 - PHP の phar 拡張機能における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2386 2014-02-6 17:35 2012-06-6 Show GitHub Exploit DB Packet Storm
222674 7.5 危険 The PHP Group
アップル
ヒューレット・パッカード		 - PHP の sapi/cgi/cgi_main.c における任意のコードを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2311 2014-02-6 17:34 2012-05-11 Show GitHub Exploit DB Packet Storm
222675 3.5 注意 フォーティネット - FortiGuard FortiWeb の Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1458 2014-02-6 16:42 2014-01-17 Show GitHub Exploit DB Packet Storm
222676 7.5 危険 Kolja Schleich - WordPress 用 LeagueManager プラグインの leaguemanager.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-1852 2014-02-6 16:41 2013-03-15 Show GitHub Exploit DB Packet Storm
222677 4.3 警告 Geeklog - Geeklog の Calendar プラグインの calendar/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1470 2014-02-6 16:40 2013-02-20 Show GitHub Exploit DB Packet Storm
222678 4.3 警告 glFusion - glFusion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1466 2014-02-6 16:39 2013-01-30 Show GitHub Exploit DB Packet Storm
222679 4.3 警告 フォーティネット - Fortinet Fortiweb にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7181 2014-02-6 16:35 2014-02-3 Show GitHub Exploit DB Packet Storm
222680 4.3 警告 フォーティネット - Fortinet FortiOS にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7182 2014-02-6 16:34 2014-02-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268541 5.4 MEDIUM
Network 		ibm rational_collaborative_lifecycle_management IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin… CWE-79
Cross-site Scripting 		CVE-2016-6030 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268542 4.3 MEDIUM
Network 		ibm rational_collaborative_lifecycle_management IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6028 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268543 6.1 MEDIUM
Network 		ibm sterling_b2b_integrator IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a … CWE-601
Open Redirect 		CVE-2016-6020 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268544 6.1 MEDIUM
Network 		ibm tririga_application_platform IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten… CWE-79
Cross-site Scripting 		CVE-2016-6000 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268545 6.5 MEDIUM
Network 		ibm infosphere_information_server IBM InfoSphere Information Server contains a vulnerability that would allow an authenticated user to browse any file on the engine tier, and examine its contents. CWE-200
Information Exposure 		CVE-2016-5994 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268546 6.3 MEDIUM
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager Virtual Appliance allows an authenticated user to upload malicious files that would be automatically executed by the server. CWE-284
Improper Access Control 		CVE-2016-5990 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268547 6.5 MEDIUM
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager Virtual Appliance could disclose sensitive information in generated error messages that would be available to an authenticated user. CWE-200
Information Exposure 		CVE-2016-5988 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268548 7.8 HIGH
Local 		ibm tivoli_storage_manager The IBM Tivoli Storage Manager (IBM Spectrum Protect) AIX client is vulnerable to a buffer overflow when Journal-Based Backup is enabled. A local attacker could overflow a buffer and execute arbitrar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-5985 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268549 6.1 MEDIUM
Network 		ibm infosphere_information_server
infosphere_information_server_on_cloud 		IBM InfoSphere Information Server is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. A remote attacker could exploit this vulnerability using a specially-crafted U… CWE-79
Cross-site Scripting 		CVE-2016-5984 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
268550 5.4 MEDIUM
Network 		ibm tririga_application_platform IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten… CWE-79
Cross-site Scripting 		CVE-2016-5980 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm