Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224381	5	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における Integration Broker に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3835	2013-10-17 18:08	2013-10-15	Show	GitHub Exploit DB Packet Storm

224382	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HRMS における Career's Home に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3785	2013-10-17 18:07	2013-10-15	Show	GitHub Exploit DB Packet Storm

224383	4.3	警告	オラクル	-	複数の Oracle Enterprise Manager 製品における DB Performance Advisories/UIs に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5766	2013-10-17 17:52	2013-10-15	Show	GitHub Exploit DB Packet Storm

224384	4.3	警告	オラクル	-	複数の Oracle Enterprise Manager 製品における Schema Management に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3762	2013-10-17 17:52	2013-10-15	Show	GitHub Exploit DB Packet Storm

224385	2.4	注意	オラクル	-	Oracle Industry Applications の Oracle Siebel CTMS における SC-OC Integration に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5762	2013-10-17 17:34	2013-10-15	Show	GitHub Exploit DB Packet Storm

224386	5.5	警告	オラクル	-	Oracle Industry Applications の Oracle Retail Invoice Matching における System Administration に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3814	2013-10-17 17:33	2013-10-15	Show	GitHub Exploit DB Packet Storm

224387	6.8	警告	VideoLAN	-	VideoLAN VLC media player の mp4a packetizer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4388	2013-10-17 17:19	2013-08-25	Show	GitHub Exploit DB Packet Storm

224388	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle Identity Manager における End User Self Service に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5798	2013-10-17 16:56	2013-10-15	Show	GitHub Exploit DB Packet Storm

224389	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle Containers for J2EE における Servlet Runtime に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5773	2013-10-17 16:50	2013-10-15	Show	GitHub Exploit DB Packet Storm

224390	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle Web Cache における ESI/Partial Page Caching に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3836	2013-10-17 16:49	2013-10-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277121	-	cybozu	garoon	Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 mishandles authentication requests, which allows remote authenticated users to conduct LDAP injection attacks, and consequently bypass intended l…	CWE-287 Improper Authentication	CVE-2015-5649	2024-11-21 11:33	2015-10-9	Show	GitHub Exploit DB Packet Storm

277122	-	python	python	Untrusted search path vulnerability in python.exe in Python through 3.5.0 on Windows allows local users to gain privileges via a Trojan horse readline.pyd file in the current working directory. NOTE…	NVD-CWE-Other	CVE-2015-5652	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277123	-	ajaxplorer	ajaxplorer	Directory traversal vulnerability in AjaXplorer 2.0 allows remote attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2015-5650	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277124	-	icz	matchasns	ICZ MATCHA SNS before 1.3.7 allows remote authenticated users to obtain administrative privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-5645	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277125	-	icz	matchasns	The installer in ICZ MATCHA SNS before 1.3.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.	CWE-94 Code Injection	CVE-2015-5644	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277126	-	icz	matchasns	The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.	CWE-94 Code Injection	CVE-2015-5643	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277127	-	icz	matchasns	Multiple SQL injection vulnerabilities in ICZ MATCHA INVOICE before 2.5.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2015-5642	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277128	-	basercms	basercms	SQL injection vulnerability in baserCMS before 3.0.8 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2015-5641	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277129	-	basercms	basercms	baserCMS before 3.0.8 allows remote authenticated users to modify arbitrary user settings via a crafted request.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-5640	2024-11-21 11:33	2015-10-6	Show	GitHub Exploit DB Packet Storm

277130	-	anchorcms	anchor_cms	system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in a cookie.	CWE-94 Code Injection	CVE-2015-5687	2024-11-21 11:33	2015-10-5	Show	GitHub Exploit DB Packet Storm