Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224571	3.6	注意	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2387	2013-11-8 16:20	2013-04-16	Show	GitHub Exploit DB Packet Storm

224572	4.9	警告	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2386	2013-11-8 16:19	2013-04-16	Show	GitHub Exploit DB Packet Storm

224573	4	警告	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2385	2013-11-8 16:18	2013-04-16	Show	GitHub Exploit DB Packet Storm

224574	1.7	注意	オラクル	-	Oracle Financial Services Software における BASE の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2382	2013-11-8 16:17	2013-04-16	Show	GitHub Exploit DB Packet Storm

224575	3.5	注意	オラクル	-	Oracle MySQL における Server Privileges の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2381	2013-11-8 16:16	2013-04-16	Show	GitHub Exploit DB Packet Storm

224576	10	危険	オラクル	-	Oracle Fusion Middleware の Oracle JRockit における脆弱性	CWE-noinfo 情報不足	CVE-2013-2380	2013-11-8 16:15	2013-04-16	Show	GitHub Exploit DB Packet Storm

224577	3.5	注意	オラクル	-	Oracle Financial Services Software における RT の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2379	2013-11-8 16:14	2013-04-16	Show	GitHub Exploit DB Packet Storm

224578	6	警告	MySQL AB オラクル	-	Oracle MySQL における Information Schema の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2378	2013-11-8 16:13	2013-04-16	Show	GitHub Exploit DB Packet Storm

224579	3.5	注意	オラクル	-	Oracle Financial Services Software の Oracle FLEXCUBE Direct Banking における My Services の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2377	2013-11-8 16:11	2013-04-16	Show	GitHub Exploit DB Packet Storm

224580	6	警告	オラクル	-	Oracle MySQL における脆弱性	CWE-noinfo 情報不足	CVE-2013-2375	2013-11-8 16:09	2013-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2971	8.8	HIGH Network	-	-	A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipul…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9628	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2972	6.3	MEDIUM Network	-	-	A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9607	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2973	4.3	MEDIUM Network	-	-	A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. E…	CWE-200 CWE-209 Information Exposure Information Exposure Through an Error Message	CVE-2026-9583	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2974	7.3	HIGH Network	-	-	A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such mani…	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9562	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2975	6.3	MEDIUM Network	-	-	A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-9511	2026-05-29 01:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

2976	4.8	MEDIUM Network	-	-	Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The random_bytes function fell back to using the built-in rand() function when…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-8647	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2977	7.5	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the webhook schema-building endpoint is registered under builderRoutes, but the generic authorization middleware skips authorization for…	CWE-862 Missing Authorization	CVE-2026-48151	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2978	8.1	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the Budibase Text component renders markdown by assigning marked.parse(markdown) straight to innerHTML with no sanitizer (packages/bbui/…	CWE-79 Cross-site Scripting	CVE-2026-48149	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2979	7.7	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the OAuth2 token fetch function in packages/server/src/sdk/workspace/oauth2/utils.ts uses raw fetch(config.url) with no SSRF protection.…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-48146	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2980	5.3	MEDIUM Network	-	-	Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted…	CWE-93 CRLF Injection	CVE-2026-46740	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm