Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
235051 1.7 注意 オラクル - Oracle E-Business Suite の Oracle Applications Technology Stack コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3401 2012-09-25 17:27 2009-10-20 Show GitHub Exploit DB Packet Storm
235052 5.5 警告 オラクル - Oracle E-Business Suite の Oracle Advanced Benefits コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3400 2012-09-25 17:27 2009-10-20 Show GitHub Exploit DB Packet Storm
235053 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3397 2012-09-25 17:27 2009-10-20 Show GitHub Exploit DB Packet Storm
235054 5 警告 オラクル - Oracle E-Business Suite の AutoVue コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3395 2012-09-25 17:27 2009-10-20 Show GitHub Exploit DB Packet Storm
235055 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3393 2012-09-25 17:27 2009-10-20 Show GitHub Exploit DB Packet Storm
235056 5.4 警告 オラクル - Oracle E-Business Suite の Agile EDM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3392 2012-09-25 17:27 2009-10-20 Show GitHub Exploit DB Packet Storm
235057 5 警告 Mozilla Foundation - Bugzilla の Template.pm における非公開バグのエイリアスを発見される脆弱性 CWE-200
情報漏えい 		CVE-2009-3386 2012-09-25 17:27 2009-11-18 Show GitHub Exploit DB Packet Storm
235058 4.3 警告 joomlahbs - Joomla! 用の Hotel Booking Reservation System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3368 2012-09-25 17:27 2009-09-24 Show GitHub Exploit DB Packet Storm
235059 7.5 危険 paul gibbs - PHP-IPNMonitor の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3361 2012-09-25 17:27 2009-09-24 Show GitHub Exploit DB Packet Storm
235060 7.5 危険 joomlahbs - Joomla! 用の Hotel Booking Reservation System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3357 2012-09-25 17:27 2009-09-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346821 - - - SQL injection vulnerability in banner.inc.php in JPortal Web Portal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the haslo parameter. NVD-CWE-Other
CVE-2005-1071 2016-10-18 12:17 2005-04-12 Show GitHub Exploit DB Packet Storm
346822 - xampp apache_distribution Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.4.x allow remote attackers to inject arbitrary web script or HTML via (1) cds.php, (2) Guestbook-EN.pl, or (3) phonebook.php. NVD-CWE-Other
CVE-2005-1077 2016-10-18 12:17 2005-04-12 Show GitHub Exploit DB Packet Storm
346823 - xampp apache_distribution XAMPP 1.4.x has multiple default or null passwords, which allows attackers to gain privileges. NVD-CWE-Other
CVE-2005-1078 2016-10-18 12:17 2005-04-12 Show GitHub Exploit DB Packet Storm
346824 - - - SQL injection vulnerability in index.php for zOOm Media Gallery 2.1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter. NVD-CWE-Other
CVE-2005-1079 2016-10-18 12:17 2005-05-2 Show GitHub Exploit DB Packet Storm
346825 - wordpress wordpress Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attackers to execute arbitrary commands via the (1) content or (2) title o… NVD-CWE-Other
CVE-2005-1102 2016-10-18 12:17 2005-05-2 Show GitHub Exploit DB Packet Storm
346826 - sygate_technologies security_agent Sygate Security Agent (SSA) in Sygate Secure Enterprise 3.5 through 4.1 does not prevent the security policy from being updated by unprivileged users, which allows local users to modify the policy by… NVD-CWE-Other
CVE-2005-1103 2016-10-18 12:17 2005-04-12 Show GitHub Exploit DB Packet Storm
346827 - centra centra Multiple cross-site scripting (XSS) vulnerabilities in Centra 7 allow remote attackers to inject arbitrary web script or HTML via the (1) username, (2) first name, or (3) last name fields. NVD-CWE-Other
CVE-2005-1104 2016-10-18 12:17 2005-05-2 Show GitHub Exploit DB Packet Storm
346828 - sun javamail Directory traversal vulnerability in the MimeBodyPart.getFileName method in JavaMail 1.3.2 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in the Content-Dispositi… NVD-CWE-Other
CVE-2005-1105 2016-10-18 12:17 2005-05-2 Show GitHub Exploit DB Packet Storm
346829 - apple quicktime_pictureviewer PictureViewer in QuickTime for Windows 6.5.2 allows remote attackers to cause a denial of service (application crash) via a GIF image with the maximum depth start value, possibly triggering an intege… NVD-CWE-Other
CVE-2005-1106 2016-10-18 12:17 2005-05-2 Show GitHub Exploit DB Packet Storm
346830 - phpbb_group
smartor 		phpbb
photo_album 		Multiple cross-site scripting (XSS) vulnerabilities in Photo Album 2.0.53 module for phpBB allow remote attackers to inject arbitrary web script or HTML via the bsid parameter to (1) album_cat.php or… NVD-CWE-Other
CVE-2005-1115 2016-10-18 12:17 2005-05-2 Show GitHub Exploit DB Packet Storm