Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242821 4.3 警告 dacian strain
Joomla!		 - Joomla! 用の JFaq コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2514 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242822 7.5 危険 2daybiz - 2daybiz Matrimonial Script の customprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2512 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242823 7.5 危険 2daybiz - 2daybiz MLM Software の viewnews.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2511 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242824 7.5 危険 2daybiz - 2daybiz Web Template Software の customize.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2510 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242825 4.3 警告 2daybiz - 2daybiz Web Template Software におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2509 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242826 7.5 危険 2daybiz - 2daybiz Video Community Portal Script の user-profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2508 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242827 2.9 注意 シスコシステムズ - Linksys WAP54Gv3 の debug.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2506 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
242828 5 警告 bogofilter - bogofilter の base64.c の base64 デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-2494 2012-06-26 16:19 2010-07-8 Show GitHub Exploit DB Packet Storm
242829 7.5 危険 2daybiz - 2daybiz Video Community Portal Script の video.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2459 2012-06-26 16:19 2010-06-25 Show GitHub Exploit DB Packet Storm
242830 4.3 警告 2daybiz - 2daybiz Video Community Portal Script の video.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2458 2012-06-26 16:19 2010-06-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269001 5.4 MEDIUM
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integri… NVD-CWE-noinfo
CVE-2016-3442 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269002 7.8 HIGH
Local 		oracle solaris Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Filesystem. NVD-CWE-noinfo
CVE-2016-3441 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269003 8.2 HIGH
Network 		oracle crm_technical_foundation Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Call Phone Numb… NVD-CWE-noinfo
CVE-2016-3439 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269004 8.2 HIGH
Network 		oracle crm_technical_foundation Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Person Address … NVD-CWE-noinfo
CVE-2016-3437 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269005 8.2 HIGH
Network 		oracle common_applications_calendar Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity vi… NVD-CWE-noinfo
CVE-2016-3436 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269006 4.7 MEDIUM
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect availability via vectors related to P… NVD-CWE-noinfo
CVE-2016-3435 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269007 4.7 MEDIUM
Network 		oracle application_object_library Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors rela… NVD-CWE-noinfo
CVE-2016-3434 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269008 8.2 HIGH
Network 		oracle configurator Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 12.0.6, 12.1, and 12.2 allows remote attackers to affect confidentiality and integrity via vectors… NVD-CWE-noinfo
CVE-2016-3438 2024-11-21 11:50 2016-04-21 Show GitHub Exploit DB Packet Storm
269009 8.8 HIGH
Network 		tibco enterprise_message_service_appliance_firmware
enterprise_message_service 		Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possib… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3628 2024-11-21 11:50 2016-04-20 Show GitHub Exploit DB Packet Storm
269010 6.5 MEDIUM
Network 		dotcms dotcms SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr. CWE-200
Information Exposure 		CVE-2016-3688 2024-11-21 11:50 2016-04-19 Show GitHub Exploit DB Packet Storm