Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243341 7.5 危険 danny ho - OES における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2132 2012-06-26 16:19 2010-06-2 Show GitHub Exploit DB Packet Storm
243342 4.3 警告 arisglobal - Aris Global ARISg の wflogin.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2130 2012-06-26 16:19 2010-06-2 Show GitHub Exploit DB Packet Storm
243343 7.5 危険 bartels-schoene - Bartels Schone ConPresso の firma.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2124 2012-06-26 16:19 2010-06-1 Show GitHub Exploit DB Packet Storm
243344 2.6 注意 brekeke - Brekeke PBX の pbx/gate におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2114 2012-06-26 16:19 2010-05-28 Show GitHub Exploit DB Packet Storm
243345 4.3 警告 Apache Software Foundation - SAP Business Objects などで使用される Apache Axis2/Java の axis2-admin/axis2-admin/engagingglobally におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2103 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
243346 7.5 危険 e107.org - e107 の bbcode/php.bb における PHP リモートファイルインクルージョンの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2099 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
243347 7.5 危険 e107.org - e107 の usersettings.php におけるSQL インジェクション攻撃を誘発される脆弱性 CWE-Other
その他 		CVE-2010-2098 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
243348 7.5 危険 cmsqlite - CMSQlite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2096 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
243349 7.5 危険 cmsqlite - CMSQlite の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2095 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
243350 7.5 危険 The Cacti Group - Cacti の graph.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2092 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268701 3.1 LOW
Local 		oracle identity_manager Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware allows local users to affect confidentiality and integrity via vectors related to App Server. CWE-284
Improper Access Control 		CVE-2016-5506 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268702 5.5 MEDIUM
Local 		oracle database_server Unspecified vulnerability in the RDBMS Programmable Interface component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors. CWE-200
Information Exposure 		CVE-2016-5505 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268703 4.1 MEDIUM
Local 		oracle agile_product_lifecycle_management_for_process Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component in Oracle Supply Chain Products Suite 6.1.0.4, 6.1.1.6, and 6.2.0.0 allows local users to affect confi… CWE-200
Information Exposure 		CVE-2016-5504 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268704 8.2 HIGH
Local 		oracle sun_zfs_storage_appliance_kit Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality, integrity, and availability vi… NVD-CWE-noinfo
CVE-2016-5503 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268705 5.4 MEDIUM
Network 		oracle flexcube_universal_banking Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3 allows remote authenticated users to affec… CWE-284
Improper Access Control 		CVE-2016-5502 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268706 7.8 HIGH
Local 		oracle vm_virtualbox Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality, integrity, and availability… NVD-CWE-noinfo
CVE-2016-5501 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268707 7.5 HIGH
Network 		oracle discoverer Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7.0 allows remote attackers to affect confidentiality via vectors related to Viewer. CWE-200
Information Exposure 		CVE-2016-5500 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268708 3.3 LOW
Local 		oracle database_server Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors, a different vulnerability t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-5499 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268709 3.3 LOW
Local 		oracle database_server Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors, a different vulnerability t… CWE-200
Information Exposure 		CVE-2016-5498 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm
268710 6.4 MEDIUM
Local 		oracle database Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors. CWE-284
Improper Access Control 		CVE-2016-5497 2024-11-21 11:54 2016-10-25 Show GitHub Exploit DB Packet Storm