Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250601	4	警告	IBM	-	IBM WCM のオーサリングツールにおけるドラフト生成のアクセス制限を回避する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4806	2012-03-27 18:42	2010-11-16	Show	GitHub Exploit DB Packet Storm

250602	7.5	危険	marcusg	-	PHP-Fusion の MG User-Fotoalbum モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4791	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250603	5.8	警告	in-mediakg	-	FilterFTP におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4790	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250604	6.8	警告	PHP Web Scripts	-	PHP Web Scripts Easy Banner Free の member.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4784	2012-03-27 18:42	2011-04-7	Show	GitHub Exploit DB Packet Storm

250605	2.6	注意	PHP Web Scripts	-	PHP Web Scripts Easy Banner Free の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4783	2012-03-27 18:42	2011-04-7	Show	GitHub Exploit DB Packet Storm

250606	7.5	危険	softwebsnepal	-	Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4782	2012-03-27 18:42	2011-04-7	Show	GitHub Exploit DB Packet Storm

250607	5	警告	enanocms	-	Enano CMS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4781	2012-03-27 18:42	2011-04-7	Show	GitHub Exploit DB Packet Storm

250608	7.5	危険	enanocms	-	Enano CMS の check_banlist 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4780	2012-03-27 18:42	2011-04-7	Show	GitHub Exploit DB Packet Storm

250609	4.3	警告	BraveNewCode WordPress.org	-	WordPress の WPtouch プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4779	2012-03-27 18:42	2011-04-7	Show	GitHub Exploit DB Packet Storm

250610	4.3	警告	Horde	-	Horde Groupware Webmail Edition のfetchmailprefs.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4778	2012-03-27 18:42	2011-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269051	9.1	CRITICAL Network	oracle	demand_planning	Unspecified vulnerability in the Oracle Demand Planning component in Oracle Supply Chain Products Suite 12.1 and 12.2 allows remote attackers to affect confidentiality and integrity via vectors relat…	NVD-CWE-noinfo	CVE-2016-3527	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269052	7.5	HIGH Network	oracle	agile_product_lifecycle_management_framework	Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a diffe…	NVD-CWE-noinfo	CVE-2016-3526	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269053	5.9	MEDIUM Network	oracle	applications_manager	Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality via vectors related to Cookie Management.	NVD-CWE-noinfo	CVE-2016-3525	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269054	5.4	MEDIUM Network	oracle	e-business_suite	Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and int…	NVD-CWE-noinfo	CVE-2016-3524	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269055	4.7	MEDIUM Network	oracle	web_applications_desktop_integrator	Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vec…	NVD-CWE-noinfo	CVE-2016-3523	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269056	8.2	HIGH Network	oracle	web_applications_desktop_integrator	Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality a…	NVD-CWE-noinfo	CVE-2016-3522	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269057	6.5	MEDIUM Network	ibm mariadb oracle debian canonical	powerkvm mariadb mysql linux debian_linux ubuntu_linux	Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote auth…	NVD-CWE-noinfo	CVE-2016-3521	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269058	4.9	MEDIUM Network	oracle	e-business_suite	Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote administrators to affect confidentiality via v…	NVD-CWE-noinfo	CVE-2016-3520	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269059	6.1	MEDIUM Network	oracle	agile_product_lifecycle_management_framework	Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related t…	NVD-CWE-noinfo	CVE-2016-3519	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

269060	6.5	MEDIUM Network	oracle	mysql	Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.	NVD-CWE-noinfo	CVE-2016-3518	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm