Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251921 9.4 危険 オラクル - Oracle Fusion Middleware の Oracle Document Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3599 2011-02-10 11:44 2011-01-18 Show GitHub Exploit DB Packet Storm
251922 7.5 危険 オラクル - Oracle Audit Vault の Audit Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4449 2011-02-10 11:36 2011-01-18 Show GitHub Exploit DB Packet Storm
251923 6.4 警告 オラクル - Oracle Secure Backup の mod_ssl コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3596 2011-02-10 11:30 2011-01-18 Show GitHub Exploit DB Packet Storm
251924 3.6 注意 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4420 2011-02-9 16:44 2011-01-18 Show GitHub Exploit DB Packet Storm
251925 4.3 警告 オラクル - Oracle Database Server の Scheduler Agent コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4413 2011-02-9 16:43 2011-01-18 Show GitHub Exploit DB Packet Storm
251926 4.9 警告 オラクル - Oracle Database Server の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3590 2011-02-9 16:43 2011-01-18 Show GitHub Exploit DB Packet Storm
251927 6.9 警告 オラクル - Windows 上で稼働する Oracle Database Server の Cluster Verify Utility コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4423 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
251928 6.8 警告 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4421 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
251929 7.5 危険 オラクル - 複数の Oracle 製品の Client System Analyzer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3600 2011-02-9 16:41 2011-01-18 Show GitHub Exploit DB Packet Storm
251930 7.2 危険 マイクロソフト - 複数の Microsoft 製品の kernel-mode ドライバにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-2743 2011-02-9 16:39 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285031 - reviewboard review_board Cross-site scripting (XSS) vulnerability in the Submitters list in Review Board 1.6.x before 1.6.18 and 1.7.x before 1.7.12 allows remote attackers to inject arbitrary web script or HTML via a user f… CWE-79
Cross-site Scripting 		CVE-2013-4795 2024-11-21 10:56 2014-04-11 Show GitHub Exploit DB Packet Storm
285032 - puppet puppet_enterprise Multiple cross-site request forgery (CSRF) vulnerabilities in Puppet Enterprise (PE) before 3.0.1 allow remote attackers to hijack the authentication of users for requests that deleting a (1) report,… CWE-352
 Origin Validation Error 		CVE-2013-4963 2024-11-21 10:56 2014-03-15 Show GitHub Exploit DB Packet Storm
285033 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.3 allows remote attackers to obtain sensitive information via unknown vectors. NVD-CWE-noinfo
CVE-2013-4846 2024-11-21 10:56 2014-03-14 Show GitHub Exploit DB Packet Storm
285034 - puppet puppet_enterprise Puppet Enterprise before 3.2.0 does not properly restrict access to node endpoints in the console, which allows remote attackers to obtain sensitive information via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4971 2024-11-21 10:56 2014-03-9 Show GitHub Exploit DB Packet Storm
285035 - puppet puppet_enterprise The master external node classification script in Puppet Enterprise before 3.2.0 does not verify the identity of consoles, which allows remote attackers to create arbitrary classifications on the mas… CWE-287
Improper Authentication 		CVE-2013-4966 2024-11-21 10:56 2014-03-9 Show GitHub Exploit DB Packet Storm
285036 - avtech avn801_dvr_firmware
avn801_dvr 		Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4981 2024-11-21 10:56 2014-03-4 Show GitHub Exploit DB Packet Storm
285037 - avtech avn801_dvr_firmware
avn801_dvr 		Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4980 2024-11-21 10:56 2014-03-4 Show GitHub Exploit DB Packet Storm
285038 - hikvision ds-2cd7153-e_firmware
ds-2cd7153-e 		Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote attackers to cause a denial of service… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4977 2024-11-21 10:56 2014-03-4 Show GitHub Exploit DB Packet Storm
285039 - google android Android 3.0 through 4.1.x on Disney Mobile, eAccess, KDDI, NTT DOCOMO, SoftBank, and other devices does not properly implement the WebView class, which allows remote attackers to execute arbitrary me… CWE-20
 Improper Input Validation  		CVE-2013-4710 2024-11-21 10:56 2014-03-3 Show GitHub Exploit DB Packet Storm
285040 - hp lefthand
storevirtual_virtual_storage_appliance
storevirtual_4000 		Unspecified vulnerability in dbd_manager in LeftHand OS before 11.0 in HP StoreVirtual 4000 and StoreVirtual VSA Software (formerly LeftHand Virtual SAN Appliance) allows remote attackers to execute … NVD-CWE-noinfo
CVE-2013-4841 2024-11-21 10:56 2014-02-26 Show GitHub Exploit DB Packet Storm