Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251941 4 警告 オラクル - Oracle Supply Chain Products Suite の Agile Core Technology コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2273 2011-08-1 11:46 2011-07-19 Show GitHub Exploit DB Packet Storm
251942 4.3 警告 オラクル - Oracle E-Business Suite の Business Intelligence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2246 2011-08-1 11:46 2011-07-19 Show GitHub Exploit DB Packet Storm
251943 6.8 警告 オラクル - Oracle Enterprise Manager Grid Control の Database Control コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0845 2011-08-1 11:45 2011-07-19 Show GitHub Exploit DB Packet Storm
251944 5 警告 オラクル - Oracle Fusion Middleware の Oracle Business Intelligence Enterprise Edition コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2241 2011-08-1 11:42 2011-07-19 Show GitHub Exploit DB Packet Storm
251945 4 警告 オラクル - Oracle Fusion Middleware の Oracle BPEL Process Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0884 2011-08-1 11:40 2011-07-19 Show GitHub Exploit DB Packet Storm
251946 4 警告 オラクル - Oracle Fusion Middleware の Oracle Containers for J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0883 2011-08-1 11:33 2011-07-19 Show GitHub Exploit DB Packet Storm
251947 6 警告 オラクル - Oracle Database Server および Oracle Fusion Middleware における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2232 2011-08-1 11:32 2011-07-19 Show GitHub Exploit DB Packet Storm
251948 4.3 警告 オラクル - Oracle Database Server および Oracle Fusion Middleware における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2231 2011-08-1 11:31 2011-07-19 Show GitHub Exploit DB Packet Storm
251949 10 危険 オラクル - Oracle Secure Backup における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2261 2011-08-1 11:30 2011-07-19 Show GitHub Exploit DB Packet Storm
251950 5.1 警告 サイバートラスト株式会社
Carnegie Mellon University (Project Cyrus)
レッドハット		 - Cyrus IMAP Server の STARTTLS 実装における暗号化セッションにコマンドを挿入される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1926 2011-08-1 11:02 2011-05-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287351 - ibm sametime The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to determine which meeting rooms are owned by a user by leveraging knowledge of valid user names. CWE-287
Improper Authentication 		CVE-2013-3977 2024-11-21 10:54 2014-05-26 Show GitHub Exploit DB Packet Storm
287352 - ibm sametime Unspecified vulnerability in the Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to discover user names, full names, and e-mail addresses via a sear… NVD-CWE-noinfo
CVE-2013-3975 2024-11-21 10:54 2014-05-26 Show GitHub Exploit DB Packet Storm
287353 - bestpractical rt-extension-mobileui
request_tracker 		Cross-site scripting (XSS) vulnerability in the MobileUI (aka RT-Extension-MobileUI) extension before 1.04 in Request Tracker (RT) 4.0.0 before 4.0.13 allows remote attackers to inject arbitrary web … CWE-79
Cross-site Scripting 		CVE-2013-3736 2024-11-21 10:54 2014-05-6 Show GitHub Exploit DB Packet Storm
287354 - node_packaged_modules_project node_packaged_modules lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking a… CWE-59
Link Following 		CVE-2013-4116 2024-11-21 10:54 2014-04-22 Show GitHub Exploit DB Packet Storm
287355 - coreftp core_ftp Stack-based buffer overflow in Core FTP before 2.2 build 1785 allows remote FTP servers to execute arbitrary code via a crafted directory name in a CWD command reply. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3930 2024-11-21 10:54 2014-04-4 Show GitHub Exploit DB Packet Storm
287356 - ibm infosphere_biginsights CRLF injection vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 1.1 and 2.x before 2.1 FP2 allows remote authenticated users to inject arbitrary HTTP headers and … CWE-94
Code Injection 		CVE-2013-3998 2024-11-21 10:54 2014-03-26 Show GitHub Exploit DB Packet Storm
287357 - ibm infosphere_biginsights Open redirect vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 1.1 and 2.x before 2.1 FP2 allows remote authenticated users to redirect users to arbitrary web sit… CWE-20
 Improper Input Validation  		CVE-2013-3997 2024-11-21 10:54 2014-03-26 Show GitHub Exploit DB Packet Storm
287358 - ibm flashcopy_manager
tivoli_storage_manager_for_mail
data_protection
tivoli_storage_flashcopy_manager 		The (1) Data Protection for Exchange component 6.1 before 6.1.3.4 and 6.3 before 6.3.1 in IBM Tivoli Storage Manager for Mail and the (2) FlashCopy Manager for Exchange component 2.2 and 3.1 before 3… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3976 2024-11-21 10:54 2014-03-26 Show GitHub Exploit DB Packet Storm
287359 - xnview xnview Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based buf… CWE-189
Numeric Errors 		CVE-2013-3938 2024-11-21 10:54 2014-03-19 Show GitHub Exploit DB Packet Storm
287360 - ibm infosphere_information_server Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote attackers to inject arbitra… CWE-79
Cross-site Scripting 		CVE-2013-4059 2024-11-21 10:54 2014-03-16 Show GitHub Exploit DB Packet Storm