Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251971 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Global Payroll - North America に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0859 2011-05-17 09:49 2011-04-19 Show GitHub Exploit DB Packet Storm
251972 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Talent Acquisition Manager に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0858 2011-05-17 09:48 2011-04-19 Show GitHub Exploit DB Packet Storm
251973 3.5 注意 オラクル - Oracle PeopleSoft Enterprise の Pension Administration コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0857 2011-05-17 09:47 2011-04-20 Show GitHub Exploit DB Packet Storm
251974 3.5 注意 オラクル - Oracle PeopleSoft Enterprise の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0856 2011-05-17 09:46 2011-04-20 Show GitHub Exploit DB Packet Storm
251975 5.5 警告 オラクル - Oracle Industry Applications の InForm コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0855 2011-05-17 09:45 2011-04-19 Show GitHub Exploit DB Packet Storm
251976 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における ePerformance に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0854 2011-05-17 09:44 2011-04-19 Show GitHub Exploit DB Packet Storm
251977 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における ePerformance に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0853 2011-05-17 09:43 2011-04-19 Show GitHub Exploit DB Packet Storm
251978 5.5 警告 オラクル - Oracle PeopleSoft Enterprise ELS における Enterprise Learning Mgmt に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0851 2011-05-17 09:41 2011-04-19 Show GitHub Exploit DB Packet Storm
251979 5.5 警告 オラクル - Oracle PeopleSoft Enterprise CRM における Order Capture に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0850 2011-05-17 09:28 2011-04-19 Show GitHub Exploit DB Packet Storm
251980 4.3 警告 オラクル - Oracle Java Dynamic Management Kit の HTML Adaptor における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0849 2011-05-17 09:27 2011-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281081 - dlink dir505_shareport_mobile_companion_firmware
dir505_shareport_mobile_companion
dir505l_shareport_mobile_companion_firmware
dir-505l_shareport_mobile_companion
dsp-w215_firmware
dsp-w215 		Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. A1) with firmware 1.01b06 and earlier, DIR-505 with firmware before 1.08b10, and DIR-505L with firmware … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3936 2024-11-21 11:09 2014-06-2 Show GitHub Exploit DB Packet Storm
281082 - xoops glossaire_module SQL injection vulnerability in glossaire-aff.php in the Glossaire module 1.0 for XOOPS allows remote attackers to execute arbitrary SQL commands via the lettre parameter. CWE-89
SQL Injection 		CVE-2014-3935 2024-11-21 11:09 2014-06-2 Show GitHub Exploit DB Packet Storm
281083 - phpnuke php-nuke
submit_news_module 		SQL injection vulnerability in the Submit_News module for PHP-Nuke 8.3 allows remote attackers to execute arbitrary SQL commands via the topics[] parameter to modules.php. CWE-89
SQL Injection 		CVE-2014-3934 2024-11-21 11:09 2014-06-2 Show GitHub Exploit DB Packet Storm
281084 - newsignature addressfield_tokens Cross-site scripting (XSS) vulnerability in the address components field formatter in the AddressField Tokens module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users to inject arbi… CWE-79
Cross-site Scripting 		CVE-2014-3933 2024-11-21 11:09 2014-06-2 Show GitHub Exploit DB Packet Storm
281085 - cososys endpoint_protector SQL injection vulnerability in the device registration component in wsf/webservice.php in CoSoSys Endpoint Protector 4 4.3.0.4 and 4.4.0.2 allows remote attackers to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2014-3932 2024-11-21 11:09 2014-06-2 Show GitHub Exploit DB Packet Storm
281086 - canonical
redhat 		ubuntu_linux
sos 		sosreport in Red Hat sos 1.7 and earlier on Red Hat Enterprise Linux (RHEL) 5 produces an archive with an fstab file potentially containing cleartext passwords, and lacks a warning about reviewing th… CWE-255
Credentials Management 		CVE-2014-3925 2024-11-21 11:09 2014-06-1 Show GitHub Exploit DB Packet Storm
281087 - debian dpkg-dev Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pse… CWE-22
Path Traversal 		CVE-2014-3865 2024-11-21 11:09 2014-05-31 Show GitHub Exploit DB Packet Storm
281088 - debian dpkg-dev Directory traversal vulnerability in dpkg-source in dpkg-dev 1.3.0 allows remote attackers to modify files outside of the intended directories via a crafted source package that lacks a --- header lin… CWE-22
Path Traversal 		CVE-2014-3864 2024-11-21 11:09 2014-05-31 Show GitHub Exploit DB Packet Storm
281089 - webmin webmin
userwin 		Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows. CWE-79
Cross-site Scripting 		CVE-2014-3924 2024-11-21 11:09 2014-05-30 Show GitHub Exploit DB Packet Storm
281090 - digitalzoomstudio video_gallery Multiple cross-site scripting (XSS) vulnerabilities in the Digital Zoom Studio (DZS) Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the logoLink … CWE-79
Cross-site Scripting 		CVE-2014-3923 2024-11-21 11:09 2014-05-30 Show GitHub Exploit DB Packet Storm