Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251991	4.3	警告	オラクル	-	OpenSSO Enterprise および Sun Java System Access Manager における脆弱性	CWE-noinfo 情報不足	CVE-2011-0844	2011-05-16 11:36	2011-04-19	Show	GitHub Exploit DB Packet Storm

251992	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0843	2011-05-16 11:35	2011-04-19	Show	GitHub Exploit DB Packet Storm

251993	7.8	危険	オラクル	-	Oracle Solaris 11 Express における TCP/IP の脆弱性	CWE-noinfo 情報不足	CVE-2011-0841	2011-05-16 11:34	2011-04-19	Show	GitHub Exploit DB Packet Storm

251994	4	警告	オラクル	-	Oracle PeopleSoft Enterprise PeopleTools における脆弱性	CWE-noinfo 情報不足	CVE-2011-0840	2011-05-16 11:33	2011-04-19	Show	GitHub Exploit DB Packet Storm

251995	4.3	警告	オラクル	-	Oracle Supply Chain Products Suite の Agile Technology Platform コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0837	2011-05-16 11:32	2011-04-19	Show	GitHub Exploit DB Packet Storm

251996	3.5	注意	オラクル	-	Oracle JD Edwards EnterpriseOne Tools および OneWorld Tools における脆弱性	CWE-noinfo 情報不足	CVE-2011-0836	2011-05-16 11:31	2011-04-19	Show	GitHub Exploit DB Packet Storm

251997	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0834	2011-05-16 11:27	2011-04-19	Show	GitHub Exploit DB Packet Storm

251998	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0833	2011-05-16 11:27	2011-04-19	Show	GitHub Exploit DB Packet Storm

251999	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品の navigator.plugins の実装における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2767	2011-05-16 11:09	2010-09-7	Show	GitHub Exploit DB Packet Storm

252000	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品の normalizeDocument 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2766	2011-05-16 11:08	2010-09-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286551	-	uclouvain	openjpeg	Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4290	2024-11-21 10:55	2014-04-18	Show	GitHub Exploit DB Packet Storm

286552	-	uclouvain	openjpeg	Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.	CWE-189 Numeric Errors	CVE-2013-4289	2024-11-21 10:55	2014-04-18	Show	GitHub Exploit DB Packet Storm

286553	-	hitmyserver	hms_testimonials	Multiple cross-site request forgery (CSRF) vulnerabilities in the HMS Testimonials plugin before 2.0.11 for WordPress allow remote attackers to hijack the authentication of administrators for request…	CWE-352 Origin Validation Error	CVE-2013-4240	2024-11-21 10:55	2014-04-3	Show	GitHub Exploit DB Packet Storm

286554	-	samba canonical	samba ubuntu_linux	Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obta…	CWE-255 Credentials Management	CVE-2013-4496	2024-11-21 10:55	2014-03-14	Show	GitHub Exploit DB Packet Storm

286555	-	vicidial	vicidial	Multiple SQL injection vulnerabilities in the agent interface (agc/) in VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier allow (1) remote attackers to execute arbitrary SQ…	CWE-89 SQL Injection	CVE-2013-4467	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

286556	-	php	xhprof	Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter.	CWE-79 Cross-site Scripting	CVE-2013-4433	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

286557	-	schneems	wicked	Directory traversal vulnerability in controller/concerns/render_redirect.rb in the Wicked gem before 1.0.1 for Ruby allows remote attackers to read arbitrary files via a %2E%2E%2F (encoded dot dot sl…	CWE-22 Path Traversal	CVE-2013-4413	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

286558	-	plone	plone	mail_password.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to bypass the prohibition on password changes via the forgotten password emai…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4198	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

286559	-	plone	plone	(1) cb_decode.py and (2) linkintegrity.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote authenticated users to cause a denial of service (resource consumption) v…	CWE-20 Improper Input Validation	CVE-2013-4199	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

286560	-	plone	plone	member_portrait.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to modify or delete portraits of other users via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2013-4197	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm