Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252321	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4432	2011-02-15 14:01	2011-01-18	Show	GitHub Exploit DB Packet Storm

252322	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Agile Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4429	2011-02-15 13:57	2011-01-18	Show	GitHub Exploit DB Packet Storm

252323	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Agile Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3505	2011-02-15 13:55	2011-01-18	Show	GitHub Exploit DB Packet Storm

252324	-	-	オラクル	-	Oracle WebLogic Node Manager に脆弱性	-	-	2011-02-14 15:26	2010-10-13	Show	GitHub Exploit DB Packet Storm

252325	4	警告	オラクル	-	Oracle Applications の Oracle Application Object Library コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3589	2011-02-14 15:25	2011-01-18	Show	GitHub Exploit DB Packet Storm

252326	4.3	警告	オラクル	-	Oracle Applications の Oracle Common Applications コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3587	2011-02-14 15:25	2011-01-18	Show	GitHub Exploit DB Packet Storm

252327	6.4	警告	オラクル	-	Oracle Enterprise Manager Grid Control の Real User Experience Insight コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3594	2011-02-14 15:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

252328	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4427	2011-02-14 15:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

252329	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4425	2011-02-14 15:23	2011-01-18	Show	GitHub Exploit DB Packet Storm

252330	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4453	2011-02-14 15:15	2011-01-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252821	9.8	CRITICAL Network	nq	contacts_backup_\&_restore	In the "NQ Contacts Backup & Restore" application 1.1 for Android, no HTTPS is used for transmitting login and synced user data. When logging in, the username is transmitted in cleartext along with a…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2017-15999	2024-11-21 12:15	2017-10-30	Show	GitHub Exploit DB Packet Storm

252822	7.5	HIGH Network	nq	contacts_backup_\&_restore	In the "NQ Contacts Backup & Restore" application 1.1 for Android, DES encryption with a static key is used to secure transmitted contact data. This makes it easier for remote attackers to obtain cle…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2017-15998	2024-11-21 12:15	2017-10-30	Show	GitHub Exploit DB Packet Storm

252823	7.8	HIGH Local	nq	contacts_backup_\&_restore	In the "NQ Contacts Backup & Restore" application 1.1 for Android, RC4 encryption is used to secure the user password locally stored in shared preferences. Because there is a static RC4 key, an attac…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2017-15997	2024-11-21 12:15	2017-10-30	Show	GitHub Exploit DB Packet Storm

252824	7.8	HIGH Local	gnu	binutils	elfcomm.c in readelf in GNU Binutils 2.29 allows remote attackers to cause a denial of service (excessive memory allocation) or possibly have unspecified other impact via a crafted ELF file that trig…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-15996	2024-11-21 12:15	2017-10-30	Show	GitHub Exploit DB Packet Storm

252825	9.8	CRITICAL Network	samba	rsync	rsync 3.1.3-development before 2017-10-24 mishandles archaic checksums, which makes it easier for remote attackers to bypass intended access restrictions. NOTE: the rsync development branch has signi…	CWE-354 Improper Validation of Integrity Check Value	CVE-2017-15994	2024-11-21 12:15	2017-10-29	Show	GitHub Exploit DB Packet Storm

252826	9.8	CRITICAL Network	zeescripts	zeebuddy	ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604.	CWE-89 SQL Injection	CVE-2017-15976	2024-11-21 12:15	2017-10-29	Show	GitHub Exploit DB Packet Storm

252827	9.8	CRITICAL Network	vastal	dating_zone	Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the 'product_id' to add_to_cart.php, a different vulnerability than CVE-2008-4461.	CWE-89 SQL Injection	CVE-2017-15975	2024-11-21 12:15	2017-10-29	Show	GitHub Exploit DB Packet Storm

252828	9.8	CRITICAL Network	datacomponents	tpanel	tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 or ''=' to login.php.	CWE-89 SQL Injection	CVE-2017-15974	2024-11-21 12:15	2017-10-29	Show	GitHub Exploit DB Packet Storm

252829	9.8	CRITICAL Network	sokial	sokial	Sokial Social Network Script 1.0 allows SQL Injection via the id parameter to admin/members_view.php.	CWE-89 SQL Injection	CVE-2017-15973	2024-11-21 12:15	2017-10-29	Show	GitHub Exploit DB Packet Storm

252830	9.8	CRITICAL Network	softdatepro	dating_software	SoftDatepro Dating Social Network 1.3 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15…	CWE-89 SQL Injection	CVE-2017-15972	2024-11-21 12:15	2017-10-29	Show	GitHub Exploit DB Packet Storm