Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252821 5 警告 オラクル - Oracle Sun Convergence における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0914 2010-08-9 16:48 2010-07-13 Show GitHub Exploit DB Packet Storm
252822 5.8 警告 オラクル - Oracle Sun Java System Web Proxy Server の管理サーバにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2385 2010-08-9 16:48 2010-07-13 Show GitHub Exploit DB Packet Storm
252823 2.1 注意 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise Campus Solutions コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2403 2010-08-6 18:29 2010-07-13 Show GitHub Exploit DB Packet Storm
252824 3 注意 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise CRM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2378 2010-08-6 18:29 2010-07-13 Show GitHub Exploit DB Packet Storm
252825 4 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2377 2010-08-6 18:29 2010-07-13 Show GitHub Exploit DB Packet Storm
252826 4 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM - Time & Labor コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2379 2010-08-6 18:29 2010-07-13 Show GitHub Exploit DB Packet Storm
252827 4 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2398 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
252828 4.3 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise FSCM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2380 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
252829 5.5 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2402 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
252830 5.5 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM - eProfile Mgr コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2401 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269541 - ibm b2b_advanced_communications IBM Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications 1.0.0.2 and 1.0.0.3 before 1.0.0.3_2, when access by guests is enabled, place an internal hostname and a p… CWE-200
Information Exposure 		CVE-2015-5022 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269542 - ibm sterling_b2b_integrator IBM Sterling B2B Integrator 5.2 before 5020500_8 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2015-4992 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269543 - ibm b2b_advanced_communications Cross-site scripting (XSS) vulnerability in IBM Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications 1.0.0.2 and 1.0.0.3 before 1.0.0.3_2 allows remote attackers t… CWE-79
Cross-site Scripting 		CVE-2015-4973 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269544 - ibm emptoris
emptoris_program_management 		Cross-site scripting (XSS) vulnerability in IBM Emptoris Strategic Supply Management Platform and Emptoris Program Management 10.x before 10.0.1.4_iFix3, 10.0.2.x before 10.0.2.7_iFix1, 10.0.3.x befo… CWE-79
Cross-site Scripting 		CVE-2015-4971 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269545 - ibm maximo_asset_management
maximo_for_nuclear_power
maximo_for_utilities
maximo_for_life_sciences
maximo_for_oil_and_gas
maximo_for_transportation
maximo_for_government
smartcloud_c… 		SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX004, and 7.6.0 before 7.6.0.1 IFIX002; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX004 a… CWE-89
SQL Injection 		CVE-2015-4967 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269546 - ibm maximo_asset_management
maximo_for_nuclear_power
maximo_for_utilities
maximo_for_life_sciences
maximo_for_oil_and_gas
maximo_for_transportation
maximo_for_government
smartcloud_c… 		maximouiweb/webmodule/webclient/utility/merlin.jsp in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX004, and 7.6.0 before 7.6.0.1 IFIX002; Maximo Asset Management 7.5.x b… CWE-200
Information Exposure 		CVE-2015-4965 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269547 - ibm urbancode_deploy IBM UrbanCode Deploy 6.0 and 6.0.1.x before 6.0.1.10, 6.1.1.x before 6.1.1.8, and 6.1.2 writes admin AUTH_TOKEN values to execution logs, which allows remote authenticated users to gain privileges by… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-4964 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269548 - ibm maximo_asset_management
maximo_for_nuclear_power
maximo_for_utilities
maximo_for_life_sciences
maximo_for_oil_and_gas
maximo_for_transportation
maximo_for_government
smartcloud_c… 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX003, and 7.6.0 before 7.6.0.1 IFIX001; Maximo Asset Management 7.5.x before 7.5.… CWE-79
Cross-site Scripting 		CVE-2015-4944 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269549 - ibm emptoris_program_management
emptoris_supplier_lifecycle_management
emptoris_strategic_supply_management 		Cross-site scripting (XSS) vulnerability in IBM Emptoris Supplier Lifecycle Management and Emptoris Program Management 10.x before 10.0.1.4_iFix3, 10.0.2.x before 10.0.2.7_iFix1, 10.0.3.x before 10.0… CWE-79
Cross-site Scripting 		CVE-2015-4939 2024-11-21 11:32 2015-10-6 Show GitHub Exploit DB Packet Storm
269550 - ibm qradar_security_information_and_event_manager IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 Patch 4 allows remote authenticated users to execute arbitrary commands with root privileges by leveraging admin access. CWE-77
Command Injection 		CVE-2015-4930 2024-11-21 11:32 2015-10-4 Show GitHub Exploit DB Packet Storm