Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254191	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0862	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

254192	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0875	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

254193	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0876	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

254194	4.3	警告	オラクル	-	Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0874	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

254195	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0879	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

254196	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0878	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

254197	5	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0877	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

254198	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0880	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

254199	3.5	注意	オラクル	-	Oracle E-Business Suite の Oracle Workflow Cartridge コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0857	2010-05-13 15:10	2010-04-13	Show	GitHub Exploit DB Packet Storm

254200	3.5	注意	オラクル	-	Oracle E-Business Suite の E-Business Intelligence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0858	2010-05-13 15:10	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253391	8.8	HIGH Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.	CWE-352 Origin Validation Error	CVE-2017-15734	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253392	8.8	HIGH Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.	CWE-352 Origin Validation Error	CVE-2017-15733	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253393	8.8	HIGH Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.	CWE-352 Origin Validation Error	CVE-2017-15732	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253394	8.8	HIGH Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php.	CWE-352 Origin Validation Error	CVE-2017-15731	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253395	8.8	HIGH Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.	CWE-352 Origin Validation Error	CVE-2017-15730	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253396	8.8	HIGH Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for adding a glossary.	CWE-352 Origin Validation Error	CVE-2017-15729	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253397	4.8	MEDIUM Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords.	CWE-79 Cross-site Scripting	CVE-2017-15728	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253398	5.4	MEDIUM Network	phpmyfaq	phpmyfaq	In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment.	CWE-79 Cross-site Scripting	CVE-2017-15727	2024-11-21 12:15	2017-10-23	Show	GitHub Exploit DB Packet Storm

253399	6.1	MEDIUM Network	craftercms	crafter_cms	In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to inject malicious JavaScript code resulting in a stored/blind XSS in the admin panel.	CWE-79 Cross-site Scripting	CVE-2017-15682	2024-11-21 12:14	2020-11-28	Show	GitHub Exploit DB Packet Storm

253400	9.8	CRITICAL Network	craftercms	crafter_cms	In Crafter CMS Crafter Studio 3.0.1 a directory traversal vulnerability exists which allows unauthenticated attackers to overwrite files from the operating system which can lead to RCE.	CWE-22 Path Traversal	CVE-2017-15681	2024-11-21 12:14	2020-11-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed