Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254801 6.4 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0859 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
254802 4.3 警告 オラクル - Oracle Collaboration Suite の User Interface コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0881 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
254803 4.3 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0855 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
254804 4.3 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0086 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
254805 5 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0856 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
254806 5 警告 オラクル - Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0872 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
254807 2.1 注意 オラクル - Oracle Database の Audit コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0854 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
254808 3.6 注意 オラクル - Oracle Database の Change Data Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0870 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
254809 4 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0851 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
254810 4 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0867 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277701 - mantisbt mantisbt Cross-site scripting (XSS) vulnerability in the projax_array_serialize_for_autocomplete function in core/projax_api.php in MantisBT 1.1.0a3 through 1.2.17 allows remote attackers to inject arbitrary … CWE-79
Cross-site Scripting 		CVE-2014-9270 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277702 - autodesk design_review The AdView.AdViewer.1 ActiveX control in Autodesk Design Review (ADR) before 2013 Hotfix 1 allows remote attackers to execute arbitrary code via a crafted DWF file. CWE-20
 Improper Input Validation  		CVE-2014-9268 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277703 - ptc isoview Heap-based buffer overflow in the PTC IsoView ActiveX control allows remote attackers to execute arbitrary code via a crafted ViewPort property value. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9267 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277704 - samsung smart_viewer The STWConfig ActiveX control in Samsung SmartViewer does not properly initialize a variable, which allows remote attackers to execute arbitrary code via unspecified vectors. CWE-94
Code Injection 		CVE-2014-9266 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277705 - samsung smartviewer Stack-based buffer overflow in the BackupToAvi method in the CNC_Ctrl ActiveX control in Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9265 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277706 - 3s_pocketnet_tech 3s_pocketnet_tech_video_management_software Multiple buffer overflows in the PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 control in 3S Pocketnet Tech VMS allow remote attackers to execute arbitrary code via a crafted string to the (1) Start… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9263 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277707 - pyyaml libyaml scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via vect… CWE-20
 Improper Input Validation  		CVE-2014-9130 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277708 - jasper_project jasper Multiple off-by-one errors in the (1) jpc_dec_cp_setfromcox and (2) jpc_dec_cp_setfromrgn functions in jpc/jpc_dec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via… CWE-189
Numeric Errors 		CVE-2014-9029 2024-11-21 11:20 2014-12-9 Show GitHub Exploit DB Packet Storm
277709 - f5 big-ip Cross-site scripting (XSS) vulnerability in the tree view (pl_tree.php) feature in Application Security Manager (ASM) in F5 BIG-IP 11.3.0 allows remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2014-9342 2024-11-21 11:20 2014-12-8 Show GitHub Exploit DB Packet Storm
277710 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the redirection feature in url.php in phpMyAdmin 4.2.x before 4.2.13.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter. CWE-79
Cross-site Scripting 		CVE-2014-9219 2024-11-21 11:20 2014-12-8 Show GitHub Exploit DB Packet Storm