Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255001 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
255002 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255003 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255004 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255005 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0879 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255006 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0878 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
255007 5 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0877 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
255008 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0880 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
255009 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Workflow Cartridge コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0857 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
255010 3.5 注意 オラクル - Oracle E-Business Suite の E-Business Intelligence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0858 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285801 8.8 HIGH
Network 		prestashop prestashop PrestaShop 1.5.5 allows remote authenticated attackers to execute arbitrary code by uploading a crafted profile and then accessing it in the module/ directory. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2013-6358 2024-11-21 10:59 2020-01-24 Show GitHub Exploit DB Packet Storm
285802 5.4 MEDIUM
Network 		pivotal_software spring_framework The JavaScriptUtils.javaScriptEscape method in web/util/JavaScriptUtils.java in Spring MVC in Spring Framework before 3.2.2 does not properly escape certain characters, which allows remote attackers … CWE-79
Cross-site Scripting 		CVE-2013-6430 2024-11-21 10:59 2020-01-10 Show GitHub Exploit DB Packet Storm
285803 6.1 MEDIUM
Network 		redhat jboss_enterprise_application_platform
jboss_portal 		JBossWeb Bayeux has reflected XSS CWE-79
Cross-site Scripting 		CVE-2013-6495 2024-11-21 10:59 2019-12-11 Show GitHub Exploit DB Packet Storm
285804 5.3 MEDIUM
Network 		miwisoft mijosearch The Mijosoft MijoSearch component 2.0.1 and earlier for Joomla! allows remote attackers to obtain sensitive information via a request to component/mijosearch/search, which reveals the installation pa… CWE-209
Information Exposure Through an Error Message 		CVE-2013-6879 2024-11-21 10:59 2019-11-23 Show GitHub Exploit DB Packet Storm
285805 6.1 MEDIUM
Network 		miwisoft mijosearch Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and earlier for Joomla! allows remote attackers to inject arbitrary web script or HTML via the query parameter to c… CWE-79
Cross-site Scripting 		CVE-2013-6878 2024-11-21 10:59 2019-11-23 Show GitHub Exploit DB Packet Storm
285806 6.1 MEDIUM
Network 		elvedia flashcanvas Open redirect in proxy.php in FlashCanvas before 1.6 allows remote attackers to redirect users to arbitrary web sites and conduct cross-site scripting (XSS) attacks via the HTTP Referer header. CWE-79
Cross-site Scripting 		CVE-2013-6880 2024-11-21 10:59 2019-11-23 Show GitHub Exploit DB Packet Storm
285807 8.8 HIGH
Network 		d-link dsl6740u_firmware Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DSL-6740U gateway (Rev. H1) allow remote attackers to hijack the authentication of administrators for requests that change adm… CWE-352
 Origin Validation Error 		CVE-2013-6811 2024-11-21 10:59 2019-11-23 Show GitHub Exploit DB Packet Storm
285808 6.5 MEDIUM
Network 		nokogiri
debian
redhat 		nokogiri
debian_linux
openstack
cloudforms_management_engine
satellite
subscription_asset_manager
enterprise_mrg 		Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing to apply limits CWE-776
XML Entity Expansion 		CVE-2013-6461 2024-11-21 10:59 2019-11-6 Show GitHub Exploit DB Packet Storm
285809 6.5 MEDIUM
Network 		nokogiri
debian
redhat 		nokogiri
debian_linux
openstack
cloudforms_management_engine
satellite
subscription_asset_manager
enterprise_mrg 		Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents CWE-776
XML Entity Expansion 		CVE-2013-6460 2024-11-21 10:59 2019-11-6 Show GitHub Exploit DB Packet Storm
285810 5.3 MEDIUM
Network 		horde
opensuse
debian 		groupware
opensuse
debian_linux 		Horde Groupware Web mail 5.1.2 has CSRF with requests to change permissions CWE-352
 Origin Validation Error 		CVE-2013-6365 2024-11-21 10:59 2019-11-5 Show GitHub Exploit DB Packet Storm