Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255251 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
255252 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
255253 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
255254 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
255255 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
255256 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255257 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255258 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255259 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0879 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
255260 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0878 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281821 6.1 MEDIUM
Network 		cybercompay swipehq-payment-gateway-wp-e-commerce Multiple cross-site scripting (XSS) vulnerabilities in test-plugin.php in the Swipe Checkout for WP e-Commerce plugin 3.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web sc… CWE-79
Cross-site Scripting 		CVE-2014-4559 2024-11-21 11:10 2019-12-27 Show GitHub Exploit DB Packet Storm
281822 6.1 MEDIUM
Network 		winwar wp_ebay_product_feeds Cross-site scripting (XSS) vulnerability in magpie/scripts/magpie_slashbox.php in the Ebay Feeds for WordPress plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web scr… CWE-79
Cross-site Scripting 		CVE-2014-4525 2024-11-21 11:10 2019-12-27 Show GitHub Exploit DB Packet Storm
281823 6.1 MEDIUM
Network 		easy_career_openings_project easy_career_openings Cross-site scripting (XSS) vulnerability in the Easy Career Openings plugin 0.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. CWE-79
Cross-site Scripting 		CVE-2014-4523 2024-11-21 11:10 2019-12-27 Show GitHub Exploit DB Packet Storm
281824 6.5 MEDIUM
Network 		ibm infosphere_biginsights IBM InfoSphere BigInsights 2.1.2 allows remote authenticated users to discover SMTP server credentials via vectors related to the Alert management service. IBM X-Force ID: 95029. CWE-200
Information Exposure 		CVE-2014-4782 2024-11-21 11:10 2018-04-21 Show GitHub Exploit DB Packet Storm
281825 6.5 MEDIUM
Network 		piwigo piwigo Cross-site request forgery (CSRF) vulnerability in the administration panel in Piwigo before 2.6.2 allows remote attackers to hijack the authentication of administrators for requests that add users v… CWE-352
 Origin Validation Error 		CVE-2014-4613 2024-11-21 11:10 2018-03-17 Show GitHub Exploit DB Packet Storm
281826 6.1 MEDIUM
Network 		coppermine-gallery coppermine_photo_gallery Cross-site scripting (XSS) vulnerability in the keywords manager (keywordmgr.php) in Coppermine Photo Gallery before 1.5.27 and 1.6.x before 1.6.01 allows remote attackers to inject arbitrary web scr… CWE-79
Cross-site Scripting 		CVE-2014-4612 2024-11-21 11:10 2018-03-17 Show GitHub Exploit DB Packet Storm
281827 7.5 HIGH
Network 		huawei s9300_firmware
s9700_firmware
s7700_firmware
s5300_firmware
s5700_firmware
s6300_firmware
s6700_firmware
ar150_firmware
ar160_firmware
ar200_firmware
ar1200_firmware
 Multiple heap-based buffer overflows in the eSap software platform in Huawei Campus S9300, S7700, S9700, S5300, S5700, S6300, and S6700 series switches; AR150, AR160, AR200, AR1200, AR2200, AR3200, A… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-4705 2024-11-21 11:10 2018-01-31 Show GitHub Exploit DB Packet Storm
281828 5.9 MEDIUM
Network 		python
simplejson_project
opensuse_project
opensuse 		python
simplejson
opensuse 		Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negati… CWE-129
 Improper Validation of Array Index 		CVE-2014-4616 2024-11-21 11:10 2017-08-25 Show GitHub Exploit DB Packet Storm
281829 5.3 MEDIUM
Network 		ibm curam_social_program_management Curam Universal Access in IBM Curam Social Program Management (SPM) 6.0 SP2 before EP26, 6.0.4 before 6.0.4.6, and 6.0.5 before 6.0.5.5 iFix5 allows remote attackers to obtain sensitive information a… CWE-358
 Improperly Implemented Security Check for Standard 		CVE-2014-4843 2024-11-21 11:10 2017-06-9 Show GitHub Exploit DB Packet Storm
281830 8.8 HIGH
Adjacent 		huawei campus_s7700_firmware
campus_s9300_firmware
campus_s9700_firmware 		Huawei Campus S7700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9300 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9700 with software V200R001C00… CWE-284
Improper Access Control 		CVE-2014-4707 2024-11-21 11:10 2017-04-3 Show GitHub Exploit DB Packet Storm