Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255311 4.3 警告 オラクル - Oracle Applications の Oracle Common Applications コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3587 2011-02-14 15:25 2011-01-18 Show GitHub Exploit DB Packet Storm
255312 6.4 警告 オラクル - Oracle Enterprise Manager Grid Control の Real User Experience Insight コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3594 2011-02-14 15:24 2011-01-18 Show GitHub Exploit DB Packet Storm
255313 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4427 2011-02-14 15:24 2011-01-18 Show GitHub Exploit DB Packet Storm
255314 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4425 2011-02-14 15:23 2011-01-18 Show GitHub Exploit DB Packet Storm
255315 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4453 2011-02-14 15:15 2011-01-18 Show GitHub Exploit DB Packet Storm
255316 5 警告 オラクル - Oracle Fusion Middleware の Oracle GoldenGate Veridata コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4416 2011-02-14 15:14 2011-01-18 Show GitHub Exploit DB Packet Storm
255317 5.5 警告 オラクル - Oracle Fusion Middleware の Oracle Discoverer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3588 2011-02-14 15:14 2011-01-18 Show GitHub Exploit DB Packet Storm
255318 5.8 警告 オラクル - Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4437 2011-02-14 15:14 2011-01-18 Show GitHub Exploit DB Packet Storm
255319 7.2 危険 サイバートラスト株式会社
レッドハット
SystemTap		 - SystemTap の staprun runtime ツールにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4170 2011-02-10 14:54 2010-11-17 Show GitHub Exploit DB Packet Storm
255320 2.1 注意 サイバートラスト株式会社
レッドハット
SystemTap		 - SystemTap の staprun runtime ツールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4171 2011-02-10 14:53 2010-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264371 7.8 HIGH
Local 		ibm security_identity_manager IBM Security Identity Manager Virtual Appliance stores user credentials in plain in clear text which can be read by a local user. CWE-255
Credentials Management 		CVE-2016-9739 2024-11-21 12:01 2017-02-2 Show GitHub Exploit DB Packet Storm
264372 6.1 MEDIUM
Network 		ibm security_identity_manager_virtual_appliance IBM Security Identity Manager Virtual Appliance is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended func… CWE-79
Cross-site Scripting 		CVE-2016-9704 2024-11-21 12:01 2017-02-2 Show GitHub Exploit DB Packet Storm
264373 2.4 LOW
Physics 		ibm security_identity_manager_virtual_appliance IBM Security Identity Manager Virtual Appliance does not invalidate session tokens which could allow an unauthorized user with physical access to the work station to obtain sensitive information. CWE-384
 Session Fixation 		CVE-2016-9703 2024-11-21 12:01 2017-02-2 Show GitHub Exploit DB Packet Storm
264374 5.4 MEDIUM
Network 		ibm business_process_manager IBM Business Process Manager is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential… CWE-79
Cross-site Scripting 		CVE-2016-9731 2024-11-21 12:01 2017-02-2 Show GitHub Exploit DB Packet Storm
264375 6.1 MEDIUM
Network 		mybb merge_system
mybb 		Cross-site scripting (XSS) vulnerability in the Users module in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 might allow remote attackers to i… CWE-79
Cross-site Scripting 		CVE-2016-9421 2024-11-21 12:01 2017-02-1 Show GitHub Exploit DB Packet Storm
264376 9.8 CRITICAL
Network 		mybb merge_system
mybb 		MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allow remote attackers to have unspecified impact via vectors related to "loose comparison false positives." CWE-20
 Improper Input Validation  		CVE-2016-9420 2024-11-21 12:01 2017-02-1 Show GitHub Exploit DB Packet Storm
264377 6.1 MEDIUM
Network 		mybb mybb Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to inject arbitrary web scrip… CWE-79
Cross-site Scripting 		CVE-2016-9419 2024-11-21 12:01 2017-02-1 Show GitHub Exploit DB Packet Storm
264378 7.5 HIGH
Network 		mybb merge_system
mybb 		MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows might allow remote attackers to obtain sensitive information from ACP backups via vectors involving a … CWE-200
Information Exposure 		CVE-2016-9418 2024-11-21 12:01 2017-02-1 Show GitHub Exploit DB Packet Storm
264379 7.4 HIGH
Network 		mybb merge_system
mybb 		The fetch_remote_file function in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecif… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-9417 2024-11-21 12:01 2017-02-1 Show GitHub Exploit DB Packet Storm
264380 9.8 CRITICAL
Network 		mybb merge_system
mybb 		SQL injection vulnerability in the users data handler in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to execute arbitrary SQL commands via unspe… CWE-89
SQL Injection 		CVE-2016-9416 2024-11-21 12:01 2017-02-1 Show GitHub Exploit DB Packet Storm