Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 4:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223501	4.3	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile Product Lifecycle Management for Process における Installation に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0434	2014-01-17 15:40	2014-01-14	Show	GitHub Exploit DB Packet Storm

223502	4	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management における Data および Domain & Function Security に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0399	2014-01-17 15:36	2014-01-14	Show	GitHub Exploit DB Packet Storm

223503	5	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Demantra Demand Management における DM Others に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5880	2014-01-17 14:59	2014-01-14	Show	GitHub Exploit DB Packet Storm

223504	5	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Demantra Demand Management における DM Others に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5877	2014-01-17 14:58	2014-01-14	Show	GitHub Exploit DB Packet Storm

223505	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Oracle AutoVue における Web General に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5871	2014-01-17 14:57	2014-01-14	Show	GitHub Exploit DB Packet Storm

223506	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Oracle AutoVue における Web General に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5868	2014-01-17 14:57	2014-01-14	Show	GitHub Exploit DB Packet Storm

223507	5	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Demantra Demand Management における DM Others に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5795	2014-01-17 14:56	2014-01-14	Show	GitHub Exploit DB Packet Storm

223508	5.1	警告	オラクル	-	Oracle Virtualization の Oracle Secure Global Desktop における Administration Console および Workspace Web Application に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0419	2014-01-17 14:53	2014-01-14	Show	GitHub Exploit DB Packet Storm

223509	3.5	注意	オラクル	-	Oracle Virtualization の Oracle VM VirtualBox における Core に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0407	2014-01-17 14:53	2014-01-14	Show	GitHub Exploit DB Packet Storm

223510	2.4	注意	オラクル	-	Oracle Virtualization の Oracle VM VirtualBox における Core に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0406	2014-01-17 14:53	2014-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313931	-		-	-	In agentscope <=v0.0.4, the file agentscope\web\workstation\workflow_utils.py has the function is_callable_expression. Within this function, the line result = eval(s) poses a security risk as it can …	-	CVE-2024-48050	2024-11-7 06:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

313932	-		-	-	U-Boot environment is read from unauthenticated partition.	-	CVE-2024-22013	2024-11-7 06:35	2024-09-17	Show	GitHub Exploit DB Packet Storm

313933	6.1	MEDIUM Network	shibulijack	cj_change_howdy	Cross-Site Request Forgery (CSRF) vulnerability in Shibu Lijack a.K.A CyberJack CJ Change Howdy allows Stored XSS.This issue affects CJ Change Howdy: from n/a through 3.3.1.	CWE-352 Origin Validation Error	CVE-2024-49223	2024-11-7 05:55	2024-10-18	Show	GitHub Exploit DB Packet Storm

313934	6.1	MEDIUM Network	julianweinert	cslider	Cross-Site Request Forgery (CSRF) vulnerability in Julian Weinert // cs&m cSlider allows Stored XSS.This issue affects cSlider: from n/a through 2.4.2.	CWE-352 Origin Validation Error	CVE-2024-49221	2024-11-7 05:54	2024-10-18	Show	GitHub Exploit DB Packet Storm

313935	9.8	CRITICAL Network	madirisalmanaashish	adding_drop_down_roles_in_registration	Incorrect Privilege Assignment vulnerability in Madiri Salman Aashish Adding drop down roles in registration allows Privilege Escalation.This issue affects Adding drop down roles in registration: fro…	NVD-CWE-Other	CVE-2024-49217	2024-11-7 05:53	2024-10-18	Show	GitHub Exploit DB Packet Storm

313936	8.8	HIGH Network	themexpo	rs-members	Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation.This issue affects RS-Members: from n/a through 1.0.3.	NVD-CWE-Other	CVE-2024-49219	2024-11-7 05:45	2024-10-18	Show	GitHub Exploit DB Packet Storm

313937	6.1	MEDIUM Network	cookie-scanner	cookie_scanner	Cross-Site Request Forgery (CSRF) vulnerability in Cookie Scanner – Nikel Schubert Cookie Scanner allows Stored XSS.This issue affects Cookie Scanner: from n/a through 1.1.	CWE-352 Origin Validation Error	CVE-2024-49220	2024-11-7 05:41	2024-10-18	Show	GitHub Exploit DB Packet Storm

313938	6.5	MEDIUM Network	ibm	db2	IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specia…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-31880	2024-11-7 05:39	2024-10-23	Show	GitHub Exploit DB Packet Storm

313939	-		-	-	langflow <=1.0.18 is vulnerable to Remote Code Execution (RCE) as any component provided the code functionality and the components run on the local machine rather than in a sandbox.	-	CVE-2024-48061	2024-11-7 05:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

313940	-		-	-	In gradio <=4.42.0, the gr.DownloadButton function has a hidden server-side request forgery (SSRF) vulnerability. The reason is that within the save_url_to_cache function, there are no restrictions o…	-	CVE-2024-48052	2024-11-7 05:35	2024-11-5	Show	GitHub Exploit DB Packet Storm