Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226381 7.5 危険 uniwin - Uniwin eCart Professional における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4746 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226382 4.3 警告 uniwin - Uniwin eCart Professional の emailFriend.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4745 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226383 7.5 危険 quidascript - QuidaScript FAQ Management Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4743 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226384 4.3 警告 timetrex - TimeTrex の interface/Login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4742 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226385 5.1 警告 tinycms - TinyCMS 内の ZZ_Templater モジュール内におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4740 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226386 6.8 警告 plugspace - PlugSpace の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4739 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
226387 7.5 危険 tufat - MyCard の gallery.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4738 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
226388 7.5 危険 pressography - WordPress 用の WP Comment Remix プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-4734 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
226389 4.3 警告 pressography - WordPress 用の WP Comment Remix プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4733 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
226390 7.5 危険 pressography - WordPress 用の WP Comment Remix プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4732 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199411 7.1 HIGH
Network 		oracle financial_services_data_foundation Vulnerability in the Oracle Financial Services Data Foundation product of Oracle Financial Services Applications (component: User Interface). Supported versions that are affected are 8.0.6 - 8.0.9. E… NVD-CWE-noinfo
CVE-2020-2964 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199412 7.2 HIGH
Network 		oracle weblogic_server Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. … NVD-CWE-noinfo
CVE-2020-2963 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199413 9.8 CRITICAL
Network 		oracle enterprise_manager_base_platform Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Discovery Framework (Oracle OHS)). Supported versions that are affected are 13.2.0.0 and 13.3.0.… NVD-CWE-noinfo
CVE-2020-2961 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199414 8.6 HIGH
Network 		oracle
opensuse 		vm_virtualbox
leap 		Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl… NVD-CWE-noinfo
CVE-2020-2959 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199415 7.5 HIGH
Local 		oracle
opensuse 		vm_virtualbox
leap 		Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult t… NVD-CWE-noinfo
CVE-2020-2958 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199416 8.1 HIGH
Network 		oracle human_resources Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite (component: Hierarchy Diagrammers). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exp… NVD-CWE-noinfo
CVE-2020-2956 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199417 6.3 MEDIUM
Network 		oracle flexcube_core_banking Vulnerability in the Oracle FLEXCUBE Core Banking product of Oracle Financial Services Applications (component: Transaction Processing). The supported version that is affected is 4.0. Easily exploita… NVD-CWE-noinfo
CVE-2020-2955 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199418 6.1 MEDIUM
Network 		oracle peoplesoft_enterprise_human_capital_management_candidate_gateway Vulnerability in the PeopleSoft Enterprise HRMS product of Oracle PeopleSoft (component: Candidate Gateway). The supported version that is affected is 9.2. Easily exploitable vulnerability allows una… NVD-CWE-noinfo
CVE-2020-2954 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199419 9.8 CRITICAL
Network 		oracle retail_customer_management_and_segmentation_foundation Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Promotions). The supported version that is affected is 18.0. Easil… NVD-CWE-noinfo
CVE-2020-2953 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
199420 6.5 MEDIUM
Network 		oracle http_server Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Web Listener). The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows un… NVD-CWE-noinfo
CVE-2020-2952 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm